Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/iSus9r314DeOkLFQiGcvnLwoJYI.roa
File: iSus9r314DeOkLFQiGcvnLwoJYI.roa (raw, json)
Hash identifier: tSklxLEHxkGp48jHkX54OSnvq8JDBrsAI2lL8yEXpjY=
Subject key identifier: 89:2B:AC:F6:BD:F5:E0:37:8E:90:B1:50:88:67:2F:9C:BC:28:25:82
Certificate issuer: /CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Certificate serial: 018200FA5F1AB2F9FEF71425AE1279F8C388
Authority key identifier: 0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/iSus9r314DeOkLFQiGcvnLwoJYI.roa
Signing time: Fri 15 Jul 2022 08:29:44 +0000
ROA not before: Fri 15 Jul 2022 08:29:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203930
IP address blocks: 212.110.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:00:fa:5f:1a:b2:f9:fe:f7:14:25:ae:12:79:f8:c3:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d87142bdc2b3f0d0848a0d800b6930b1abb34bc
Validity
Not Before: Jul 15 08:29:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=892bacf6bdf5e0378e90b15088672f9cbc282582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:22:c4:b8:ae:15:22:40:5b:f6:df:58:c0:c7:
7d:71:61:cf:54:ef:e1:20:de:81:57:24:00:67:a0:
79:f7:23:c6:13:16:62:da:dc:db:cf:d1:2d:c3:e5:
c1:12:b5:a8:28:a7:8a:d5:ec:c2:27:46:ad:fe:df:
4d:56:4b:b1:b5:39:b1:85:6c:8a:77:81:c0:dc:d3:
e5:1d:f8:a1:04:58:db:f6:1c:8d:56:11:41:f2:a8:
2d:82:00:11:b8:12:51:be:35:25:34:52:da:2d:03:
5b:f8:1a:a9:63:97:e6:0c:2b:60:92:0c:cf:b5:fe:
3f:fb:86:a0:39:08:30:f7:ba:62:f4:5e:17:aa:9d:
eb:50:bf:1b:db:ce:bc:ff:b0:1c:fc:3e:d6:7b:b6:
5d:8c:1f:5f:70:90:82:9e:63:f4:86:50:f2:de:f2:
06:71:0b:a2:da:db:43:49:fd:9a:b3:82:fa:54:c7:
40:e1:e3:8c:94:0e:10:9e:da:f7:0d:d0:1a:66:59:
66:1a:b8:86:f9:b0:ed:a8:28:73:cd:96:1f:d9:be:
0d:c0:e4:27:2a:b0:42:79:a1:64:6e:89:cd:2f:6c:
d4:24:d0:a4:41:fb:5d:d6:c1:09:9b:96:9c:94:56:
51:05:d8:bf:80:85:32:a4:e0:f7:08:f7:ac:38:39:
bf:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2B:AC:F6:BD:F5:E0:37:8E:90:B1:50:88:67:2F:9C:BC:28:25:82
X509v3 Authority Key Identifier:
keyid:0D:87:14:2B:DC:2B:3F:0D:08:48:A0:D8:00:B6:93:0B:1A:BB:34:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYcUK9wrPw0ISKDYALaTCxq7NLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/iSus9r314DeOkLFQiGcvnLwoJYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f8cc0-f693-421c-bc54-a31708d40391/1/DYcUK9wrPw0ISKDYALaTCxq7NLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.110.143.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:17:ef:bc:6f:6e:24:48:b0:ea:0c:db:ea:0a:2e:59:11:42:
a5:1b:39:8f:fa:3f:b1:cb:9a:fb:ec:1c:a8:4b:17:9e:8f:02:
69:bf:8d:58:fb:6c:31:b4:6b:d3:42:d9:fc:04:b3:ec:f8:03:
80:39:c5:73:f3:36:f8:1b:bc:43:03:97:b3:56:6f:95:73:e1:
27:a6:ab:fe:be:85:a5:53:3a:54:93:13:6b:27:2e:d0:a6:da:
d2:c6:f4:18:dc:44:ce:dc:12:50:0b:db:8d:23:f9:2e:43:37:
6c:8c:26:1a:8f:5f:9e:73:d5:bf:63:63:f2:9c:67:ee:48:0a:
87:1f:d6:5a:d2:35:b4:2e:c9:e4:ba:b3:f0:0a:dc:cc:3c:fb:
b2:bf:94:05:ec:e9:82:76:c8:d4:ee:1f:4d:88:35:ff:dc:d3:
36:de:e6:07:0c:44:d7:98:05:6c:03:36:12:70:9c:cf:67:84:
d1:e2:c4:82:77:78:d0:f8:84:e7:6d:af:a2:05:68:3e:f5:8c:
27:5b:2f:31:b1:94:7e:84:fe:36:ca:83:00:97:0b:2d:1d:46:
24:c4:0d:f3:4e:ec:f2:f1:01:1d:b0:06:29:76:a3:26:2f:d2:
db:63:e9:4b:6f:20:a4:d8:40:42:7a:95:fa:1f:7c:33:08:ca:
11:ab:93:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-ams.rpki-client.org