Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/fi3J8cv59Ejq-ESbSiLwh-kVsW0.roa
File: fi3J8cv59Ejq-ESbSiLwh-kVsW0.roa (raw, json)
Hash identifier: uIyDI3cda1aXAsfCTCaqNmus+Q7+ue4855KSu045/gk=
Subject key identifier: 7E:2D:C9:F1:CB:F9:F4:48:EA:F8:44:9B:4A:22:F0:87:E9:15:B1:6D
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 429C6513
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/fi3J8cv59Ejq-ESbSiLwh-kVsW0.roa
Signing time: Sat 01 Jan 2022 06:04:58 +0000
ROA not before: Sat 01 Jan 2022 06:04:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24699
IP address blocks: 212.124.16.0/20 maxlen: 20
212.124.29.0/24 maxlen: 24
212.124.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1117545747 (0x429c6513)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:04:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e2dc9f1cbf9f448eaf8449b4a22f087e915b16d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9f:e7:8d:16:25:72:b7:9e:b6:49:0c:4d:8e:
d5:4e:3e:79:bb:ee:e8:50:20:b9:d7:fb:22:08:be:
6c:27:b6:ca:21:03:b4:f8:69:e4:58:e8:6b:cf:aa:
ac:de:23:59:0c:da:09:a3:96:bf:01:75:de:f8:5b:
de:14:c0:1e:52:28:7f:de:cc:8d:cb:ae:59:bc:68:
e5:ce:e7:8a:8e:07:df:e5:92:e1:16:cc:be:42:3e:
5d:71:15:b0:c7:ef:c8:f8:c5:28:00:d7:cf:d0:00:
d2:a3:2f:67:7a:d6:7d:5a:52:20:41:91:7c:1f:23:
56:8b:11:e7:5b:33:3c:2d:0a:b4:a3:ef:3c:09:70:
e8:8a:70:1c:71:5e:19:e7:f7:c0:39:d5:7e:9e:8b:
81:18:41:10:fc:9b:0a:eb:6b:98:24:f7:be:fe:36:
3b:b6:6e:43:e1:ac:ea:37:af:55:af:42:62:df:2a:
02:cd:52:9d:48:c4:d0:8e:85:d6:40:f5:bf:98:38:
20:64:2e:25:de:9a:09:91:87:04:53:ca:2a:dc:54:
9b:43:c2:de:1e:af:c2:36:1b:a8:c5:f9:0e:e2:cd:
e8:14:52:60:51:be:8b:13:03:31:a9:97:1d:36:5c:
aa:b3:3f:02:56:e6:df:2e:ac:e3:b1:28:f1:7b:12:
c7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:2D:C9:F1:CB:F9:F4:48:EA:F8:44:9B:4A:22:F0:87:E9:15:B1:6D
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/fi3J8cv59Ejq-ESbSiLwh-kVsW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.124.16.0/20
Signature Algorithm: sha256WithRSAEncryption
83:d6:f8:a3:a4:bd:ec:9b:79:22:98:53:3e:39:13:2b:8d:06:
0b:d3:cf:58:82:8e:ea:c5:58:ce:63:5a:cf:0b:87:a4:48:81:
ca:4f:15:c1:13:35:11:6c:b6:de:cb:09:89:81:87:60:d4:39:
94:ed:3b:11:4f:77:04:3f:32:14:be:58:60:59:11:09:78:d1:
0d:63:05:d2:9a:f4:66:62:2d:cd:42:0f:19:bd:32:f8:54:f5:
9f:fc:84:c7:b0:a7:9c:5e:03:fb:56:27:dc:ba:29:38:a8:4c:
1e:ff:6b:fc:da:18:43:0a:da:20:33:3f:f0:01:4e:83:00:f8:
5c:c5:2c:f3:56:44:7e:c6:86:f2:c4:71:30:bd:3a:28:bf:98:
39:89:a4:a0:67:2b:d1:93:2e:f2:e7:db:5b:ee:7c:8e:f3:8c:
91:f9:60:50:d4:75:d1:9d:f8:8e:17:8f:c1:84:d7:83:cd:00:
82:67:63:36:6c:6f:03:b1:c8:d9:3e:8b:64:85:f2:22:3c:8f:
df:b6:41:57:fe:cf:ad:ef:bf:3f:6e:0c:c0:26:1a:9b:d7:41:
4e:42:e7:f0:e4:53:eb:95:3b:a7:25:3d:a4:36:1a:e5:23:c3:
b1:1e:38:2d:b9:e9:c7:55:22:c4:61:75:29:ea:a7:04:c2:77:
d8:77:61:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:56 2024 by rpki-client on console-fra.rpki-client.org