Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jyYgGmp4o3bXvSaQpdCbUv-2nqw.roa
File: jyYgGmp4o3bXvSaQpdCbUv-2nqw.roa (raw, json)
Hash identifier: VdjQz3ol9OsVKuOQi3QV6n4DmgYtFvhLya+s5HABnMY=
Subject key identifier: 8F:26:20:1A:6A:78:A3:76:D7:BD:26:90:A5:D0:9B:52:FF:B6:9E:AC
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 1C3E5918
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jyYgGmp4o3bXvSaQpdCbUv-2nqw.roa
Signing time: Sat 01 Jan 2022 07:55:38 +0000
ROA not before: Sat 01 Jan 2022 07:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197361
IP address blocks: 212.111.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 473848088 (0x1c3e5918)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 07:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f26201a6a78a376d7bd2690a5d09b52ffb69eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:55:4d:3a:bc:5e:4f:1f:82:79:58:f4:07:6c:
9a:5f:a0:f6:31:9e:c1:3d:db:4d:da:4c:ca:59:5a:
b0:ee:60:e3:bc:f7:84:78:3b:ef:4a:cd:1f:df:02:
c8:26:2c:17:22:dd:b3:7f:88:29:f3:c2:51:e1:32:
f2:6b:7d:e4:44:63:9e:d1:a4:2a:9d:26:08:6a:d8:
70:33:1a:d7:47:1a:5b:bb:93:e2:ff:81:81:12:8c:
41:c8:ad:d2:bc:d1:8b:a1:80:59:f3:5e:d7:ac:89:
4e:ea:9f:01:c7:db:b7:7f:c7:4d:90:52:e2:c6:e9:
74:94:45:a4:a6:6d:a7:e1:49:10:0c:bb:36:d1:d8:
e7:c0:4e:85:cb:ae:3a:9b:85:d5:ab:c8:e1:30:f0:
98:c1:7e:63:ff:ee:0e:b1:ea:70:d7:6d:ba:08:c8:
f2:f4:63:1b:f6:c3:5e:ce:51:af:8d:b4:15:ec:1f:
ef:9e:ed:8b:fe:d0:13:0a:44:a8:68:2e:29:ea:90:
7d:03:85:37:9d:1f:fe:df:cd:d0:79:7c:5a:84:a4:
b4:fb:0d:94:56:5f:73:2a:73:60:1d:4a:2f:3f:cf:
c5:6d:cb:2a:e0:63:54:95:d9:cc:cc:0e:64:c3:29:
9f:b0:d0:a9:7e:8f:f7:18:15:12:91:ea:48:91:eb:
04:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:26:20:1A:6A:78:A3:76:D7:BD:26:90:A5:D0:9B:52:FF:B6:9E:AC
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/jyYgGmp4o3bXvSaQpdCbUv-2nqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.111.209.0/24
Signature Algorithm: sha256WithRSAEncryption
45:c9:4f:09:26:7e:a9:0f:99:eb:dd:7d:71:9f:51:04:14:ef:
08:71:88:b4:dc:b7:06:ad:7c:1e:e9:e0:6b:ff:0b:52:a7:fa:
94:4e:b7:2b:cb:f9:60:19:47:ab:b8:e1:fb:c5:17:61:ef:34:
8f:71:1c:2c:8a:57:f6:6b:67:ff:e5:ed:3a:40:1a:73:58:95:
b5:35:06:25:0c:2d:bf:28:cd:06:af:05:91:d5:ec:c1:08:ea:
f2:af:62:8a:b4:88:41:ed:0e:f5:35:81:92:2e:06:49:ec:57:
fa:24:69:fb:e6:67:e4:ef:df:39:c9:81:c7:e2:8d:61:61:56:
a3:b0:c9:7c:0e:16:22:ba:c6:bc:c0:2d:61:c4:90:79:24:d8:
10:1c:43:69:8a:be:69:4d:fa:32:50:b7:47:d1:e3:de:d9:9c:
60:40:dd:0e:82:9a:41:23:2b:10:bd:a5:6f:1d:d5:26:c0:df:
c0:3c:3d:1d:92:c5:92:34:4d:a6:c9:d0:2a:53:07:d1:c8:14:
ea:2a:ec:14:01:c0:b0:5a:fe:d6:a3:66:32:89:55:9f:6d:b9:
fb:32:c6:a0:aa:06:b4:e8:bf:aa:70:74:93:4a:b3:fc:e1:0e:
21:c6:c5:12:45:56:00:8e:cc:8f:16:e3:10:19:99:49:6e:b1:
7a:69:2a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org