Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/fqeFe9IXgq8Z6mk5qZXmGNsWjs4.roa
File: fqeFe9IXgq8Z6mk5qZXmGNsWjs4.roa (raw, json)
Hash identifier: Osk5C/t7twf1wj+oZ3NpMumrsYNX47pmvNUq55T02ZI=
Subject key identifier: 7E:A7:85:7B:D2:17:82:AF:19:EA:69:39:A9:95:E6:18:DB:16:8E:CE
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 0A54284D
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/fqeFe9IXgq8Z6mk5qZXmGNsWjs4.roa
Signing time: Sat 01 Jan 2022 12:58:09 +0000
ROA not before: Sat 01 Jan 2022 12:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202199
IP address blocks: 212.70.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173287501 (0xa54284d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Jan 1 12:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ea7857bd21782af19ea6939a995e618db168ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:99:b5:c9:e1:49:d9:8f:2a:94:1c:b8:c1:c4:
45:67:6d:92:cd:d4:3a:07:70:3e:f1:6d:31:7d:56:
3d:b5:20:09:4e:bb:16:53:2b:b3:68:d6:a9:3b:a6:
34:5c:71:d0:b5:66:1d:df:09:16:fa:62:ad:37:fa:
1d:be:c4:1c:09:8a:6f:bc:b6:2f:77:cc:24:91:ea:
9e:70:42:3e:aa:c5:d1:f0:41:7a:2a:cd:25:ab:40:
4d:80:c1:ea:1f:f3:b4:18:40:c4:58:13:6f:e4:2e:
36:4d:09:8f:c6:d2:17:b3:09:14:2c:a9:01:dd:c8:
af:4d:44:19:ea:9f:e9:51:40:fd:d0:a1:35:03:51:
f7:1d:81:07:bc:2e:a2:fb:01:30:97:f2:fd:ac:46:
ac:01:ec:2f:c6:6f:17:ee:3c:6b:37:1e:73:2e:dd:
40:10:b8:eb:a2:b0:9f:ee:ea:3f:f9:17:8c:2f:c8:
41:53:96:47:9f:ff:ba:78:43:28:8a:2d:c2:08:93:
57:85:68:41:b5:fb:2e:45:cd:11:03:68:21:2f:af:
db:ff:bb:8b:39:e5:b5:fb:22:94:e4:32:a7:dd:59:
b3:f2:67:39:8d:44:da:fc:d7:4a:3f:e4:f3:82:ce:
38:ec:ad:64:27:d9:d7:5c:50:68:13:ab:32:fb:3c:
07:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A7:85:7B:D2:17:82:AF:19:EA:69:39:A9:95:E6:18:DB:16:8E:CE
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/fqeFe9IXgq8Z6mk5qZXmGNsWjs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.70.189.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:5f:f9:ff:3e:b5:63:28:37:8d:5e:11:bf:ed:4c:21:d4:c5:
fd:8e:8c:d7:e8:25:b2:95:20:86:4b:56:c0:bf:6a:17:ae:5f:
6b:66:7a:d5:c8:e6:55:1b:e7:55:da:69:50:7c:db:7c:07:9e:
ce:ea:bf:ff:61:72:9d:83:49:49:34:bc:c6:64:b4:53:6c:ee:
a5:e8:5e:3d:bb:ba:9e:9d:7f:c6:60:af:06:53:40:01:d4:24:
91:91:13:82:fd:e4:76:e5:22:c2:0e:c7:3c:08:b7:50:5a:86:
5b:30:aa:f1:9d:75:24:c8:97:14:ce:09:aa:1a:4c:cf:3d:23:
2a:45:23:a1:d4:fd:7d:1b:93:83:24:df:a8:97:ce:16:24:fa:
ad:45:91:9c:97:a0:df:6f:74:24:4e:6b:60:84:b4:be:f1:0b:
4a:ff:cb:9b:7e:4a:fb:bd:75:01:d8:07:8b:a7:9a:f0:e1:24:
03:75:1a:f4:89:54:8b:97:83:fe:b5:d7:c0:cf:c8:43:c5:6c:
1b:a0:29:63:ef:2e:45:4f:29:0f:92:82:74:ec:67:2f:04:ae:
26:a6:56:a0:a3:46:59:fc:1c:bd:56:8c:18:0b:18:d9:18:a8:
57:ea:ae:10:fa:96:5d:c5:b6:8a:f6:a8:03:b7:a5:ae:60:98:
0c:c7:aa:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:39 2024 by rpki-client on console-ams.rpki-client.org