Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Sm2in1hg4RFJFMMrpmTsDmMBfXQ.roa
File: Sm2in1hg4RFJFMMrpmTsDmMBfXQ.roa (raw, json)
Hash identifier: UUAVE8UArjGiAYbzclrj31Md0WLl953t0dia6O+jCW0=
Subject key identifier: 4A:6D:A2:9F:58:60:E1:11:49:14:C3:2B:A6:64:EC:0E:63:01:7D:74
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AA9E575
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Sm2in1hg4RFJFMMrpmTsDmMBfXQ.roa
Signing time: Sat 01 Jan 2022 16:03:01 +0000
ROA not before: Sat 01 Jan 2022 16:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31085
IP address blocks: 212.252.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447341941 (0x1aa9e575)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a6da29f5860e1114914c32ba664ec0e63017d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:91:80:0b:02:bb:87:f6:e3:26:32:d2:51:33:
ce:a6:ab:d2:93:cc:e3:c8:11:00:ea:1b:e1:b6:f2:
0e:21:13:b6:e0:6d:aa:2c:af:99:75:c3:f4:de:3d:
ba:a2:2a:7a:08:8b:f0:74:0c:cf:5a:ae:98:73:69:
32:c2:d6:fc:fb:12:a5:0d:99:12:97:32:7c:d8:0d:
e0:02:05:0e:9d:06:fe:1c:2e:99:b3:b8:64:e7:87:
cd:45:07:eb:99:18:9a:37:4d:1e:f2:6b:aa:49:ef:
82:44:09:26:ee:a4:52:af:1c:c2:db:73:9f:90:32:
4c:21:a2:5d:2c:6e:04:61:ae:3e:fe:23:dc:4b:77:
2a:0b:09:b1:9f:df:b7:5c:f1:dd:e0:70:6e:31:8b:
c7:8f:7d:8b:81:15:e8:ab:ea:2a:96:33:25:a4:c8:
de:c1:36:db:f0:d3:30:6f:2b:c7:77:aa:66:f9:a0:
5c:dd:16:0b:d9:cb:4f:83:6e:de:5a:ed:f9:b4:8a:
fd:80:5e:76:a0:6e:94:9e:7e:f5:75:cf:b5:b9:a7:
13:94:27:f3:4f:b7:dd:cb:65:0c:da:06:b6:36:89:
47:dd:96:06:bc:10:4d:33:89:93:a2:e8:a4:ab:4e:
f7:a5:92:d2:c4:32:b7:c1:b2:67:2b:be:dc:48:86:
3f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:6D:A2:9F:58:60:E1:11:49:14:C3:2B:A6:64:EC:0E:63:01:7D:74
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Sm2in1hg4RFJFMMrpmTsDmMBfXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.252.192.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:9c:55:eb:d0:2a:67:14:06:26:e2:5d:99:f5:2a:b6:02:0b:
ab:f2:c0:c8:2f:e2:9a:30:7b:35:40:fd:49:4c:ea:82:f3:0f:
57:90:23:ca:a0:94:f0:dd:c0:b7:54:8c:41:85:e8:26:68:65:
ee:3f:59:3d:2d:93:12:07:fc:80:5c:4a:4a:30:5e:df:6e:cd:
8d:ec:21:2f:fb:af:a8:13:66:3e:30:f5:08:f4:c6:70:26:60:
fd:19:29:f2:8f:f0:23:cb:29:7f:fb:ad:9f:5f:f7:0d:56:82:
5d:fc:d9:5e:eb:16:8e:b0:9f:59:05:45:4a:39:b1:21:45:e3:
4c:a6:60:ee:02:3f:2a:c5:b5:01:bd:2a:9b:ad:3d:ba:be:01:
b3:f2:8b:e9:f2:f2:67:15:93:3a:1f:89:f9:fe:c6:65:6a:c0:
82:1a:57:d6:e4:df:f4:f7:a8:c6:5c:7f:78:72:4c:02:95:42:
43:39:c1:21:32:6e:22:65:1e:49:39:1a:f2:9e:0f:9a:c2:58:
71:8e:89:e1:c8:0a:76:44:e6:15:b0:84:e1:83:12:ec:a9:92:
b8:9e:b0:03:d5:e0:d1:5c:6f:ad:7e:6d:31:0c:6e:89:2e:be:
b4:d5:52:41:68:92:3c:53:b7:37:c4:ce:30:15:e7:05:4a:52:
d2:a3:ce:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org