Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9Y-427nbWJQuL3A7TxSP6OmlGFU.roa
File: 9Y-427nbWJQuL3A7TxSP6OmlGFU.roa (raw, json)
Hash identifier: xfNT0a+3Y6ggaDv7FtXj3XGYWj96iOoqcpiCch7/Dgk=
Subject key identifier: F5:8F:B8:DB:B9:DB:58:94:2E:2F:70:3B:4F:14:8F:E8:E9:A5:18:55
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 048A07BA
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9Y-427nbWJQuL3A7TxSP6OmlGFU.roa
Signing time: Sat 01 Jan 2022 12:06:38 +0000
ROA not before: Sat 01 Jan 2022 12:06:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212431
IP address blocks: 212.110.155.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76154810 (0x48a07ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Jan 1 12:06:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f58fb8dbb9db58942e2f703b4f148fe8e9a51855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d3:ae:7e:bd:3b:50:b2:1e:70:23:e0:34:f9:
91:35:e7:74:62:4f:44:d4:68:80:83:b6:82:5d:b8:
3b:90:55:29:e1:35:1e:5b:0b:86:45:00:98:ad:92:
d5:04:84:d5:42:4d:0e:63:1a:d5:d1:29:4a:a8:ce:
6a:14:43:0e:63:fc:07:2d:f1:90:02:aa:17:f0:94:
16:d0:e2:61:b4:9a:dc:8e:0c:88:ab:53:c9:60:0b:
38:2e:7b:e1:51:54:23:d8:58:cd:f7:38:38:01:14:
f4:6a:7e:5a:c4:0b:2b:da:52:2a:fe:c8:dc:49:ba:
04:b9:03:49:42:a1:dd:bf:a4:ac:98:bb:59:81:7f:
70:c2:2e:fc:30:c7:d2:75:fe:63:af:85:f8:ad:e9:
de:54:a1:27:86:14:cc:8d:57:c9:be:d8:a8:a0:e7:
49:aa:21:c1:37:86:b6:25:18:b1:b5:2e:10:70:bc:
2b:90:6e:c9:5d:52:bf:a1:1f:09:24:6a:98:f3:4c:
32:3a:7c:4f:45:e8:d4:2c:99:a1:92:03:07:f7:4c:
7a:5c:22:7c:af:5d:19:23:9c:8b:28:a0:19:4e:36:
9e:0d:47:d9:ff:5c:81:f1:96:5c:56:23:61:a3:9c:
13:17:35:60:63:48:3f:82:13:23:bb:0c:b0:dc:cd:
ea:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8F:B8:DB:B9:DB:58:94:2E:2F:70:3B:4F:14:8F:E8:E9:A5:18:55
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9Y-427nbWJQuL3A7TxSP6OmlGFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.110.155.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:bf:57:b6:7b:3d:82:a3:51:1a:2d:d8:04:65:f2:19:8b:34:
b1:f2:92:7e:ec:16:c2:07:e6:24:a6:8f:1a:a4:97:51:91:1b:
c3:72:97:6e:e0:0a:40:c7:3f:dc:a7:0d:93:8e:fe:25:74:3f:
67:ce:7e:11:35:5a:ed:64:db:a9:2a:ed:fc:65:f0:f1:3d:ab:
b8:00:92:97:86:70:14:5c:9c:8d:90:99:07:d5:52:0d:a6:fc:
0b:60:ad:0d:ab:a6:32:46:45:c0:2d:be:93:d7:fd:9b:2a:d3:
e4:12:82:05:03:36:f5:a6:ab:15:9a:46:f1:d5:f3:00:c2:ac:
ef:31:5b:c6:9a:f2:d6:26:c7:6c:fd:dd:44:a0:4e:7b:79:c6:
e5:7a:93:f6:68:c8:a4:f9:0c:3b:1d:44:f3:e9:f0:fb:29:68:
83:6a:77:8d:d3:6f:e4:87:38:76:f7:5d:7d:8c:5f:c6:41:96:
c1:d8:c4:0f:9f:00:1a:19:06:4d:ec:20:25:cd:ba:79:4a:b7:
87:59:96:3c:73:ad:2d:f2:15:45:81:3b:3c:d3:29:e8:59:cd:
ea:c3:c5:eb:d9:68:7f:8d:86:12:8b:fb:51:8d:76:6a:4f:6d:
8f:44:01:dc:8d:0a:d6:ed:f6:25:1b:4c:52:aa:9b:26:cb:d4:
68:d6:d8:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-ams.rpki-client.org