Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/rgU9lY2i_J1INHIEWR8RdXzHHmI.roa
File: rgU9lY2i_J1INHIEWR8RdXzHHmI.roa (raw, json)
Hash identifier: df9W64QXwUQqtZAOSBhc56a25QRJP5Ty1tRKHkuArqo=
Subject key identifier: AE:05:3D:95:8D:A2:FC:9D:48:34:72:04:59:1F:11:75:7C:C7:1E:62
Certificate issuer: /CN=7c673daad6d9317f0101d41a042a61e57689453a
Certificate serial: 019B7537
Authority key identifier: 7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/rgU9lY2i_J1INHIEWR8RdXzHHmI.roa
Signing time: Sat 01 Jan 2022 08:58:13 +0000
ROA not before: Sat 01 Jan 2022 08:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 203.12.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26965303 (0x19b7537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c673daad6d9317f0101d41a042a61e57689453a
Validity
Not Before: Jan 1 08:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae053d958da2fc9d48347204591f11757cc71e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:71:46:68:41:72:54:73:56:e0:22:eb:4f:57:
34:63:32:da:8f:0d:1e:e5:2c:c4:04:2d:cf:6b:d9:
9d:b3:56:78:ad:67:b4:ad:c9:e5:c5:a0:ab:07:d7:
c9:f2:00:29:05:7f:4b:6d:40:67:e8:28:e3:68:d5:
1b:b9:71:0d:d7:a7:0a:ef:ff:a1:50:b6:16:1b:03:
19:46:65:8b:d5:5e:14:b9:3a:12:35:67:54:ed:c3:
43:5a:a6:c3:cd:1c:e7:e9:fa:47:bb:2e:05:43:91:
a7:3b:02:3b:fa:0b:2f:ef:86:d5:83:ef:c5:bc:50:
8f:14:e5:c5:7c:40:03:d4:aa:44:03:d9:3d:04:56:
97:c7:3c:31:a9:52:a7:90:1e:bb:fa:c9:4e:c2:94:
f3:76:b9:dd:3a:75:c4:29:74:c7:5b:66:76:dc:f7:
4d:00:65:01:a3:d6:2a:ef:7f:90:e9:f5:e9:58:3f:
c8:89:ea:b8:17:b6:12:25:d3:72:3e:53:f4:3e:ba:
4e:f3:4a:29:1a:15:9e:98:0c:0a:6e:cc:ef:34:a2:
fd:35:82:fb:2b:28:a3:a9:7d:fc:3f:2e:63:b9:fe:
06:0e:69:bf:10:5c:ea:fd:8b:52:d8:88:c3:ba:88:
81:eb:d6:0b:a7:ec:a8:f4:06:d0:fa:c9:59:b8:47:
7c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:05:3D:95:8D:A2:FC:9D:48:34:72:04:59:1F:11:75:7C:C7:1E:62
X509v3 Authority Key Identifier:
keyid:7C:67:3D:AA:D6:D9:31:7F:01:01:D4:1A:04:2A:61:E5:76:89:45:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fGc9qtbZMX8BAdQaBCph5XaJRTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/rgU9lY2i_J1INHIEWR8RdXzHHmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f037db-7592-4b62-bdaa-04e46ef0cd21/1/fGc9qtbZMX8BAdQaBCph5XaJRTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.12.218.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f5:1e:5c:50:a5:e6:37:0d:5e:52:62:ed:97:45:53:93:ce:
1f:9a:3b:6d:f9:2e:ed:62:8d:2e:5b:dd:7e:ce:0d:37:83:2b:
19:c3:47:b3:80:96:9a:4b:e2:01:25:98:c4:43:2d:2d:b1:3e:
21:01:91:ce:7c:d8:64:7a:d2:99:f6:c2:69:4f:d6:31:31:f7:
71:4c:79:2b:56:f2:f2:24:46:a0:6c:41:1b:50:d7:8a:79:4e:
0a:1a:50:52:3c:ac:de:fd:c6:25:ce:59:04:17:70:da:f7:53:
dc:93:4c:c6:26:a6:76:06:fb:da:99:a4:78:6c:c0:9e:28:a0:
29:54:92:4f:47:6a:92:fc:5a:87:7e:3f:f0:d0:7d:d2:a9:5e:
d7:cc:a2:98:eb:23:1a:0c:f8:44:e2:8f:06:cc:55:5d:cd:81:
06:77:12:22:92:8e:76:3d:00:aa:62:68:f8:f5:2b:09:e7:51:
bc:51:27:d7:50:c8:da:98:20:45:1a:3a:de:35:69:b4:27:94:
48:d6:73:24:ba:4b:69:06:37:0c:fc:e9:5e:15:48:84:02:02:
18:db:65:9b:98:a4:85:62:5b:43:96:66:dd:f3:46:25:5e:96:
1b:31:f5:01:a0:f3:0d:dd:ac:ab:70:fe:50:6f:ad:a6:a8:43:
1c:fa:f9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:45 2024 by rpki-client on console-fra.rpki-client.org