Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/BfEfPq9yL0n0XOemLTIE3-BDZSk.roa
File: BfEfPq9yL0n0XOemLTIE3-BDZSk.roa (raw, json)
Hash identifier: XU+OxU7AoNR/5n4aR74vv7p5T+QBRdx3phLlblmDGE0=
Subject key identifier: 05:F1:1F:3E:AF:72:2F:49:F4:5C:E7:A6:2D:32:04:DF:E0:43:65:29
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1D9ED6DD
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/BfEfPq9yL0n0XOemLTIE3-BDZSk.roa
Signing time: Thu 14 Apr 2022 10:25:51 +0000
ROA not before: Thu 14 Apr 2022 10:25:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 212.111.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 496948957 (0x1d9ed6dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Apr 14 10:25:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05f11f3eaf722f49f45ce7a62d3204dfe0436529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a4:17:47:e1:bd:63:68:f8:6a:4f:2c:b3:74:
cc:58:69:25:7e:92:ae:0e:35:12:88:5a:93:0f:53:
62:11:d5:00:04:50:47:47:fb:23:37:26:66:7c:b8:
32:69:98:43:54:de:03:f2:b3:7d:ee:93:40:b8:fd:
5d:7a:69:1a:50:d0:55:d6:60:b3:8e:4c:11:98:af:
59:ed:c1:db:cc:8d:b7:4e:a8:b4:85:be:d5:48:5d:
56:50:ca:fc:05:fc:73:ed:25:66:ec:c9:b5:d2:7b:
e5:51:9e:a7:46:44:03:52:e3:ec:b9:8a:0a:c4:cc:
14:bf:f7:c0:f8:24:a0:db:63:69:d3:97:27:86:2d:
8f:a3:5e:c2:0d:f9:5f:83:ce:5f:a8:5e:22:3c:b0:
09:4a:11:52:38:67:c2:f0:8c:42:13:1c:d1:17:98:
65:29:07:18:3a:07:53:61:54:8c:93:bf:79:21:33:
34:4a:63:1c:b6:38:d4:dd:3f:f1:f1:be:f5:cd:6e:
5e:91:c6:85:db:b2:0b:9d:02:22:d1:19:08:d6:76:
1a:50:c4:e1:be:4d:82:47:7d:2c:16:ab:15:53:7a:
fc:7e:ef:9c:71:61:c5:05:75:2f:f4:e0:ab:9e:5a:
8d:d3:75:4f:1f:95:90:1c:3e:9e:1f:79:76:a4:ea:
2b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F1:1F:3E:AF:72:2F:49:F4:5C:E7:A6:2D:32:04:DF:E0:43:65:29
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/BfEfPq9yL0n0XOemLTIE3-BDZSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.111.215.0/24
Signature Algorithm: sha256WithRSAEncryption
01:c4:17:a7:25:5e:f0:33:8e:63:8d:ba:ed:ef:c1:67:41:21:
0a:57:5c:f4:23:8f:2c:10:f9:2a:77:28:fd:96:fd:34:ea:19:
a6:1c:fb:19:c8:ff:ed:bf:34:c6:1a:08:1e:3f:97:af:4f:ee:
b3:ae:c5:97:ba:47:f1:25:bd:dc:f4:8e:51:01:99:10:5f:c7:
51:4d:65:f6:cc:67:a2:74:ad:7c:ca:85:7f:01:12:83:16:cd:
88:d8:2c:c8:ff:28:c5:65:30:da:88:1e:a0:0f:63:0d:f8:3c:
67:8b:26:ef:fb:13:2a:4d:4d:a0:bf:a2:82:69:c9:0c:e0:2f:
f9:16:08:0a:de:8e:30:45:2a:fc:b4:30:b3:26:75:72:14:49:
05:3d:98:89:48:b1:3f:a1:c0:f2:7c:67:4b:79:c3:7e:45:b9:
0e:73:67:50:49:2b:d4:3b:7f:77:8e:ee:b2:ac:ba:20:25:10:
e3:2c:57:6b:33:3c:c8:be:9f:cf:7c:e1:a5:92:a9:04:e7:e6:
29:5d:0e:67:af:2b:79:09:e0:a7:ca:23:fc:83:2e:29:94:b8:
86:49:db:11:67:32:80:1d:1d:52:b8:a3:c1:6c:5d:b5:e9:6b:
98:ae:3b:48:ff:7a:2d:0d:c1:da:fe:5e:2a:d6:35:7f:ff:51:
6f:bd:dd:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org