Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/S5Sf30qVGkiulS5wD7iSNQ9woV8.roa
File: S5Sf30qVGkiulS5wD7iSNQ9woV8.roa (raw, json)
Hash identifier: MLvCgqAEQtBSFwI3D87qZBdU8hZZhvySFWdyeo6e/eY=
Subject key identifier: 4B:94:9F:DF:4A:95:1A:48:AE:95:2E:70:0F:B8:92:35:0F:70:A1:5F
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 048B60C9
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/S5Sf30qVGkiulS5wD7iSNQ9woV8.roa
Signing time: Sat 01 Jan 2022 12:06:38 +0000
ROA not before: Sat 01 Jan 2022 12:06:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212730
IP address blocks: 212.110.133.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76243145 (0x48b60c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Jan 1 12:06:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b949fdf4a951a48ae952e700fb892350f70a15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:29:68:38:6d:98:af:72:2c:81:89:b0:ae:
f5:21:e0:09:a2:e3:21:a0:66:4d:68:9d:f0:a5:23:
05:e3:48:f5:2e:e5:35:5f:8e:e6:8e:f2:37:58:a8:
ba:fa:d9:2f:b5:13:a9:e0:da:a3:f4:67:0e:32:a0:
17:df:0f:a5:00:2b:bf:9f:8f:b2:43:d8:ae:ad:80:
a6:17:45:bc:d3:bb:0f:06:d3:48:8d:80:0f:31:c3:
dc:55:cc:de:b5:91:cf:49:94:3d:05:c1:27:ea:3d:
10:b8:d7:96:cf:98:81:23:ed:ec:02:81:cf:c5:8b:
58:b5:6a:75:f8:b8:80:0e:56:e5:ab:83:29:f8:9a:
d4:73:31:97:75:dd:62:95:32:ee:36:cc:c6:c4:17:
b2:79:28:44:b0:c7:6b:7c:c2:7b:5c:00:32:34:0e:
b8:6c:97:ad:29:33:9f:c5:be:2a:7a:6a:d3:35:3a:
d2:90:38:96:cb:d4:25:fd:e0:8a:c4:17:7d:26:01:
1c:96:77:62:2a:d3:fb:ac:08:21:f7:2e:87:56:3f:
8d:80:12:ae:4a:67:a9:45:6e:65:91:f9:ff:2f:a2:
ae:18:60:cb:bb:56:ed:78:a8:7e:5a:e3:fb:99:a8:
be:54:49:a9:aa:64:be:ec:10:0d:c8:d0:79:ad:33:
8e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:94:9F:DF:4A:95:1A:48:AE:95:2E:70:0F:B8:92:35:0F:70:A1:5F
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/S5Sf30qVGkiulS5wD7iSNQ9woV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.110.133.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:44:a6:0f:2f:61:36:0e:54:38:05:e5:66:26:11:04:04:27:
6e:54:a1:97:00:51:d3:03:0b:c7:b8:c7:3b:88:7e:9a:8d:cf:
51:65:63:bc:58:97:c2:35:9a:15:6a:36:e1:b3:ac:cd:a9:e2:
f8:3f:7c:f1:b4:fb:28:2e:a5:8f:e8:00:3b:ee:4f:30:0f:22:
45:75:46:d8:e2:9e:2b:60:6f:95:15:37:3b:65:b1:b7:c9:c3:
80:7e:88:c9:3a:ba:8e:d3:f6:2a:ab:d3:ac:c5:28:47:38:6c:
da:ea:4b:4e:74:b0:5e:a1:0c:b4:fd:8f:36:17:96:88:9a:e4:
49:3e:8b:87:dd:a6:5c:c3:b4:31:8a:80:47:05:91:56:37:fd:
3b:d8:81:17:4b:b2:3f:5d:71:be:18:33:76:0c:32:d6:ea:fe:
be:a1:3c:4d:17:d0:d0:75:f5:b5:26:c6:8c:a0:62:77:c6:ab:
35:50:3f:31:3b:cd:ef:91:5e:32:8f:6f:14:fe:67:9e:22:77:
94:5c:df:e2:fd:dc:fa:93:86:1e:ed:8c:fb:2f:b2:72:ad:5c:
78:13:e3:76:92:8d:08:58:91:c5:09:7f:68:92:3c:1a:14:ea:
12:8a:8e:da:9b:bb:2f:11:9f:41:06:62:40:11:e5:5c:84:04:
b1:a0:53:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:01 2023 by rpki-client on console-fra.rpki-client.org