Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8Stc6MBOij5RlXDqvyQEnNjmg4E.roa
File: 8Stc6MBOij5RlXDqvyQEnNjmg4E.roa (raw, json)
Hash identifier: lhxAOgZPE7bGSUgSHGdcAMPLcXpe91iuqmy8V5kCYKk=
Subject key identifier: F1:2B:5C:E8:C0:4E:8A:3E:51:95:70:EA:BF:24:04:9C:D8:E6:83:81
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 15732BCE
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8Stc6MBOij5RlXDqvyQEnNjmg4E.roa
Signing time: Wed 22 Jun 2022 12:50:32 +0000
ROA not before: Wed 22 Jun 2022 12:50:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147293
IP address blocks: 212.90.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359869390 (0x15732bce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 22 12:50:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f12b5ce8c04e8a3e519570eabf24049cd8e68381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:28:bc:6b:7f:a7:26:9c:c0:17:85:4d:c2:5c:
49:69:88:de:6c:92:da:a9:8d:7c:7b:ce:f3:7f:22:
f5:ae:54:af:0b:4a:74:65:5c:8d:ad:2d:32:93:6f:
92:8f:39:87:f9:c5:2c:87:5c:cd:82:f1:91:32:b7:
6f:fc:ca:57:ce:eb:9d:85:f3:dd:e0:e0:dc:09:9f:
8b:a0:62:5e:03:22:c8:30:0b:74:79:7b:9d:a6:09:
ca:8d:ce:b0:e0:c5:f0:67:bf:31:92:0b:26:9d:e6:
65:ba:57:13:f1:c7:f0:80:6a:25:a7:21:8c:7a:ff:
81:53:b7:35:b3:17:eb:68:7b:01:7c:31:59:fe:9a:
57:70:21:49:de:1f:e9:26:a1:76:e2:0f:76:ed:61:
88:a2:a0:c3:43:72:1f:9d:49:92:80:1c:6a:0e:9f:
f0:fc:9e:2a:6f:8e:c7:0d:0b:62:0f:32:a8:55:06:
d1:47:06:6f:6f:86:97:6a:75:5f:88:2d:ab:c9:49:
90:88:8e:2e:65:42:a4:36:a8:b7:39:07:9a:c6:ff:
5c:a5:8c:1d:34:c8:15:c6:91:2e:da:f4:24:f4:53:
33:cb:0c:64:8b:6b:11:73:fe:06:32:d4:8f:d8:8c:
b2:5a:1f:5c:59:d1:6a:d4:82:08:67:b1:c4:72:ea:
9f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:2B:5C:E8:C0:4E:8A:3E:51:95:70:EA:BF:24:04:9C:D8:E6:83:81
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8Stc6MBOij5RlXDqvyQEnNjmg4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.90.101.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:99:e5:9b:ba:91:e4:89:ac:12:95:c9:ec:bd:df:33:99:52:
77:6b:84:86:27:91:f3:15:b6:28:c7:63:7c:e2:19:bb:62:bb:
cc:4e:d4:e0:1d:9d:39:56:33:ec:66:e2:1d:f2:9b:40:6c:66:
88:c2:17:fd:46:5c:32:f5:4c:12:2a:ce:ae:d8:2a:72:5d:a6:
c1:ae:56:ca:d0:ec:a8:9b:0e:35:64:23:5b:ae:b6:67:0b:ba:
42:0f:fa:2f:13:6c:0d:77:58:65:fe:6b:d2:26:7e:e8:20:fb:
16:f2:60:44:93:66:9e:b8:7a:ef:8b:f2:16:3d:b7:94:3a:32:
6c:be:84:b9:bd:fe:9a:22:4e:6c:9b:af:d0:f2:ba:ec:79:61:
56:45:19:f3:f9:e1:29:e7:95:ad:a2:1f:b7:77:c8:ab:51:03:
a2:ad:35:96:1a:88:31:27:ba:8a:46:de:f8:a3:f1:0b:f3:60:
0a:a8:7d:3e:a3:9c:8b:a7:0a:c4:39:35:73:6c:2e:7f:a3:3a:
82:33:80:17:dd:73:94:cb:01:5f:46:b6:9d:f1:6f:81:91:b4:
0f:73:12:c3:ab:08:0a:9a:bf:bd:d3:df:16:34:be:36:2d:fe:
d0:40:69:db:59:c9:35:63:8d:1a:eb:9d:0b:fc:dd:b6:15:00:
2c:fa:c7:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org