Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/3gl-pGdk9WCuzomvrV5IwLSZUDc.roa
File: 3gl-pGdk9WCuzomvrV5IwLSZUDc.roa (raw, json)
Hash identifier: 3paiXrRU+AYl60C7QZFDOmVx4a2sil9+K8lcM5/owaM=
Subject key identifier: DE:09:7E:A4:67:64:F5:60:AE:CE:89:AF:AD:5E:48:C0:B4:99:50:37
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018212C9BCD40C52442EB446E22920CCF4F9
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/3gl-pGdk9WCuzomvrV5IwLSZUDc.roa
Signing time: Mon 18 Jul 2022 19:29:47 +0000
ROA not before: Mon 18 Jul 2022 19:29:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 212.111.211.0/24 maxlen: 24
212.111.216.0/23 maxlen: 24
212.111.218.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:12:c9:bc:d4:0c:52:44:2e:b4:46:e2:29:20:cc:f4:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jul 18 19:29:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de097ea46764f560aece89afad5e48c0b4995037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c4:3f:f9:dd:e6:18:3e:b4:df:ab:ca:d2:be:
b2:7d:5a:79:17:ed:b1:09:54:be:5c:b1:95:d0:33:
8c:19:d7:b2:ba:02:c3:17:33:33:07:38:76:e9:91:
81:72:19:6c:ba:1d:25:28:df:4f:42:d2:41:53:d0:
37:b9:8d:01:a2:67:eb:f3:15:15:db:bb:04:cf:bc:
e8:68:48:41:f3:66:fe:6f:7f:84:cf:4a:d5:f0:e3:
fc:f4:c6:30:8a:df:3f:3e:5d:df:3b:67:4e:32:53:
1c:71:38:00:89:14:c3:8c:79:be:a9:2f:d5:9b:f6:
bd:73:26:2c:43:bf:82:69:82:30:02:0d:91:13:78:
cf:0b:c1:3c:5e:5e:4e:16:c9:c6:4e:8c:4b:f5:af:
c1:a9:22:8d:b0:eb:64:d0:ca:4e:81:d4:88:26:27:
00:7d:79:5d:73:bf:c7:cb:28:25:13:0c:34:26:fc:
61:23:69:0c:18:c9:ff:f9:a7:e3:2b:29:0b:7b:9d:
4d:b6:cb:54:e6:34:63:ba:7b:db:35:a0:2f:79:48:
ad:7f:71:f7:08:1f:bb:0b:d2:58:45:ba:26:bc:ea:
b2:87:b1:90:2b:b2:56:f4:88:04:cc:3a:b0:76:6f:
81:51:bc:eb:ec:d0:e0:2f:24:e7:e4:f2:74:44:40:
1f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:09:7E:A4:67:64:F5:60:AE:CE:89:AF:AD:5E:48:C0:B4:99:50:37
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/3gl-pGdk9WCuzomvrV5IwLSZUDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.111.211.0/24
212.111.216.0/22
Signature Algorithm: sha256WithRSAEncryption
49:19:d6:71:88:bd:9b:70:e3:18:89:6b:84:15:94:1f:da:7a:
50:90:c9:08:78:21:3f:74:36:8c:8b:a7:19:81:f5:c0:30:c3:
a8:74:06:32:82:1a:55:1f:8f:f6:c2:7c:f6:57:d0:3d:79:cc:
f6:02:dd:87:35:52:37:d7:99:73:e6:1a:19:bc:4e:16:c3:b1:
b7:fb:0e:1e:d5:4f:77:e1:6e:22:d4:f5:f3:66:e9:46:11:08:
9f:e8:c3:bf:82:33:a8:f5:f8:0c:84:7c:81:b2:3a:5a:43:85:
26:53:bf:3c:7e:50:ff:06:d4:4e:4b:0c:c3:fb:60:2d:be:7a:
4c:7d:4e:fb:5a:c4:90:72:f1:a8:51:35:c6:7b:44:67:9e:40:
a4:43:93:4e:e8:79:c4:bd:81:2f:8f:82:08:39:05:b9:19:dc:
dc:af:27:01:8f:59:ff:ec:96:1b:2c:29:0b:ce:39:1a:43:90:
de:53:95:25:d6:b3:ff:65:63:91:44:77:1a:70:ee:fc:e5:a5:
c0:c2:3a:68:3e:28:87:4b:f8:cf:5e:6b:8f:48:56:6e:fb:59:
c0:47:de:ec:7b:2c:db:42:aa:a6:a4:d2:c0:43:2b:95:60:45:
7d:99:36:df:33:85:8d:83:88:09:c3:75:76:a7:4a:ff:6a:f4:
51:7b:d0:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org