Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/umTe1td_2EGiB5C55-MzQemFmBU.roa
File: umTe1td_2EGiB5C55-MzQemFmBU.roa (raw, json)
Hash identifier: 9j92F20E7BaFl8wtXh2PpLTvsKDm8pK+1SQbj2bJ4eg=
Subject key identifier: BA:64:DE:D6:D7:7F:D8:41:A2:07:90:B9:E7:E3:33:41:E9:85:98:15
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 04FB02D2
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/umTe1td_2EGiB5C55-MzQemFmBU.roa
Signing time: Thu 12 May 2022 15:10:35 +0000
ROA not before: Thu 12 May 2022 15:10:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18046
IP address blocks: 212.30.40.0/22 maxlen: 22
212.30.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83559122 (0x4fb02d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: May 12 15:10:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba64ded6d77fd841a20790b9e7e33341e9859815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3a:26:51:44:3d:86:4d:d7:33:ab:b0:22:1b:
fd:1d:68:fb:14:94:c0:0c:31:9a:bb:df:f1:44:fd:
d5:c8:74:be:37:de:98:be:c5:b0:2b:b7:a9:f4:b1:
75:01:e7:cb:2d:15:0b:ff:ec:f9:e4:2f:5c:63:9e:
27:75:a9:b8:b7:46:5b:93:c6:94:10:a4:2d:12:d0:
4f:c1:5b:54:d8:51:07:83:b5:cf:71:d2:b5:4a:45:
6e:72:25:a2:87:40:24:b7:19:3d:fa:9b:36:cc:d6:
81:ab:8b:d9:bc:7c:16:7f:90:a5:8f:a9:2e:5c:18:
de:a9:46:e5:25:59:88:f9:5c:19:52:78:63:db:df:
4b:c6:ff:b8:8f:3c:1c:e6:67:d3:31:82:5f:4e:9b:
ae:8d:33:ad:70:10:bd:43:ce:fa:12:98:e5:05:5f:
e0:60:2d:bb:b7:2e:f7:b1:c4:92:2e:00:8d:61:c4:
75:4d:d2:7b:fc:b0:6c:88:c1:7e:a2:7d:e9:3b:2c:
9f:9e:82:03:e2:9e:04:76:b7:92:8c:84:70:58:23:
a4:3e:34:40:89:82:24:67:55:82:bd:b7:1c:31:67:
e6:a2:29:03:c9:5b:eb:0e:13:3d:ff:0d:38:b4:67:
82:fd:54:2d:8f:e7:18:29:97:75:b5:b7:64:24:58:
21:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:64:DE:D6:D7:7F:D8:41:A2:07:90:B9:E7:E3:33:41:E9:85:98:15
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/umTe1td_2EGiB5C55-MzQemFmBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.30.40.0/22
212.30.56.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:3c:cb:f5:80:b3:fc:24:b7:14:62:1f:05:dd:6e:d2:31:d4:
d2:d8:5b:b7:ea:13:69:b9:db:c5:f5:6c:16:a4:37:4e:cb:de:
d6:40:27:84:4e:97:53:8d:88:e0:39:1d:3d:33:d3:be:07:89:
0f:db:a1:ca:bf:80:61:6c:6d:8c:bf:9c:78:b6:33:94:2e:e6:
d2:f1:96:27:fc:49:5f:f1:b6:93:04:b7:b3:db:7c:a7:32:78:
1d:7c:71:88:fd:bd:3d:b1:b1:fc:6c:cd:6c:e7:09:1b:60:b0:
59:57:66:a1:2a:cb:a8:9b:d7:cc:32:0f:7b:b0:fb:54:5e:bb:
8f:20:37:c3:3f:81:df:c1:d2:95:d7:d8:22:d9:ed:98:3e:a7:
42:b1:f7:49:a5:e1:cf:78:ff:6b:b0:c1:f6:d8:eb:55:2a:5d:
0c:7e:44:14:dd:d2:15:a6:b4:68:3f:41:7f:0c:a0:ed:59:d8:
62:7d:99:31:6d:5d:da:10:cd:74:ff:76:db:b8:6c:b6:dc:c1:
f6:e2:bc:ac:e9:e5:39:e7:b4:d5:4d:7a:31:48:de:8f:55:1d:
5c:dd:5e:37:ec:3e:ea:ec:99:a2:08:0d:17:bf:f3:77:b5:6b:
62:a0:92:3f:9f:ef:4e:64:93:80:c8:ac:a4:10:33:d9:d2:35:
7c:7e:67:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:36 2023 by rpki-client on console-fra.rpki-client.org