Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9nHj_drwxGIV7K1t75Xb2itY2oA.roa
File: 9nHj_drwxGIV7K1t75Xb2itY2oA.roa (raw, json)
Hash identifier: nCbgYUZelWqtLOpDFYOvJQLxYAC7KHGCfY+IlpHqxao=
Subject key identifier: F6:71:E3:FD:DA:F0:C4:62:15:EC:AD:6D:EF:95:DB:DA:2B:58:DA:80
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 04899A1C
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9nHj_drwxGIV7K1t75Xb2itY2oA.roa
Signing time: Sat 01 Jan 2022 12:06:37 +0000
ROA not before: Sat 01 Jan 2022 12:06:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 212.110.134.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76126748 (0x4899a1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Jan 1 12:06:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f671e3fddaf0c46215ecad6def95dbda2b58da80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:59:b1:f8:c4:76:c4:71:c5:cb:cc:5d:3b:bb:
97:34:35:62:66:3a:2d:b4:62:7d:e9:07:2e:6a:be:
08:48:c6:c8:fb:9c:d0:e8:ea:bf:8a:85:a7:69:19:
76:5e:b0:70:55:8f:34:d4:46:5b:2f:9d:4a:17:d5:
17:83:c3:66:05:71:ed:5f:7e:20:c0:80:df:b8:ff:
48:04:12:27:c2:f8:3d:cb:f0:40:bd:b5:dd:07:69:
8a:d8:09:a8:b5:d1:50:fe:50:e6:83:1e:a4:4f:ec:
74:ee:ae:f3:4c:02:fb:e2:84:1b:ca:15:4d:ee:c5:
37:2b:59:fc:9e:ad:3f:52:ea:8f:d2:60:2e:a0:7d:
fc:6b:1f:ba:2e:b6:7b:d4:96:27:4d:40:17:ef:2a:
cb:76:e2:ce:a4:94:4c:82:f2:31:a6:b5:ed:d5:ef:
cb:a8:4b:f1:08:a1:dd:d4:c2:01:99:53:5e:cf:04:
55:13:3e:af:96:04:5b:1f:b0:24:1f:dc:ad:43:28:
0c:c8:51:f3:43:ba:72:4c:92:27:f0:e0:f3:25:05:
1a:49:2f:8b:13:fd:1d:51:aa:21:53:b2:ca:f8:68:
c4:b9:e4:c4:0a:66:bd:78:87:d2:d5:9a:8b:40:b4:
04:3e:59:c5:67:eb:ce:0b:88:17:e3:47:fd:2a:54:
f4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:71:E3:FD:DA:F0:C4:62:15:EC:AD:6D:EF:95:DB:DA:2B:58:DA:80
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/9nHj_drwxGIV7K1t75Xb2itY2oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.110.134.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:ab:cb:b0:d7:0a:4d:6c:b8:3a:5a:b7:94:6d:d6:e7:c2:0e:
39:89:c6:a5:eb:26:c8:d7:48:e8:51:23:d3:b2:27:e7:72:c4:
cc:da:10:96:23:2c:4f:e8:d6:a0:bc:c4:24:22:5c:a6:ca:07:
90:03:03:8d:c9:eb:74:41:4b:e0:19:22:b6:64:a4:a6:cd:a6:
6d:5c:86:a5:21:66:f2:fe:94:ab:33:0d:a4:77:1d:26:cd:58:
63:fd:31:07:37:af:3a:e6:91:5f:25:ca:e9:1e:2b:fe:cd:13:
50:55:2f:4b:27:ac:e1:86:f9:e8:d6:5e:37:87:36:34:22:03:
eb:27:cf:9b:19:75:3a:19:49:6c:88:d7:0c:72:8d:1d:ef:9b:
3a:b5:7d:05:1c:5e:3e:48:58:93:c5:54:b0:0e:0f:a7:cd:be:
cc:62:f3:fe:7d:c8:94:58:54:1b:35:8d:99:b4:01:34:be:2d:
97:47:99:c9:e4:88:96:87:76:c9:0a:c0:b4:64:8c:5e:70:a9:
c2:f7:e1:ce:34:f6:f5:f4:48:c1:69:cd:ac:98:26:65:eb:7b:
f6:ec:8e:f7:9e:8c:73:ed:6f:57:30:bd:ba:6b:24:02:96:0b:
12:a3:28:d9:e3:cd:43:69:17:42:99:e1:86:0e:72:87:fc:60:
84:82:65:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-ams.rpki-client.org