Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d78fc5-bf3e-4686-8d85-c33f8a21122c/1/vf3fQ0_hJH0T-o3sYs-w2FRVd5Q.roa
File: vf3fQ0_hJH0T-o3sYs-w2FRVd5Q.roa (raw, json)
Hash identifier: CR1LnxnPzFdAjQXKxYjc1EoKAf6UKHoXqfsDmoWOFRI=
Subject key identifier: BD:FD:DF:43:4F:E1:24:7D:13:FA:8D:EC:62:CF:B0:D8:54:55:77:94
Certificate issuer: /CN=ed2fa686d18c8020afc6adf55afdbe660dbaac15
Certificate serial: 03AE9DFD
Authority key identifier: ED:2F:A6:86:D1:8C:80:20:AF:C6:AD:F5:5A:FD:BE:66:0D:BA:AC:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7S-mhtGMgCCvxq31Wv2-Zg26rBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d78fc5-bf3e-4686-8d85-c33f8a21122c/1/vf3fQ0_hJH0T-o3sYs-w2FRVd5Q.roa
Signing time: Sat 01 Jan 2022 14:07:56 +0000
ROA not before: Sat 01 Jan 2022 14:07:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212870
IP address blocks: 212.104.212.0/22 maxlen: 22
91.198.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61775357 (0x3ae9dfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed2fa686d18c8020afc6adf55afdbe660dbaac15
Validity
Not Before: Jan 1 14:07:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bdfddf434fe1247d13fa8dec62cfb0d854557794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7a:47:67:a8:d7:90:9d:8c:5b:48:47:7f:14:
5f:8b:f8:21:c2:96:c8:4f:40:a6:49:15:6a:f3:73:
08:01:22:d3:b9:5e:fc:f7:35:a2:18:29:70:c6:8f:
08:80:bc:48:40:57:7e:4a:c1:7a:cb:b6:0b:7f:6c:
07:5a:70:0c:7b:1b:9d:d0:94:d3:32:e1:ff:05:1a:
ee:e8:7f:ae:08:9b:5f:99:b9:8c:59:d7:67:52:58:
7e:21:b5:7d:8e:09:9c:c3:a1:e0:79:29:6a:d9:41:
aa:37:31:3f:83:cf:76:c8:24:6b:aa:0f:31:e4:3b:
76:68:4a:a9:23:e1:c6:fb:09:90:14:49:0f:73:b6:
5f:5b:19:e5:9e:64:16:e7:87:42:e3:c2:98:59:a2:
a7:1a:a1:46:52:df:53:ea:76:75:59:1b:55:16:e7:
54:b7:f7:4e:48:bc:5b:28:a5:35:40:d6:82:d2:85:
da:a0:14:e2:9a:94:f5:e4:9a:b4:6c:a6:73:b0:39:
b1:f1:e6:99:3f:19:82:df:8b:f6:7e:e7:7f:3f:a8:
21:1b:3f:68:81:d9:fa:cb:75:63:43:5a:d5:f0:55:
c8:fa:7b:94:00:81:38:76:76:60:99:e0:85:10:56:
fa:03:83:89:c2:2c:71:97:aa:aa:38:d1:35:ca:3b:
f7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:FD:DF:43:4F:E1:24:7D:13:FA:8D:EC:62:CF:B0:D8:54:55:77:94
X509v3 Authority Key Identifier:
keyid:ED:2F:A6:86:D1:8C:80:20:AF:C6:AD:F5:5A:FD:BE:66:0D:BA:AC:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7S-mhtGMgCCvxq31Wv2-Zg26rBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d78fc5-bf3e-4686-8d85-c33f8a21122c/1/vf3fQ0_hJH0T-o3sYs-w2FRVd5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d78fc5-bf3e-4686-8d85-c33f8a21122c/1/7S-mhtGMgCCvxq31Wv2-Zg26rBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.188.0/24
212.104.212.0/22
Signature Algorithm: sha256WithRSAEncryption
40:80:62:c9:c1:2c:3c:f4:80:36:de:12:c9:62:3f:d2:7c:37:
73:55:cc:6e:91:a1:60:f7:7f:46:81:60:eb:cb:a6:9f:c2:ce:
ea:80:68:e9:12:9f:28:7c:cc:45:23:37:d1:7c:72:a4:2a:10:
9e:32:b8:38:58:ba:85:58:6f:43:75:83:86:02:ad:93:9f:f7:
67:e4:63:c3:7c:8c:ae:1d:d2:23:4c:dd:39:62:a0:52:fa:52:
8d:a6:48:b3:58:8b:03:38:48:f5:4c:3a:26:d7:39:df:e8:d8:
16:d3:b8:4b:45:6c:0a:b6:e4:1b:c2:69:8e:88:09:9e:2d:cf:
5a:99:02:c7:47:a8:3f:4b:46:10:f1:cb:ed:db:6a:56:88:bb:
c7:17:b8:a1:49:97:27:8d:b9:7e:64:68:6f:43:40:d7:84:ab:
41:22:cc:ac:3e:40:90:39:77:be:41:50:cd:63:11:57:a3:91:
0a:23:c3:ba:be:c8:ca:f6:4b:1c:57:dd:c5:f1:aa:70:e7:db:
70:f7:1f:39:30:f4:6e:72:4b:7a:7c:78:31:cc:ac:61:db:69:
a9:9b:55:f4:24:b8:90:e5:43:5f:69:e4:10:9b:91:70:79:62:
12:6e:22:80:38:b6:e4:ae:e3:05:cf:74:c5:a5:cd:e0:ce:d2:
19:05:1c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:07 2023 by rpki-client on console-ams.rpki-client.org