Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/35a6cc-da7f-4e3c-bccb-e73c1244fe68/1/LEpSH7NqP9ZYr4HAqs8JCkoMshU.roa
File: LEpSH7NqP9ZYr4HAqs8JCkoMshU.roa (raw, json)
Hash identifier: W9IRHe3drwo9kwEKv+2NmsAZSpo5ipbqtDy3rK4OSZY=
Subject key identifier: 2C:4A:52:1F:B3:6A:3F:D6:58:AF:81:C0:AA:CF:09:0A:4A:0C:B2:15
Certificate issuer: /CN=39407123065c955d19d4fae963b0d055f489b215
Certificate serial: 1299
Authority key identifier: 39:40:71:23:06:5C:95:5D:19:D4:FA:E9:63:B0:D0:55:F4:89:B2:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUBxIwZclV0Z1PrpY7DQVfSJshU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/35a6cc-da7f-4e3c-bccb-e73c1244fe68/1/LEpSH7NqP9ZYr4HAqs8JCkoMshU.roa
Signing time: Sun 06 Mar 2022 07:56:06 +0000
ROA not before: Sun 06 Mar 2022 07:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201106
IP address blocks: 212.18.111.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4761 (0x1299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39407123065c955d19d4fae963b0d055f489b215
Validity
Not Before: Mar 6 07:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c4a521fb36a3fd658af81c0aacf090a4a0cb215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cf:f8:6a:12:ff:f5:62:75:2e:6c:48:eb:d4:
54:55:0e:8c:8b:81:bb:04:13:9a:d6:d7:ba:62:80:
b4:24:6a:a5:ab:31:91:78:20:28:39:07:20:fe:ab:
c3:e7:f9:ff:8b:0f:22:31:9a:a2:6d:a4:cf:6d:e6:
ff:88:59:bd:67:0a:f0:f9:e8:c0:7d:3a:bf:40:f0:
b0:76:9e:b8:4e:2a:64:77:14:54:95:50:9a:53:77:
08:04:68:af:b0:9b:bc:18:b4:5c:30:2c:47:f8:e1:
e8:64:b9:56:a6:ee:c1:9e:3c:76:2f:fb:08:c1:77:
02:11:e3:7e:69:1f:15:96:b6:ad:6f:9c:d9:5c:82:
f3:7c:65:c9:fe:c7:58:64:3b:60:25:0b:94:c3:b4:
f0:e8:20:b4:c1:1e:77:30:ed:13:38:bc:92:ee:3d:
8c:42:0f:2a:66:fa:5c:4a:e3:4a:1d:68:c7:9d:71:
1e:6e:f9:6e:00:4b:c8:b7:b9:83:a1:4d:1c:b9:b1:
ed:7e:62:5d:11:e6:1d:48:70:a9:e5:46:d2:1d:3c:
d0:4a:2e:85:20:eb:de:95:f5:b2:0c:b8:50:8c:04:
be:8f:72:02:35:6c:b8:44:83:2f:b1:2b:bc:d0:f1:
d9:cc:9a:9b:0b:21:48:fe:18:bd:59:7c:75:b5:41:
bc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:4A:52:1F:B3:6A:3F:D6:58:AF:81:C0:AA:CF:09:0A:4A:0C:B2:15
X509v3 Authority Key Identifier:
keyid:39:40:71:23:06:5C:95:5D:19:D4:FA:E9:63:B0:D0:55:F4:89:B2:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUBxIwZclV0Z1PrpY7DQVfSJshU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/35a6cc-da7f-4e3c-bccb-e73c1244fe68/1/LEpSH7NqP9ZYr4HAqs8JCkoMshU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/35a6cc-da7f-4e3c-bccb-e73c1244fe68/1/OUBxIwZclV0Z1PrpY7DQVfSJshU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.111.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:c2:f4:8b:c2:0c:fd:02:3d:ce:26:d2:e7:76:e0:13:0a:55:
1b:7f:96:fd:43:e2:c4:8b:b8:f0:c7:7a:a0:95:93:db:7c:56:
f4:51:91:5f:0c:34:1b:3d:5a:da:c7:b5:8a:e1:2c:aa:46:45:
9d:20:e0:ce:62:d6:43:50:66:94:99:2a:48:4d:ae:9e:f8:8d:
24:fb:be:b1:54:16:89:7a:12:80:d3:4c:8b:c9:ac:7b:1d:5c:
59:65:16:55:34:cf:78:5b:f1:ca:76:d6:62:6e:08:55:43:ee:
d4:86:ad:84:59:ef:65:ea:71:46:39:9c:0c:03:a8:cb:89:01:
5b:f0:ed:b8:b6:e9:79:c1:6a:60:29:0b:6b:70:59:e7:53:fb:
e2:ff:e5:b0:73:e1:5e:66:5d:33:da:1d:7d:18:79:ad:88:1b:
d4:05:2b:96:22:d6:67:e8:c5:69:6e:1d:36:c7:0a:57:d0:a1:
a1:09:21:15:24:bc:b9:b5:ef:85:e8:00:7d:f3:2f:a8:78:d5:
d2:03:0f:fb:e4:7b:cb:58:50:f2:32:4a:c4:6a:9b:fe:1d:64:
48:4a:42:28:76:69:55:8f:1d:48:58:e1:bd:f4:74:eb:72:46:
fc:06:46:46:28:8c:10:65:d9:9e:e9:df:9c:17:e5:91:f7:37:
12:a9:12:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:30 2023 by rpki-client on console-fra.rpki-client.org