Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/UG7zQyVlHknX8kU8-OBpWA7ltso.roa
File: UG7zQyVlHknX8kU8-OBpWA7ltso.roa (raw, json)
Hash identifier: y7r4ZCsj5nAdzeyRr2DdhxA2WHeKzDoETNZTvGtrjwE=
Subject key identifier: 50:6E:F3:43:25:65:1E:49:D7:F2:45:3C:F8:E0:69:58:0E:E5:B6:CA
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 04F78BCD
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/UG7zQyVlHknX8kU8-OBpWA7ltso.roa
Signing time: Wed 11 May 2022 08:31:02 +0000
ROA not before: Wed 11 May 2022 08:31:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18046
IP address blocks: 212.30.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83332045 (0x4f78bcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: May 11 08:31:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=506ef34325651e49d7f2453cf8e069580ee5b6ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3e:3f:5c:1a:50:32:d4:ef:ca:0d:e1:48:f1:
cc:9e:29:15:93:e2:e1:8d:0a:e4:27:ec:62:5e:85:
c7:cb:a4:bd:11:02:7c:f1:d7:5a:f2:96:43:41:46:
cc:5b:da:ff:2e:04:84:1b:f3:63:58:b6:d6:1f:60:
2a:02:d2:0e:0d:57:e4:a4:f5:36:cd:9f:91:64:de:
ef:94:ed:eb:b0:ae:31:c2:4b:0f:88:d6:52:4d:a5:
b4:21:ef:df:f9:b5:0b:75:97:54:e2:9a:d7:ff:f1:
ce:67:e2:fe:85:fd:92:28:0a:25:f1:96:7a:74:a1:
3e:10:9c:f0:5c:a1:e7:8f:9e:6f:18:82:7c:77:4c:
73:69:a3:9d:c4:a3:3e:c6:60:8c:90:ed:37:1d:ac:
68:86:6e:11:4b:79:ec:a7:d2:b4:6b:5c:b0:eb:34:
1c:3a:82:59:90:86:0f:0f:1b:c8:cc:f5:c9:81:9d:
ce:48:e9:d4:b1:3c:a2:5b:d8:61:3a:6e:ea:0c:e7:
16:d7:e6:a5:12:a6:e5:3b:9b:52:cc:43:d8:42:96:
0b:89:12:88:89:60:cf:ce:6e:93:78:34:96:34:0e:
c2:62:a7:aa:1c:3a:e3:85:9d:33:59:35:4e:fe:e2:
78:33:78:6d:26:5d:45:24:07:e5:76:be:83:f4:52:
a5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:6E:F3:43:25:65:1E:49:D7:F2:45:3C:F8:E0:69:58:0E:E5:B6:CA
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/UG7zQyVlHknX8kU8-OBpWA7ltso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.30.40.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:1f:fd:88:f6:a8:8d:8e:79:d6:0b:5e:74:58:1a:39:e7:28:
f8:98:57:fd:e4:74:75:23:dd:99:b0:11:68:a8:63:d9:a0:63:
56:7e:af:11:92:a1:64:6d:f9:7e:5e:62:d7:78:67:2e:11:a6:
ea:95:99:95:41:0b:9a:3c:c7:81:d3:a8:19:cc:3a:ff:4a:96:
ee:9b:54:c1:dd:33:e8:8d:5b:d1:1f:01:89:03:54:50:d7:db:
aa:cc:20:0c:db:89:a0:c9:8f:ec:95:a5:0c:db:27:a2:e1:eb:
04:40:df:96:41:ed:6c:f6:30:8e:1d:e3:f2:a2:ed:9d:4e:7b:
11:e4:5a:13:a2:d6:31:3e:34:cd:a9:0d:0d:3b:8d:c7:b4:8c:
7e:2d:cd:02:95:db:e2:c7:52:3e:bb:d2:e5:66:48:b0:78:79:
ef:c0:c7:3d:58:4f:da:c5:6a:8a:9d:eb:4d:c8:9b:6b:58:f4:
90:21:4e:16:5c:bc:3a:c0:ca:b8:80:87:74:b9:4e:24:b8:9d:
8a:3b:55:cd:ef:4d:e0:af:a5:c5:83:8a:15:e2:c6:3b:c7:cf:
f8:33:17:5b:d0:4e:c6:1f:56:3a:e9:72:49:a7:04:03:8f:eb:
6c:59:3b:14:35:35:39:b0:26:3c:50:9b:1d:1f:54:e4:01:78:
61:9e:42:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:28 2023 by rpki-client on console-ams.rpki-client.org