Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Yj8ATqPp7cRG6jkDPsz1_AW1UO4.roa
File: Yj8ATqPp7cRG6jkDPsz1_AW1UO4.roa (raw, json)
Hash identifier: rDieNr0FugtxrdWvrKnpKngacK/KqExjvlugoPEsZ2c=
Subject key identifier: 62:3F:00:4E:A3:E9:ED:C4:46:EA:39:03:3E:CC:F5:FC:05:B5:50:EE
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 0451A3A9
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Yj8ATqPp7cRG6jkDPsz1_AW1UO4.roa
Signing time: Tue 08 Feb 2022 06:08:46 +0000
ROA not before: Tue 08 Feb 2022 06:08:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28890
IP address blocks: 212.113.120.0/22 maxlen: 22
212.113.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72459177 (0x451a3a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Feb 8 06:08:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=623f004ea3e9edc446ea39033eccf5fc05b550ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f9:31:bc:68:06:22:d4:20:d2:56:de:0f:30:
17:a2:eb:6f:1c:e0:1f:41:55:e9:74:3f:69:8d:48:
a0:4a:ba:d3:1f:85:b9:23:9d:19:59:05:3a:4c:73:
32:8b:92:4f:04:a7:bb:a1:ea:fe:80:c6:bd:62:ee:
8d:3c:6a:aa:e0:a6:cc:f4:89:3a:fa:1a:8a:cc:44:
b4:ec:12:d4:06:80:b0:a0:72:62:0f:0c:c0:93:e9:
67:6c:1e:cf:e0:c1:0e:83:26:75:07:da:c4:3e:ed:
79:b2:2f:c4:9c:f3:79:6c:cb:b9:7d:e5:6a:14:06:
20:8a:2e:2a:2f:cd:1e:71:f6:8a:cb:0d:9f:23:80:
62:bb:a0:42:ec:39:06:0b:2c:d7:38:05:b0:bc:03:
ef:8c:04:46:87:e0:69:0a:5e:6d:78:81:01:e6:1d:
76:d2:c6:a4:34:65:80:c6:53:86:97:e4:0f:9d:68:
9d:66:72:45:ba:c1:47:36:d9:bb:d7:33:8e:a4:a8:
fa:9b:99:19:ec:32:62:bb:12:a0:c6:db:2f:a8:92:
5e:d9:08:5c:2d:44:dd:ca:05:82:09:2a:72:2a:fc:
41:f8:87:8b:d0:15:bb:5c:d7:3a:20:4f:0e:2e:65:
aa:9c:a4:bc:11:5b:c8:b2:c7:c0:ff:23:c3:9b:16:
87:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:3F:00:4E:A3:E9:ED:C4:46:EA:39:03:3E:CC:F5:FC:05:B5:50:EE
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/Yj8ATqPp7cRG6jkDPsz1_AW1UO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.100.0/22
212.113.120.0/22
Signature Algorithm: sha256WithRSAEncryption
93:85:b9:e3:1a:a1:47:17:cf:1a:fb:5f:56:22:f8:49:ad:bb:
be:d5:2c:f0:8c:06:9e:70:cf:84:4e:5d:83:fa:e5:47:02:7d:
a1:87:36:78:6e:8f:0c:03:be:ba:73:b6:d7:78:c4:ff:c2:c7:
6b:3e:e0:24:cf:c3:86:78:9b:96:cf:eb:89:8d:bb:57:ab:19:
3a:b2:ae:00:cb:9b:fc:48:83:8b:b5:e5:2d:eb:6c:50:15:14:
40:18:80:f0:f0:4c:4f:af:0b:16:2e:39:a6:ad:c4:41:1b:67:
3b:15:78:36:4a:97:63:fb:fc:f3:be:51:58:a5:e5:c2:d4:f7:
4e:b4:67:7c:aa:4d:93:ff:ac:49:3d:ad:17:2f:00:e9:84:2a:
1d:17:2d:4c:16:19:27:96:c3:d0:f3:04:22:16:af:88:d0:64:
6d:1e:56:a6:8f:e8:d9:08:d1:66:f6:ac:61:63:2b:65:88:ec:
23:3f:0b:36:51:f1:69:a2:85:2f:92:ca:a8:91:1b:d9:43:b2:
37:32:d3:3f:cb:c3:5a:82:32:27:f5:0d:58:00:45:e3:f8:72:
d4:62:9b:04:c6:19:1e:0d:63:86:fe:4f:6e:c6:b6:5e:ca:32:
5f:86:73:45:e9:26:5a:07:af:df:4c:bb:f1:17:45:af:c8:7f:
27:d8:9c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:44 2024 by rpki-client on console-ams.rpki-client.org