Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/ea0196-ab79-42cf-ab2b-fc4b03710ae0/1/kHPHa3a9_sBoB6s47FA8ptJxO6M.roa
File: kHPHa3a9_sBoB6s47FA8ptJxO6M.roa (raw, json)
Hash identifier: mwXUrf7ZdHIp+Ju5PbIybVF7XFtcpl4MaYDLeXm6gTM=
Subject key identifier: 90:73:C7:6B:76:BD:FE:C0:68:07:AB:38:EC:50:3C:A6:D2:71:3B:A3
Certificate issuer: /CN=4cad0397487799e2118ff4cbcf8f159747f35891
Certificate serial: 37BA590E
Authority key identifier: 4C:AD:03:97:48:77:99:E2:11:8F:F4:CB:CF:8F:15:97:47:F3:58:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0Dl0h3meIRj_TLz48Vl0fzWJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/ea0196-ab79-42cf-ab2b-fc4b03710ae0/1/kHPHa3a9_sBoB6s47FA8ptJxO6M.roa
Signing time: Sat 01 Jan 2022 10:56:22 +0000
ROA not before: Sat 01 Jan 2022 10:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200020
IP address blocks: 212.114.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 934959374 (0x37ba590e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad0397487799e2118ff4cbcf8f159747f35891
Validity
Not Before: Jan 1 10:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9073c76b76bdfec06807ab38ec503ca6d2713ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:69:ef:90:b3:ca:58:8b:87:2a:64:6a:60:62:
07:0b:95:67:4c:01:57:69:5e:ce:df:2b:49:ec:45:
c2:e9:02:80:3d:26:e3:93:33:06:db:22:46:1d:a1:
75:88:49:05:da:d3:7e:76:e7:dd:ac:21:0c:f8:bb:
e1:66:0d:ec:6d:83:39:64:8c:88:9c:d5:6d:e3:c0:
d8:0e:ca:8e:cc:c4:0a:ab:63:e1:73:b5:9e:96:38:
7c:ee:16:71:fd:4c:56:16:0e:25:de:f9:2a:60:e8:
44:5f:0c:cd:53:d6:43:1f:c9:7d:25:4b:bd:b5:f6:
1d:59:3d:56:a6:ae:14:dd:8a:ae:8d:ca:2c:b8:1f:
12:a7:8a:08:8f:9a:7f:ac:43:51:2b:fd:4e:e3:25:
40:9b:05:e7:6e:ec:6b:6a:0e:84:32:a0:c4:22:3c:
2b:1e:d8:96:f2:8a:e3:15:50:0f:0d:1b:47:94:5a:
04:96:03:de:bf:bd:e4:f8:29:6c:75:a1:72:43:89:
99:65:73:41:02:a7:7f:10:3a:ab:5f:95:e1:f2:1c:
dc:11:1d:6b:1b:cd:94:cf:b6:b1:fe:f9:7c:6a:47:
8b:6c:96:e1:5c:76:a2:a9:89:6d:5f:b6:73:13:25:
97:5e:68:f1:40:86:42:fb:ed:6e:97:61:0c:94:8b:
84:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:73:C7:6B:76:BD:FE:C0:68:07:AB:38:EC:50:3C:A6:D2:71:3B:A3
X509v3 Authority Key Identifier:
keyid:4C:AD:03:97:48:77:99:E2:11:8F:F4:CB:CF:8F:15:97:47:F3:58:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0Dl0h3meIRj_TLz48Vl0fzWJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ea0196-ab79-42cf-ab2b-fc4b03710ae0/1/kHPHa3a9_sBoB6s47FA8ptJxO6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ea0196-ab79-42cf-ab2b-fc4b03710ae0/1/TK0Dl0h3meIRj_TLz48Vl0fzWJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.114.112.0/24
Signature Algorithm: sha256WithRSAEncryption
22:00:54:a0:78:e5:60:e8:bd:6e:50:b0:d5:e0:3c:71:d8:f9:
35:2e:30:ad:b6:a8:37:00:31:d0:3f:a5:cf:c3:13:59:5d:93:
87:16:64:a7:ad:82:4a:00:2c:3b:0b:6f:9d:d7:9a:62:dc:ee:
6c:25:fd:e6:81:b1:47:50:48:37:e5:27:76:93:78:66:5d:37:
d8:d1:5b:50:5e:24:66:c7:14:2f:01:26:84:3e:73:6a:5b:35:
9f:2b:bb:97:05:fc:23:fb:a8:27:87:61:2a:45:41:13:59:21:
ed:22:6d:1c:77:42:bc:f6:c4:fe:be:ac:f2:08:60:9e:38:ad:
51:eb:04:c9:55:2a:6e:4e:3a:89:76:c9:e4:0f:e7:71:95:3b:
a6:bd:45:09:e2:db:f2:71:85:16:e8:9e:21:28:d3:5f:74:05:
c2:2e:ad:c1:16:1d:24:58:c0:01:6e:d7:12:91:b0:c6:69:9b:
fb:a7:d6:6e:82:a7:e3:82:97:9f:c4:fb:7c:eb:27:ca:cf:f3:
e6:e9:e0:66:84:82:fb:2c:51:cf:0b:fb:a3:7c:1d:1b:5c:c6:
d4:bf:d1:84:e0:69:66:16:ce:13:24:1b:e7:8f:96:71:7c:54:
0f:62:ad:27:ab:ea:f9:ef:4c:79:d9:35:3d:af:b7:82:a0:28:
2b:ea:5a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:14 2024 by rpki-client on console-fra.rpki-client.org