Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/SdOh-JO2u18VTLEVRLxFtlw6Fq4.roa
File: SdOh-JO2u18VTLEVRLxFtlw6Fq4.roa (raw, json)
Hash identifier: 5pX/mfnfqawm8iTB6O88jRHDglT8zOUUgrv6vlmBJus=
Subject key identifier: 49:D3:A1:F8:93:B6:BB:5F:15:4C:B1:15:44:BC:45:B6:5C:3A:16:AE
Certificate issuer: /CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Certificate serial: 05073051
Authority key identifier: 04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/SdOh-JO2u18VTLEVRLxFtlw6Fq4.roa
Signing time: Fri 29 Apr 2022 07:54:28 +0000
ROA not before: Fri 29 Apr 2022 07:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.113.116.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84357201 (0x5073051)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04cbe5b4623dab42f15a905002db7ce62e854f29
Validity
Not Before: Apr 29 07:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49d3a1f893b6bb5f154cb11544bc45b65c3a16ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e1:3b:b0:fc:00:fa:55:2c:d1:27:26:a1:20:
f7:05:0f:d1:01:7e:0f:19:ba:c0:68:36:17:2c:d5:
25:60:51:68:3f:fd:b8:00:8c:0f:f2:28:0f:77:94:
c4:ff:1a:65:10:35:01:83:bd:4f:4c:cb:02:ec:a8:
bb:7f:99:5c:41:72:a1:f8:98:f3:41:3c:87:94:21:
44:ba:0d:cc:f7:9c:9f:27:10:85:61:46:0d:a7:04:
cd:eb:2a:74:fe:4d:68:52:b4:be:5c:9f:01:40:8b:
02:4e:3b:49:19:f7:fb:00:b5:5c:f7:f6:05:16:4d:
ca:d8:d3:e0:eb:1a:eb:c8:6f:99:89:22:aa:28:6d:
f9:50:d2:c7:15:8e:b6:10:e5:1c:f1:45:97:63:96:
2b:b1:ee:d1:06:d5:0b:a5:3a:3a:8c:fd:6b:79:06:
33:68:58:b5:03:1e:a7:b7:a4:c1:38:ae:b6:bc:b0:
a4:31:b5:14:84:11:33:94:d9:2c:0f:3f:16:62:4e:
cb:c2:cc:e6:96:96:05:34:48:e4:52:9b:f9:af:57:
b8:e8:c3:67:8b:0b:db:51:fd:f6:e8:f5:ce:20:5a:
f9:44:c9:82:2a:b1:b0:91:ac:6a:57:2a:f7:b6:62:
11:65:f9:ae:bc:b1:96:db:ee:26:99:1d:97:20:74:
8f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D3:A1:F8:93:B6:BB:5F:15:4C:B1:15:44:BC:45:B6:5C:3A:16:AE
X509v3 Authority Key Identifier:
keyid:04:CB:E5:B4:62:3D:AB:42:F1:5A:90:50:02:DB:7C:E6:2E:85:4F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMvltGI9q0LxWpBQAtt85i6FTyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/SdOh-JO2u18VTLEVRLxFtlw6Fq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3d3a2d-a039-46f4-8687-057817ba9fb7/1/BMvltGI9q0LxWpBQAtt85i6FTyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.113.116.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:58:fc:24:55:2b:9b:f0:8c:6b:40:93:72:a4:6a:30:2a:75:
ab:35:e3:f2:cb:eb:79:2e:0c:a8:d5:fb:30:4f:df:46:c0:8f:
e7:bd:b7:9f:c1:40:69:6b:52:09:fe:e6:a9:b5:1b:c3:f4:76:
12:f6:6d:b0:23:1c:ae:c3:57:71:72:8c:13:65:8a:d1:4e:44:
ea:62:fa:ac:8b:95:cc:8d:a4:a3:fc:24:74:ca:39:78:57:c5:
09:cc:63:c7:bf:9a:6e:3d:a4:32:20:c0:3c:c7:fb:09:08:1d:
45:c0:09:ff:7f:cf:a9:a5:ad:21:1d:50:d1:11:9c:2b:e6:88:
23:13:b0:57:a4:4d:84:9a:fe:de:16:98:a8:5a:9a:fc:72:49:
08:8d:42:34:c2:b7:41:8e:d2:f0:9e:25:8c:fa:6f:9e:25:74:
1c:20:75:30:9f:65:97:be:c5:6e:b1:69:4f:e3:29:2d:95:4a:
78:57:f6:b1:88:aa:ea:d2:36:82:f8:64:ac:03:75:7d:f6:02:
7c:70:c6:9a:29:cd:be:11:08:26:24:67:ee:f3:7d:80:45:0c:
c4:11:49:ce:f2:62:be:7a:0c:3e:b4:02:5e:60:80:7a:fe:e5:
44:86:ba:88:3d:ef:14:d1:a7:92:9c:aa:1c:f7:56:f2:19:1e:
0a:c0:8a:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:10 2023 by rpki-client on console-fra.rpki-client.org