Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/EJk7BCT8qM7E0v61wxEaleiI3gU.roa
File: EJk7BCT8qM7E0v61wxEaleiI3gU.roa (raw, json)
Hash identifier: MbCgjNMU7PftNVwYsALYVESy/DQFCcZsWvsous/Fvvs=
Subject key identifier: 10:99:3B:04:24:FC:A8:CE:C4:D2:FE:B5:C3:11:1A:95:E8:88:DE:05
Certificate issuer: /CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Certificate serial: 3684B2B2
Authority key identifier: BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/EJk7BCT8qM7E0v61wxEaleiI3gU.roa
Signing time: Sat 01 Jan 2022 09:54:25 +0000
ROA not before: Sat 01 Jan 2022 09:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9076
IP address blocks: 212.104.0.0/19 maxlen: 19
212.104.32.0/20 maxlen: 20
212.104.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 914666162 (0x3684b2b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc8a3bc47d13c83f7d1cf72a137e0066f83d0608
Validity
Not Before: Jan 1 09:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10993b0424fca8cec4d2feb5c3111a95e888de05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7d:e0:37:5c:dc:7e:92:94:0a:98:b2:f7:a6:
12:b7:eb:f8:27:04:41:9e:0a:e5:bf:e7:5f:ab:e0:
68:88:ee:ed:8d:79:07:be:d8:77:23:a6:16:b2:ed:
25:c9:a1:7e:fa:5b:06:8c:53:d7:b7:5d:76:29:d3:
fc:3d:ea:67:f5:65:8c:19:d7:a8:47:4a:e9:a2:2c:
0c:ec:28:ea:9c:e5:3d:cb:7f:c8:a2:3e:14:39:e8:
d6:94:54:03:bc:3d:2d:96:c5:f9:65:07:b6:b6:88:
ee:5b:1a:7e:f5:3f:2e:bb:07:f9:04:b0:38:5f:1b:
f4:54:9a:c2:a3:96:4d:c4:c6:14:22:65:09:ce:3e:
9d:07:28:e7:9f:c6:67:4b:c2:c5:c8:fd:50:f0:53:
8a:1b:10:9a:a1:3a:60:19:cc:17:a9:7a:01:b5:01:
f4:43:67:70:27:4a:95:e8:14:2d:da:ac:48:d1:7b:
5d:44:71:3f:00:02:2e:b8:6f:23:ce:d9:84:87:60:
bc:b8:34:cd:12:a3:dd:91:52:e8:e0:52:73:4f:60:
fc:c3:b1:ba:f6:72:68:8c:74:b7:d4:55:90:fd:a2:
23:2d:06:b6:75:69:44:ab:d2:34:df:6c:0b:ec:5e:
1a:de:be:8b:ed:0f:c7:67:89:54:e1:a2:ca:61:97:
95:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:99:3B:04:24:FC:A8:CE:C4:D2:FE:B5:C3:11:1A:95:E8:88:DE:05
X509v3 Authority Key Identifier:
keyid:BC:8A:3B:C4:7D:13:C8:3F:7D:1C:F7:2A:13:7E:00:66:F8:3D:06:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIo7xH0TyD99HPcqE34AZvg9Bgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/EJk7BCT8qM7E0v61wxEaleiI3gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0ee921-a721-4f09-80f2-7113fc1b865b/1/vIo7xH0TyD99HPcqE34AZvg9Bgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.104.0.0-212.104.55.255
Signature Algorithm: sha256WithRSAEncryption
13:3a:11:d2:95:9e:50:26:06:85:4e:74:ff:e7:d9:97:18:de:
e8:9d:7c:7d:8b:ce:02:b4:57:e8:ea:ad:1e:59:1d:fc:b5:70:
ba:a9:98:27:f0:f2:3b:e9:c8:e6:83:80:c1:8f:e6:43:7f:b5:
65:0a:88:53:fb:6e:1d:03:50:86:f4:4e:df:23:ce:88:5f:b6:
61:1b:74:59:db:6f:25:0e:3e:82:ac:df:5b:e1:31:91:29:46:
3b:32:bd:ef:59:00:14:04:e6:8c:20:29:2a:d0:f4:cf:9f:60:
df:ae:3a:4f:fa:68:45:bc:13:5f:48:72:11:c4:3f:76:6e:ff:
9d:8d:c7:7f:c6:a4:9b:aa:22:fb:0c:d7:a1:fc:03:6c:81:8f:
4d:38:27:0b:63:d4:5e:76:1d:c8:07:14:cd:11:4b:08:ac:be:
98:9d:52:a0:31:88:75:ac:07:33:ed:84:11:0d:41:c0:8e:06:
54:5b:89:b2:e3:98:b6:3f:0d:0d:b2:d1:a8:fe:a8:4b:2e:ce:
bf:6f:b4:5f:c5:df:2e:01:80:45:5b:6f:6d:0a:a9:1e:84:52:
85:bf:e0:c5:0d:d0:c9:2c:db:48:5b:23:cf:9c:29:75:be:68:
b8:18:35:2e:a7:19:e9:c3:ee:56:9a:46:c2:ae:3e:c2:07:c3:
f5:da:a5:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:15 2024 by rpki-client on console-fra.rpki-client.org