Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/1-SjEQ-DM5HcWrRHrLsP-q_cQn30.roa
File: 1-SjEQ-DM5HcWrRHrLsP-q_cQn30.roa (raw, json)
Hash identifier: eBS1of8rgLfDmesW9JSsvso7hn0Pjm+Pu9dt+O8K478=
Subject key identifier: F9:28:C4:43:E0:CC:E4:77:16:AD:11:EB:2E:C3:FE:AB:F7:10:9F:7D
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 03F010AD
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/1-SjEQ-DM5HcWrRHrLsP-q_cQn30.roa
Signing time: Sat 01 Jan 2022 03:01:56 +0000
ROA not before: Sat 01 Jan 2022 03:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200935
IP address blocks: 212.113.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66064557 (0x3f010ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Jan 1 03:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f928c443e0cce47716ad11eb2ec3feabf7109f7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4d:38:e4:d9:ce:66:a8:4c:61:d8:50:eb:d1:
71:53:d6:78:58:62:07:ea:77:45:72:1b:cb:71:5c:
f0:c2:62:69:9c:59:9a:22:d2:a1:64:31:52:44:a0:
87:de:e1:5b:9f:bf:6f:cf:63:06:a2:ac:1f:45:4f:
f9:1a:11:11:f2:c2:f1:6d:53:23:ae:6f:a7:35:57:
25:90:ac:3b:4a:63:db:28:29:95:7e:7e:1a:c3:45:
a5:99:10:fa:70:86:c4:47:93:55:f4:42:38:cc:c8:
13:ab:b4:90:a0:6c:26:97:b2:c1:02:cb:95:7f:e9:
47:98:29:e8:b3:4f:1f:19:b0:25:9b:60:ef:db:a7:
30:5f:b5:8c:e0:6f:39:71:78:d1:fc:82:43:24:07:
d4:30:b0:f7:20:96:2b:9d:c4:43:53:4e:1b:ac:f4:
e1:12:f9:a3:f9:e7:dd:e7:37:14:de:c0:55:8d:a4:
57:2c:c1:a9:de:82:6a:6b:7c:fd:d7:f8:fb:1e:08:
8c:9e:ea:14:5c:2b:60:1c:60:a6:e7:41:79:5a:99:
6c:71:1f:29:6b:6d:20:10:82:b9:4c:cf:df:fe:51:
c8:75:f1:1c:bb:1a:68:ef:25:97:94:9f:06:1e:81:
72:36:f5:51:4f:68:f0:9b:a7:93:df:30:8b:73:ec:
53:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:28:C4:43:E0:CC:E4:77:16:AD:11:EB:2E:C3:FE:AB:F7:10:9F:7D
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/1-SjEQ-DM5HcWrRHrLsP-q_cQn30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.110.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:be:ea:85:17:7a:91:da:aa:fd:92:d8:e3:01:83:7e:33:aa:
ca:67:da:9c:62:5a:63:db:d3:f9:90:08:40:d8:6d:14:8d:d1:
b8:84:91:ba:08:ed:0d:cf:cb:d8:84:39:19:5c:6f:85:c2:4e:
62:f5:15:95:8c:17:70:00:8a:a1:d6:ba:e5:00:0f:8e:ad:64:
fa:23:31:d4:c1:33:ec:1d:87:e4:2b:b1:b2:64:73:57:46:f5:
54:c8:d8:90:fa:7d:e9:da:a8:96:3d:61:e7:d7:c1:62:98:4b:
3f:f9:a0:a8:15:a6:e8:e2:d2:61:e5:16:00:40:a6:70:c8:8f:
2f:5b:3e:17:01:00:24:ac:03:5c:29:64:19:fe:64:f4:20:2a:
cb:31:22:fa:c8:38:27:1c:6f:fd:0e:af:cc:f7:dc:ab:39:b9:
51:30:ff:90:18:58:09:0e:bf:99:fe:52:ae:c3:73:7f:a1:f0:
99:54:14:5d:6e:3d:10:4c:bd:b4:5d:d8:87:ef:57:0e:fd:25:
18:2a:25:8b:42:4a:41:12:2f:a9:a2:b0:96:31:3f:ef:54:3f:
9b:b3:d1:93:d9:23:f6:96:52:c1:2d:32:8b:30:85:09:24:87:
fb:73:17:84:37:48:6c:56:50:e1:0d:71:bb:d4:17:e7:20:89:
36:d6:19:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:44 2024 by rpki-client on console-ams.rpki-client.org