Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jifXmeoezoozauHXgrLdc2ekR8M.roa
File: jifXmeoezoozauHXgrLdc2ekR8M.roa (raw, json)
Hash identifier: 3A6UKybr93B7UtQ77YIRgMjIPU/8e+PYN8NNmKQrDhQ=
Subject key identifier: 8E:27:D7:99:EA:1E:CE:8A:33:6A:E1:D7:82:B2:DD:73:67:A4:47:C3
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1558D54F
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jifXmeoezoozauHXgrLdc2ekR8M.roa
Signing time: Wed 15 Jun 2022 03:09:44 +0000
ROA not before: Wed 15 Jun 2022 03:09:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51847
IP address blocks: 212.90.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358143311 (0x1558d54f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 15 03:09:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e27d799ea1ece8a336ae1d782b2dd7367a447c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6f:77:92:1c:2c:6a:2d:f2:66:bc:ac:46:02:
26:89:12:a9:ad:d5:d8:ea:e0:24:1c:32:a0:21:ac:
ad:92:4a:b8:94:da:be:3b:53:9b:29:17:6e:3e:31:
3d:db:ae:f6:11:9b:61:46:6e:76:b6:df:76:58:e7:
91:a6:1f:57:eb:1f:81:b8:ed:7e:d9:2e:15:cf:78:
c3:76:af:a0:ac:7f:6d:aa:25:a8:3f:6f:c4:72:0c:
c9:5f:68:1c:ff:ba:5d:b3:9d:fd:27:92:50:84:55:
15:45:2f:8f:d6:22:29:30:e9:c7:80:d7:43:9b:15:
52:1d:c9:6e:f3:cf:ca:83:24:a7:13:bd:17:7c:d7:
aa:08:43:ed:4a:0b:8b:11:d0:42:3c:a7:73:ab:a4:
14:85:93:c4:8e:f8:f2:76:59:f0:75:6d:e8:e3:f9:
c2:d3:ad:62:e5:5a:e0:32:73:7b:e4:7a:b4:56:b3:
3f:04:2d:9d:ad:cf:8d:ae:c0:45:21:6f:d6:b0:d1:
c6:37:50:84:ca:22:64:25:59:8a:2a:5a:f6:65:84:
df:11:fd:b4:2c:29:97:26:60:58:04:79:be:ba:90:
de:df:73:f1:a6:44:0a:37:a2:bb:5b:e2:ff:14:0b:
07:54:9f:d6:c6:15:53:ae:66:b3:5f:de:68:51:9e:
e0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:27:D7:99:EA:1E:CE:8A:33:6A:E1:D7:82:B2:DD:73:67:A4:47:C3
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jifXmeoezoozauHXgrLdc2ekR8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.90.101.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:7a:8a:a7:a1:89:27:2f:28:b3:96:f6:1b:29:3d:87:2c:23:
8d:1c:c9:0c:35:46:54:d5:7c:29:42:8f:4d:b7:3b:f9:9f:d7:
01:f5:c0:fd:af:64:0c:dd:9b:53:97:0c:aa:73:bb:18:29:7a:
84:eb:7f:6d:5f:21:8e:ed:cc:e0:82:50:85:02:8f:3b:d2:19:
f2:47:19:af:9e:dd:33:f6:28:c6:65:29:e9:87:a6:c8:1d:6f:
97:bf:0c:94:43:1d:ec:01:a1:02:1e:a0:aa:d2:3b:96:89:f4:
91:85:77:9f:73:f6:54:c6:f7:02:48:bb:e9:e1:02:45:9f:b5:
7c:6b:90:25:ff:0a:b2:da:b9:dc:f0:ba:8f:16:b5:57:5e:fd:
24:df:4d:94:ea:b8:33:3a:47:02:b5:f1:4f:dd:c0:e1:38:37:
f1:05:1d:04:66:eb:34:56:73:46:58:10:6d:d5:bf:8e:ce:23:
7b:74:93:98:8c:35:97:93:67:1f:73:b3:08:1c:6b:3d:f4:e2:
0a:9a:e8:3f:67:78:65:25:82:b1:04:72:2e:bf:65:44:60:3e:
2e:02:2d:c1:61:3a:b1:ba:fd:19:1f:b8:05:b6:b8:97:aa:dc:
bb:ac:4e:69:70:f1:49:c6:6c:5d:20:0d:e7:bc:e3:37:5b:50:
a8:6f:21:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org