Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f9a3dd-5a61-4724-a5a3-5b0b05093e0c/1/F-diBKZWlr53rlM_9Fpsrcr4Jxw.roa
File: F-diBKZWlr53rlM_9Fpsrcr4Jxw.roa (raw, json)
Hash identifier: ZRyQ6Jw0K92zh31btaL2hWkBIc68841b7bpxrdlIbiE=
Subject key identifier: 17:E7:62:04:A6:56:96:BE:77:AE:53:3F:F4:5A:6C:AD:CA:F8:27:1C
Certificate issuer: /CN=d223093ce150874016d793f439f43d2e6440c3f2
Certificate serial: 16F38E77
Authority key identifier: D2:23:09:3C:E1:50:87:40:16:D7:93:F4:39:F4:3D:2E:64:40:C3:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0iMJPOFQh0AW15P0OfQ9LmRAw_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f9a3dd-5a61-4724-a5a3-5b0b05093e0c/1/F-diBKZWlr53rlM_9Fpsrcr4Jxw.roa
Signing time: Sat 01 Jan 2022 15:59:26 +0000
ROA not before: Sat 01 Jan 2022 15:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12915
IP address blocks: 212.123.39.0/24 maxlen: 24
212.123.32.0/19 maxlen: 19
212.123.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385060471 (0x16f38e77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d223093ce150874016d793f439f43d2e6440c3f2
Validity
Not Before: Jan 1 15:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17e76204a65696be77ae533ff45a6cadcaf8271c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f5:5e:2e:e5:6f:8e:f4:f9:b8:11:35:b6:a3:
d8:28:2b:61:aa:ec:27:a5:a8:a4:f8:36:96:dd:9c:
d6:08:78:c4:80:09:ed:97:b0:47:ce:32:ea:28:0a:
ba:d1:61:75:b6:2e:67:db:39:b2:4a:0f:e9:cd:4c:
1b:0e:b8:03:4d:15:c3:c4:ce:35:59:7e:9e:c9:d7:
e7:47:2d:e1:9c:ac:6f:3a:3d:18:30:29:69:a2:b3:
d0:04:35:8e:cf:03:6b:08:59:8f:69:19:e0:f8:7d:
e8:b5:37:db:ed:75:8e:b5:70:93:e8:17:47:10:ac:
bf:1e:0f:6a:2b:bc:da:d6:cd:0f:05:b8:62:17:0c:
d8:5b:6b:61:59:87:e7:27:73:7c:85:d1:1b:97:33:
98:52:af:3a:ad:ee:df:84:5e:ca:92:e3:1f:86:bc:
bc:64:a1:c8:a3:37:13:1d:de:8b:cf:b3:d1:86:05:
9b:a0:f9:67:45:a9:bf:fb:54:4f:5e:00:13:29:d5:
f3:d7:e9:49:e5:e7:d4:e6:51:44:1f:e5:32:d3:2c:
dd:0d:ee:fa:f8:c8:e8:6d:10:ec:41:af:ad:b6:bb:
ef:92:d7:67:96:26:d1:b1:3e:44:89:39:9e:f4:68:
78:cd:e9:ef:79:68:be:ee:ad:74:55:74:f3:59:56:
a3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E7:62:04:A6:56:96:BE:77:AE:53:3F:F4:5A:6C:AD:CA:F8:27:1C
X509v3 Authority Key Identifier:
keyid:D2:23:09:3C:E1:50:87:40:16:D7:93:F4:39:F4:3D:2E:64:40:C3:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0iMJPOFQh0AW15P0OfQ9LmRAw_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f9a3dd-5a61-4724-a5a3-5b0b05093e0c/1/F-diBKZWlr53rlM_9Fpsrcr4Jxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f9a3dd-5a61-4724-a5a3-5b0b05093e0c/1/0iMJPOFQh0AW15P0OfQ9LmRAw_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.123.32.0/19
Signature Algorithm: sha256WithRSAEncryption
d4:c2:ab:ec:a5:97:bd:2f:fb:90:0b:28:23:35:93:db:f8:33:
c0:12:ea:77:7e:2a:de:a5:c5:09:88:4e:50:c2:86:68:b2:91:
2f:b0:6f:06:90:89:d5:37:53:08:b4:1f:1b:5b:55:70:d2:98:
b6:4d:20:3d:e7:c0:57:14:d7:8c:7a:e2:f2:39:dd:5b:b9:bc:
b2:dd:f2:07:a4:64:49:ab:c7:3a:4f:46:96:e0:50:2c:c3:8a:
c1:04:d6:1c:1e:27:d6:8e:f0:ec:04:e0:02:15:48:83:05:24:
11:d5:0f:5d:c6:4e:a1:71:a2:df:2c:33:79:92:30:1a:23:47:
64:f3:ea:07:20:e0:26:a6:04:df:3a:fb:7d:7a:a3:0b:a4:64:
88:49:43:2e:32:2d:ec:c2:df:02:54:b4:e0:04:df:3a:e4:df:
03:2c:cb:b5:b8:83:38:ce:be:8d:ae:15:ca:95:f8:1e:fb:0a:
d6:d2:16:17:dc:60:94:fe:b1:a0:84:11:4c:d9:33:3f:32:05:
49:51:a1:00:f9:b3:bf:6a:e7:8a:12:ac:72:b9:68:8b:76:c9:
b3:a0:06:24:94:77:08:d7:6b:d3:66:20:64:2b:78:49:a7:81:
35:15:c0:12:32:88:dc:f7:ba:e4:2d:06:89:65:eb:c1:0d:1b:
d4:1f:ea:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org