Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wQMHaG_zelTPnECq4wc2En3vIMU.roa
File: wQMHaG_zelTPnECq4wc2En3vIMU.roa (raw, json)
Hash identifier: ivBFmtJDv3gE7hPmsKRVQPgrNYTqbLm+IDYhlfHuCvU=
Subject key identifier: C1:03:07:68:6F:F3:7A:54:CF:9C:40:AA:E3:07:36:12:7D:EF:20:C5
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 397E092D
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wQMHaG_zelTPnECq4wc2En3vIMU.roa
Signing time: Mon 28 Feb 2022 13:06:43 +0000
ROA not before: Mon 28 Feb 2022 13:06:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60458
IP address blocks: 212.80.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 964561197 (0x397e092d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 28 13:06:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c10307686ff37a54cf9c40aae30736127def20c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9f:fc:1d:35:3a:50:33:15:e5:81:68:60:d1:
5a:2d:6f:ee:75:21:b0:e3:e1:8d:a2:0c:fd:cf:7f:
8d:cc:ec:76:75:c1:38:15:15:d0:8d:4e:37:67:99:
b6:5c:89:20:32:9b:64:fa:16:60:5d:57:53:67:2a:
1d:2c:61:ac:c0:19:35:0f:6f:fa:90:f9:7e:2b:f3:
5d:1f:1c:1c:08:57:75:ec:9e:ab:60:81:0c:78:9d:
e7:51:b7:77:53:61:39:3e:35:62:a0:2f:a4:93:ea:
26:74:d5:79:dd:02:d7:7a:13:37:c7:55:d2:59:bc:
03:39:ed:5f:02:9a:d6:2a:ab:af:98:b1:c0:a5:9b:
b1:06:18:a1:2f:25:76:16:f3:3d:fd:24:1d:48:a7:
ff:0e:f9:79:95:6f:0c:dd:51:35:ec:e9:03:4b:77:
06:4d:2a:ac:13:5f:75:f4:5d:a6:d1:45:70:ec:6f:
a7:6f:1e:ae:97:cd:ac:72:66:da:56:c7:4d:23:d1:
5a:bf:7a:14:04:ef:d4:bd:18:45:65:76:5e:0a:2d:
d8:c8:9c:92:fb:4c:16:65:49:90:30:11:e4:a3:96:
71:7c:c8:a6:66:ea:7d:4c:55:08:e6:a9:8e:85:82:
6c:d0:36:15:64:a9:a2:de:4c:0c:84:b1:ec:33:68:
75:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:03:07:68:6F:F3:7A:54:CF:9C:40:AA:E3:07:36:12:7D:EF:20:C5
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wQMHaG_zelTPnECq4wc2En3vIMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.80.21.0/24
Signature Algorithm: sha256WithRSAEncryption
95:ad:7a:13:8d:e6:c2:3b:eb:44:9d:00:dd:00:d3:5c:f0:c0:
9e:fa:9b:56:e6:bf:67:46:b5:aa:35:e2:8b:62:c8:5d:b7:8d:
9d:84:db:51:32:ec:bf:18:3e:1e:aa:79:23:10:40:d9:b8:6e:
26:20:34:06:42:b4:4d:08:87:9f:be:ce:da:56:bd:e8:10:44:
3b:1c:fe:15:5d:f3:32:77:2f:94:03:df:3f:d7:51:f1:d9:74:
7d:3e:6f:52:ef:0b:4e:b6:fc:8f:a6:d1:0a:dd:3b:ce:12:54:
3e:92:c4:1d:15:8a:d8:47:1d:9d:e8:be:fa:d4:01:9d:16:a8:
7d:a8:22:69:1a:47:ab:32:fd:b8:a0:64:7c:34:6c:ad:53:84:
29:69:3b:07:00:08:76:3f:39:ff:32:29:7b:b5:b7:27:83:70:
41:a4:9c:6a:90:94:c6:ed:e2:6b:a3:b4:b1:50:7e:8d:49:32:
28:38:d7:4c:65:1c:de:af:ad:a8:0e:01:1c:92:a3:c6:27:a5:
4d:00:a9:e0:fb:8d:2c:7e:ec:d2:0f:ce:a4:ca:3b:7d:38:70:
cf:e7:82:61:0e:51:0f:86:39:b5:eb:17:94:2d:a3:e9:f0:7f:
44:bb:82:4b:5a:c9:77:1f:7e:6e:db:36:e2:3f:84:b5:df:6d:
45:90:85:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:58 2023 by rpki-client on console-fra.rpki-client.org