Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0eda9a-3cce-4d77-9e93-35224651e007/1/s0XG25TtBxX6jlPMA1_L5HEneQw.roa
File: s0XG25TtBxX6jlPMA1_L5HEneQw.roa (raw, json)
Hash identifier: h8/SyJB0cyqXspNRcJ/bw4JGJcL/NKAVGG+jzljIAhc=
Subject key identifier: B3:45:C6:DB:94:ED:07:15:FA:8E:53:CC:03:5F:CB:E4:71:27:79:0C
Certificate issuer: /CN=1f573c589715771347f91af02b54a7f1774b552d
Certificate serial: 87704D
Authority key identifier: 1F:57:3C:58:97:15:77:13:47:F9:1A:F0:2B:54:A7:F1:77:4B:55:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H1c8WJcVdxNH-RrwK1Sn8XdLVS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0eda9a-3cce-4d77-9e93-35224651e007/1/s0XG25TtBxX6jlPMA1_L5HEneQw.roa
Signing time: Sat 01 Jan 2022 00:58:39 +0000
ROA not before: Sat 01 Jan 2022 00:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 212.18.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8876109 (0x87704d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f573c589715771347f91af02b54a7f1774b552d
Validity
Not Before: Jan 1 00:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b345c6db94ed0715fa8e53cc035fcbe47127790c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:00:71:21:e7:41:32:0d:ff:71:12:e9:45:d9:
3c:c9:2f:26:ea:74:88:87:59:43:00:df:07:c3:52:
95:84:f2:34:a9:72:4b:a1:ab:d3:10:01:2d:9e:2e:
fe:22:c1:a4:12:d1:92:78:10:0d:af:c0:65:84:1a:
9e:2e:67:7c:4e:43:71:89:53:1b:d3:aa:43:87:10:
c9:67:91:a5:57:5d:d2:4f:2c:f4:00:2b:d2:a8:7f:
53:82:c3:b4:99:54:64:bc:2d:5e:5c:c7:65:b0:24:
5a:55:ae:a0:18:78:99:fc:72:ae:af:d6:f4:fb:5b:
13:fa:9e:28:c6:67:cd:f4:99:35:9c:20:2e:6a:54:
24:da:ff:68:b6:00:5c:e7:2d:51:45:5c:e8:c9:e9:
df:52:1d:70:0c:eb:32:1c:d2:9f:8a:4a:50:0d:64:
86:07:1d:a7:50:99:10:02:51:ae:4a:a6:1c:82:22:
9f:dc:ac:ac:59:3b:e7:c1:6c:a3:d3:d9:15:3c:80:
0b:bb:fd:08:7a:c2:9e:cd:3d:79:9c:d2:5a:84:d5:
f5:dd:78:91:64:c1:e9:8b:d9:01:7a:f0:9b:d2:07:
55:f4:16:58:35:01:b3:98:4d:7a:5f:ca:d3:47:41:
7c:2f:cb:4a:cb:f9:5c:db:95:c0:61:3b:5a:ad:c1:
79:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:45:C6:DB:94:ED:07:15:FA:8E:53:CC:03:5F:CB:E4:71:27:79:0C
X509v3 Authority Key Identifier:
keyid:1F:57:3C:58:97:15:77:13:47:F9:1A:F0:2B:54:A7:F1:77:4B:55:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H1c8WJcVdxNH-RrwK1Sn8XdLVS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0eda9a-3cce-4d77-9e93-35224651e007/1/s0XG25TtBxX6jlPMA1_L5HEneQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0eda9a-3cce-4d77-9e93-35224651e007/1/H1c8WJcVdxNH-RrwK1Sn8XdLVS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.100.0/24
Signature Algorithm: sha256WithRSAEncryption
65:91:58:69:d5:10:e2:94:76:8e:f4:21:58:20:74:df:64:06:
9b:5b:60:14:f7:8c:b0:34:b9:25:06:78:aa:df:91:b7:b5:83:
3f:d8:06:e6:71:47:e2:00:bf:24:9d:90:5e:d0:47:cb:8d:6b:
21:70:61:28:48:08:ae:7e:ff:c5:fb:4f:2f:c8:40:a3:0e:2e:
fe:47:e3:20:4f:65:2a:af:7e:2a:60:2d:b5:f3:32:c2:1c:67:
0b:e6:0c:4a:04:11:a0:19:58:f4:dc:b8:05:af:38:be:ec:74:
f2:ac:84:21:bb:f2:b5:3e:4a:a2:83:07:45:6f:64:10:b2:8e:
dc:3d:01:00:30:38:65:1f:00:91:85:9c:ca:8a:9a:73:fe:e1:
76:b2:8d:7a:2d:3a:a2:f0:b9:af:04:70:28:61:53:a0:ce:08:
b2:6c:7f:81:09:54:94:7c:f4:be:3f:1e:53:1c:14:2f:fa:65:
36:ee:dd:69:39:96:ba:3b:fa:e2:c9:fd:4a:f2:1b:4a:39:0c:
4e:50:d5:0e:fa:12:ef:de:10:2f:ef:95:98:a8:e1:c9:1e:72:
0a:59:c9:e7:cd:bf:29:40:27:5e:b5:ce:99:b3:65:17:13:a4:
a3:eb:65:3c:5c:9e:0b:88:09:09:c9:90:8f:4c:69:10:6a:e3:
2a:5f:d2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:03 2023 by rpki-client on console-ams.rpki-client.org