Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/D6tFPxkHKqCaHeSLHQtBTZyN4Ic.roa
File: D6tFPxkHKqCaHeSLHQtBTZyN4Ic.roa (raw, json)
Hash identifier: swfnp5BWSvBqY2BX05lEbozWmw3X18La/cJUSknKmw8=
Subject key identifier: 0F:AB:45:3F:19:07:2A:A0:9A:1D:E4:8B:1D:0B:41:4D:9C:8D:E0:87
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 04001750
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/D6tFPxkHKqCaHeSLHQtBTZyN4Ic.roa
Signing time: Fri 21 Jan 2022 17:30:23 +0000
ROA not before: Fri 21 Jan 2022 17:30:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20860
IP address blocks: 212.30.38.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67114832 (0x4001750)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: Jan 21 17:30:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fab453f19072aa09a1de48b1d0b414d9c8de087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3b:ff:4d:3b:32:55:e4:e9:36:57:e6:b6:a4:
da:e4:cd:12:75:75:7b:67:8b:dc:f8:55:07:20:1a:
76:ea:e9:31:46:fa:b8:bd:b9:71:4d:9e:46:0c:95:
91:ac:78:fa:bd:22:e0:91:48:33:d1:46:02:15:eb:
81:69:96:3e:cf:96:13:46:f9:34:c5:81:5e:43:af:
93:da:e5:8c:da:e6:70:55:85:66:95:14:30:59:b5:
78:4c:bf:a3:55:66:69:98:b4:2e:3f:82:1f:4c:a7:
3e:26:b5:85:8a:be:af:8d:89:ec:68:f3:02:ab:42:
2e:da:40:60:72:d2:5c:78:d2:58:96:be:87:33:4e:
4f:05:5f:d1:ae:b2:f0:55:20:bf:d4:4b:05:24:a9:
53:04:16:d1:78:01:50:ff:af:92:ef:ce:06:e9:28:
db:ee:95:2d:31:f3:57:2e:7d:9c:c9:35:f4:5a:0d:
4d:0c:82:a5:cf:20:09:6b:d3:c4:6e:16:57:c1:5e:
a9:e5:22:26:3c:b4:bc:c2:e6:2f:39:a9:99:f2:9e:
6a:f4:89:7b:b1:ca:58:a5:cb:05:33:bc:d9:cf:81:
d7:e0:44:9a:b8:2b:f9:a2:fe:bf:e6:a5:a3:08:47:
dd:43:46:38:ed:25:e2:ef:e3:b3:56:1d:86:44:1a:
bc:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AB:45:3F:19:07:2A:A0:9A:1D:E4:8B:1D:0B:41:4D:9C:8D:E0:87
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/D6tFPxkHKqCaHeSLHQtBTZyN4Ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.30.38.0/23
Signature Algorithm: sha256WithRSAEncryption
56:87:b5:b8:ab:fb:28:07:04:f3:b9:79:3f:78:98:0f:a9:b5:
03:4d:a6:09:9a:5f:c2:d2:18:34:ef:68:67:61:76:98:04:e4:
bd:22:23:e4:17:1a:1f:11:ca:c9:25:d7:8b:a9:90:2f:15:cf:
97:e3:bb:45:76:9a:14:8b:b8:d4:c6:ca:71:42:b8:a5:57:0e:
5e:37:db:93:3b:6e:50:51:ca:01:50:9d:83:f6:97:ef:86:f7:
c1:fa:84:fe:b6:28:b6:0b:d4:3d:2a:8a:66:ce:d0:18:48:39:
f5:14:ff:fd:83:a3:2a:ce:59:2b:ba:69:df:00:7d:a0:95:e5:
f7:86:de:ca:8b:cf:73:64:90:04:c4:a6:e8:1b:d5:04:11:2a:
e6:75:2f:73:69:e6:9c:f0:9a:5b:04:05:b2:cb:f2:1d:fe:95:
f2:18:39:62:bc:6b:30:cb:37:a1:90:00:2f:c8:48:87:bd:27:
8a:dd:65:14:3e:6e:3b:24:c4:eb:a0:d2:d0:b2:8f:f0:cc:24:
5c:dd:98:9a:b7:d7:1d:07:04:77:cb:a4:cb:ee:fa:62:39:93:
f3:dd:07:21:8b:d8:bd:95:ed:d7:e3:ea:35:1e:e6:58:c3:20:
ca:44:7a:11:6e:81:d7:63:53:90:6e:0b:32:02:29:06:62:61:
71:1a:7c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:27 2023 by rpki-client on console-ams.rpki-client.org