Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/FHO7wVGUz5GQvmd3gt8hyRy7UDk.roa
File: FHO7wVGUz5GQvmd3gt8hyRy7UDk.roa (raw, json)
Hash identifier: DI8meEwdAGZkqIXdxmAIZBe7RoBpSUweJ4qOivzj0Bs=
Subject key identifier: 14:73:BB:C1:51:94:CF:91:90:BE:67:77:82:DF:21:C9:1C:BB:50:39
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 018534B1E1E6FD1FC17603EC5882C013180E
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/FHO7wVGUz5GQvmd3gt8hyRy7UDk.roa
Signing time: Wed 21 Dec 2022 12:39:11 +0000
ROA not before: Wed 21 Dec 2022 12:39:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 212.113.117.0/24 maxlen: 24
212.113.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:b1:e1:e6:fd:1f:c1:76:03:ec:58:82:c0:13:18:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Dec 21 12:39:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1473bbc15194cf9190be677782df21c91cbb5039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:27:9b:1a:35:df:a8:e8:a0:a1:26:e4:0f:ec:
cc:76:3b:d9:30:66:32:bc:1a:fd:51:0f:74:8d:a3:
72:d8:f2:b6:6c:74:78:ca:39:f9:95:ba:04:60:6c:
86:ee:ff:4c:e2:cd:79:78:4b:9c:be:96:2b:6e:a7:
60:da:70:4a:a1:e0:a8:af:42:4a:90:98:ca:c5:9e:
30:86:b6:5c:00:4c:95:29:71:70:93:1f:a7:b5:4b:
89:de:83:97:fa:c4:2b:2d:6e:08:b4:16:f0:4a:0f:
2a:ba:a7:26:89:63:c1:0d:77:3d:7e:6f:ed:24:90:
18:9c:fb:7e:c2:dc:cd:ce:5b:be:ab:40:1c:47:56:
b3:db:92:51:f3:b8:b3:6d:32:72:ea:d8:87:c1:69:
68:96:39:26:41:fe:a5:4e:af:ad:b7:2d:0f:00:5e:
f6:4b:7b:52:c2:ba:b3:9b:c3:e2:7c:e0:e4:25:ea:
25:56:92:e9:56:fe:35:cc:d8:66:43:80:ad:61:77:
71:c5:e2:df:c8:23:e6:a0:9a:f0:16:c8:a6:55:aa:
0b:b5:0e:f0:57:aa:21:5a:02:d1:dc:4b:27:9c:d2:
1e:a9:05:13:fd:19:27:84:7d:f8:f6:fc:77:af:11:
68:ae:7d:bc:61:a3:b2:0f:a4:37:75:46:33:d9:29:
02:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:73:BB:C1:51:94:CF:91:90:BE:67:77:82:DF:21:C9:1C:BB:50:39
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/FHO7wVGUz5GQvmd3gt8hyRy7UDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.116.0/22
Signature Algorithm: sha256WithRSAEncryption
89:18:34:f6:f7:41:c2:9e:db:e5:04:62:ed:99:80:3d:49:2c:
8e:7c:57:a5:a0:92:26:22:ca:28:c7:82:25:45:ce:58:fb:48:
36:b1:0f:7d:04:60:f4:12:ad:f9:a7:ae:85:c7:ae:89:cc:58:
9b:13:4a:e4:be:58:e3:ca:42:b9:08:01:05:6f:16:f3:66:f3:
2b:d7:55:f0:83:24:8d:1a:09:60:33:dc:84:ee:1c:28:64:88:
8d:46:0d:c9:08:dc:e4:e9:f2:5c:95:c0:5e:bf:5b:4c:80:1b:
b2:71:87:42:a4:ad:5d:01:67:00:47:8b:0b:09:f4:2b:22:06:
4a:1a:7d:a9:38:bd:6f:45:c3:f4:f3:ed:6c:66:fb:e2:71:0c:
54:bc:ad:8e:71:9b:00:4c:fe:47:29:27:8f:51:49:e5:a4:a7:
85:3b:c7:bd:f7:1b:70:96:8a:dc:c5:cb:c8:27:19:89:ea:33:
69:71:75:18:99:cd:83:23:3e:90:f5:86:69:08:67:80:af:92:
7d:81:92:a5:66:14:d7:51:18:ac:9e:0c:41:35:a5:95:7b:bd:
cf:8f:3e:2f:76:36:96:2a:a3:05:ed:bc:c0:7d:01:53:d1:13:
6b:13:e9:c4:2b:25:3f:3d:d0:90:08:55:13:72:3c:16:d9:ad:
78:39:ac:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org