Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/RlBmTpB_wt1hfW8qLUVNNmf6hS8.roa
File: RlBmTpB_wt1hfW8qLUVNNmf6hS8.roa (raw, json)
Hash identifier: i/GZlwss38lA5SfIVgDn6/2k4vi+z52qpWV7SWhZH5U=
Subject key identifier: 46:50:66:4E:90:7F:C2:DD:61:7D:6F:2A:2D:45:4D:36:67:FA:85:2F
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 1A92FCA7
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/RlBmTpB_wt1hfW8qLUVNNmf6hS8.roa
Signing time: Thu 27 Jan 2022 15:36:14 +0000
ROA not before: Thu 27 Jan 2022 15:36:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25178
IP address blocks: 212.9.96.0/19 maxlen: 24
2a02:2b90::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445840551 (0x1a92fca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Jan 27 15:36:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4650664e907fc2dd617d6f2a2d454d3667fa852f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:86:52:5e:7b:a5:ae:9e:a9:1c:7a:df:d7:f5:
59:cc:e5:7b:bd:3a:6f:51:58:39:3d:76:a7:7b:88:
11:1e:32:59:fc:9b:ca:88:e0:09:2e:85:33:53:28:
31:98:50:51:16:b1:f7:0a:c1:b2:1e:de:21:e7:ee:
af:71:54:66:fd:7e:a6:50:78:4d:40:54:d3:3a:12:
f8:e9:ff:c7:50:9a:0d:55:4f:cf:ba:e0:56:ec:14:
98:4d:20:ad:20:39:48:b1:b8:a5:34:81:a4:1a:60:
ca:39:9d:65:d4:66:74:95:80:08:bd:0f:df:3d:5d:
85:ec:2c:8e:20:ad:bb:99:3d:9e:25:f2:80:20:7b:
ec:e2:2d:9a:fe:25:18:18:51:86:d5:0b:6f:16:b7:
eb:d4:2e:0f:34:01:fd:ed:39:4f:35:23:b5:58:14:
e4:8a:a0:6e:50:12:e6:59:e2:a4:7a:63:2c:46:ae:
57:22:60:20:fb:91:f5:12:3f:fc:e4:d5:06:80:12:
80:27:73:6b:d2:39:65:5c:36:52:a8:d0:96:36:76:
50:6e:fc:ec:aa:9c:1b:b1:51:52:04:28:d1:72:11:
11:54:ea:2c:f7:95:ba:b6:97:d2:7a:6a:80:32:72:
b9:0b:b4:6c:26:8f:43:6d:ed:b4:cf:6a:11:9b:84:
42:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:50:66:4E:90:7F:C2:DD:61:7D:6F:2A:2D:45:4D:36:67:FA:85:2F
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/RlBmTpB_wt1hfW8qLUVNNmf6hS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.9.96.0/19
IPv6:
2a02:2b90::/29
Signature Algorithm: sha256WithRSAEncryption
60:ad:0e:7e:b2:ec:90:0e:e0:85:1d:37:28:be:c9:a1:57:54:
d8:6c:57:f9:a9:de:e4:56:ea:95:ac:eb:69:3f:4f:57:de:88:
61:d7:85:28:30:64:1c:96:54:73:b6:51:37:3e:1f:1a:49:82:
09:c4:d9:db:2d:35:cf:d9:31:43:69:dc:22:9a:10:08:5e:dc:
c7:41:71:9d:c5:9a:79:71:05:42:8b:aa:a0:82:97:db:d1:5d:
fa:a5:fb:62:aa:e1:20:a4:04:b9:37:91:87:24:03:3f:36:54:
43:33:4a:2a:37:78:30:4d:5c:25:f4:c7:7e:95:a8:d5:be:13:
bd:a1:b7:e6:64:bd:e9:5d:39:dd:c5:65:69:6f:90:0d:94:a7:
fd:d9:5d:dd:19:a7:72:68:08:0f:11:38:a0:dd:5b:4d:db:94:
19:33:3c:2f:e2:a2:cb:f4:1a:c7:f8:89:a4:20:81:3d:80:ea:
73:29:cd:77:1f:fc:e8:e0:dc:cc:5e:67:1f:39:90:86:07:18:
92:41:62:1c:fd:d8:15:ae:84:ad:ea:fd:72:8a:21:c0:db:82:
83:4e:3d:7f:3d:4f:57:fe:31:fb:26:cd:92:86:4f:a7:3f:9f:
e5:29:b2:8e:11:e0:72:77:e1:74:e3:10:61:27:86:3b:80:38:
73:a7:d2:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:18 2023 by rpki-client on console-ams.rpki-client.org