Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8ffa79-7528-4fca-9cdf-69bb282cf5ae/1/LYWonK7bINE9LFQ3F6mJs9YcS64.roa
File: LYWonK7bINE9LFQ3F6mJs9YcS64.roa (raw, json)
Hash identifier: hrgrtRBhlAiz4NZblWoqYiqiqaTjQRwltrXMzlEVJqw=
Subject key identifier: 2D:85:A8:9C:AE:DB:20:D1:3D:2C:54:37:17:A9:89:B3:D6:1C:4B:AE
Certificate issuer: /CN=48113c916a59da4d43b8efa7739ad1167ace59fd
Certificate serial: 02B225C5
Authority key identifier: 48:11:3C:91:6A:59:DA:4D:43:B8:EF:A7:73:9A:D1:16:7A:CE:59:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBE8kWpZ2k1DuO-nc5rRFnrOWf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8ffa79-7528-4fca-9cdf-69bb282cf5ae/1/LYWonK7bINE9LFQ3F6mJs9YcS64.roa
Signing time: Sat 01 Jan 2022 04:55:40 +0000
ROA not before: Sat 01 Jan 2022 04:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42487
IP address blocks: 212.102.121.0/24 maxlen: 24
2a0f:c540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45229509 (0x2b225c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48113c916a59da4d43b8efa7739ad1167ace59fd
Validity
Not Before: Jan 1 04:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d85a89caedb20d13d2c543717a989b3d61c4bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2a:aa:72:43:04:09:70:89:ca:95:2c:d3:8d:
91:15:09:5d:dd:70:97:1a:12:40:6f:ff:e8:d7:a0:
15:8e:7e:e1:f7:ad:e2:cf:30:34:18:9f:ca:c0:7c:
86:c3:37:87:90:63:b0:3a:6a:89:5b:a8:dc:b9:32:
f9:22:af:e6:79:4e:ae:9d:aa:8e:ed:e1:ed:dd:4b:
d6:da:93:9c:6b:c6:ac:a3:4a:4b:1b:28:1f:b0:be:
bd:ed:33:77:0a:58:c4:fa:01:fe:f9:b6:dc:3e:9b:
ce:b2:45:6e:0c:40:72:a0:58:83:16:6f:35:c8:a7:
e1:4b:83:82:45:74:89:71:75:fe:ba:1d:f5:de:77:
f6:dc:43:2b:49:88:6c:60:98:84:62:f1:ca:03:a8:
f9:10:fb:cd:70:7c:33:d4:ca:09:54:aa:79:01:f1:
f9:7f:60:bd:17:b5:37:91:7c:78:18:39:4b:33:af:
05:97:10:7e:50:cf:52:28:e6:6b:4c:fa:b1:19:af:
dc:2e:f4:57:29:ca:73:b3:b9:d4:35:dc:a5:db:8f:
05:f6:ae:ed:67:11:fd:a2:5e:57:82:63:3b:05:dd:
79:19:02:e9:76:76:17:9a:19:93:a6:9d:5c:48:57:
11:46:14:39:ad:76:5d:46:8e:92:05:e5:b9:23:c1:
da:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:85:A8:9C:AE:DB:20:D1:3D:2C:54:37:17:A9:89:B3:D6:1C:4B:AE
X509v3 Authority Key Identifier:
keyid:48:11:3C:91:6A:59:DA:4D:43:B8:EF:A7:73:9A:D1:16:7A:CE:59:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBE8kWpZ2k1DuO-nc5rRFnrOWf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8ffa79-7528-4fca-9cdf-69bb282cf5ae/1/LYWonK7bINE9LFQ3F6mJs9YcS64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8ffa79-7528-4fca-9cdf-69bb282cf5ae/1/SBE8kWpZ2k1DuO-nc5rRFnrOWf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.102.121.0/24
IPv6:
2a0f:c540::/29
Signature Algorithm: sha256WithRSAEncryption
22:88:34:cf:e4:76:5a:e1:f8:d6:d0:eb:6e:a3:b9:6f:4f:1e:
0d:0e:33:f0:79:d9:cf:f8:c1:09:6f:67:12:32:e3:41:66:e0:
6c:40:20:93:8c:4b:9c:78:71:4f:8e:6b:a7:0b:60:4d:f3:0d:
ac:ea:82:7e:6e:68:cf:74:66:47:68:e1:b1:0a:5f:c2:78:3b:
0d:ae:cb:f1:06:d6:47:9f:1e:40:68:fb:6d:41:b4:ac:bc:c8:
5f:90:6a:28:53:a3:55:9b:4a:4e:93:a5:3b:35:95:bf:99:c6:
b4:3d:ef:3e:89:da:23:ac:30:62:13:83:6d:13:c6:42:3e:dc:
40:c7:bc:2d:a0:b8:db:a1:e0:ee:f6:c5:e9:dd:a2:41:88:f9:
89:45:b2:81:56:3c:4d:b9:78:24:63:ca:5c:1c:34:89:02:80:
a0:4c:22:26:62:51:4c:9b:d5:cd:4a:71:bb:1a:c9:db:4e:2f:
71:63:01:d6:fd:0d:73:6b:4b:9d:b1:fd:ed:51:65:a2:41:bd:
7e:b1:ae:40:7b:49:39:66:a9:d8:f8:52:0e:90:c9:2e:be:8d:
74:86:3d:eb:05:41:9d:45:06:f2:21:2a:ee:bf:0f:ea:32:04:
5d:af:55:1a:0b:32:ab:0e:96:e0:e0:37:bf:e7:bf:1f:97:a3:
50:78:45:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:21 2024 by rpki-client on console-ams.rpki-client.org