Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/9PD08P80i7Uv13PN_Do6oD8pVTA.roa
File: 9PD08P80i7Uv13PN_Do6oD8pVTA.roa (raw, json)
Hash identifier: m2+dpaiSK0/mrFngUDJSIzmFURbAkH0PvvLtOb2rHCc=
Subject key identifier: F4:F0:F4:F0:FF:34:8B:B5:2F:D7:73:CD:FC:3A:3A:A0:3F:29:55:30
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 08F5F88D
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/9PD08P80i7Uv13PN_Do6oD8pVTA.roa
Signing time: Tue 07 Jun 2022 10:06:02 +0000
ROA not before: Tue 07 Jun 2022 10:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 212.115.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150337677 (0x8f5f88d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jun 7 10:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4f0f4f0ff348bb52fd773cdfc3a3aa03f295530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:72:a5:fb:39:8d:b6:23:35:35:7f:93:b5:0c:
63:e7:dd:cc:4d:b6:34:c8:89:4e:22:af:53:9c:a0:
05:42:85:c7:b9:41:31:70:77:a9:7b:2a:0e:b9:28:
ae:94:a3:51:c8:c2:22:da:c0:14:03:34:98:eb:ac:
a7:5a:22:ef:f7:4d:88:17:cd:39:2d:99:8b:c7:e4:
63:1e:20:8e:0e:9b:38:d5:70:a8:aa:26:ea:d2:f6:
fa:41:ad:98:be:81:a2:f9:b1:4f:0b:51:a2:a6:74:
79:a9:eb:8f:5d:48:84:21:61:6b:f5:50:3a:17:4e:
80:93:46:f6:2f:f6:d6:2d:ac:43:75:dd:80:1c:20:
eb:ac:26:89:e0:a3:03:ef:3e:4b:16:b2:db:df:5f:
3a:ca:06:a0:39:f3:51:f6:c2:9b:40:24:82:45:10:
0d:f7:1f:c3:12:db:50:8b:1e:b4:80:72:c7:9d:6d:
39:1f:32:75:f9:18:ed:f0:ae:66:00:4e:81:6d:6b:
3f:30:bf:16:88:f7:c7:2c:e1:ca:fc:3f:16:52:5d:
74:d8:d6:57:0f:77:c1:c3:b0:2f:6c:fa:c7:d6:ea:
c1:5f:2f:0d:02:94:d2:10:1b:3e:91:2f:5b:b5:56:
b2:61:92:ff:9d:12:ae:85:59:1f:bd:6f:3e:c2:24:
03:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F0:F4:F0:FF:34:8B:B5:2F:D7:73:CD:FC:3A:3A:A0:3F:29:55:30
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/9PD08P80i7Uv13PN_Do6oD8pVTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.115.126.0/23
Signature Algorithm: sha256WithRSAEncryption
76:1d:ec:8d:87:54:71:9b:cd:57:a9:01:64:bf:80:13:73:14:
9e:9b:bf:9b:cc:36:2b:99:a1:87:9a:bd:af:bd:c9:d6:b4:89:
c2:c6:44:a7:bd:0e:c2:df:bb:60:81:55:ab:55:1b:4b:9b:da:
d2:e9:54:57:37:84:80:6b:0d:25:e0:3e:d2:38:7a:67:53:57:
19:55:8f:34:bf:76:1d:15:ea:46:d4:9d:fd:07:a2:d1:11:43:
cf:37:72:59:18:ed:6f:98:29:17:71:89:ba:8f:ca:fa:00:54:
92:55:5b:17:81:15:c0:d7:6e:f7:98:aa:e8:7c:37:97:9a:a1:
6a:2a:91:39:07:b5:cd:ef:fe:2a:7e:23:a5:b7:3b:5d:1c:27:
27:c8:23:e7:38:64:fa:b9:25:65:19:a8:f8:5c:fa:63:e9:db:
9a:67:34:91:b2:48:87:b1:ec:f4:46:90:52:72:81:fc:74:ed:
9b:c6:3a:45:02:01:51:b3:38:df:00:5b:45:e5:35:4b:18:01:
63:cc:44:5f:51:63:95:d6:1a:12:23:6f:ed:2c:3d:fa:6c:6f:
72:3e:c4:28:d1:1c:8d:01:9c:9d:dc:73:7c:3e:ad:a5:f0:df:
8a:7f:40:d5:2b:1d:81:01:b4:90:80:c5:6b:1c:f8:92:87:08:
c3:55:94:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org