Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/U56IRbv5D3h6MnKl-U2NLynzDRs.roa
File: U56IRbv5D3h6MnKl-U2NLynzDRs.roa (raw, json)
Hash identifier: 1lIKqrBN+VBz6fSUcBhwgEL8hLk9syVf2/8B1oKVvL4=
Subject key identifier: 53:9E:88:45:BB:F9:0F:78:7A:32:72:A5:F9:4D:8D:2F:29:F3:0D:1B
Certificate issuer: /CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Certificate serial: 08DBB0DE
Authority key identifier: 9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/U56IRbv5D3h6MnKl-U2NLynzDRs.roa
Signing time: Sat 01 Jan 2022 03:51:50 +0000
ROA not before: Sat 01 Jan 2022 03:51:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9132
IP address blocks: 212.110.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148615390 (0x8dbb0de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d066cb8488dae7e4234aa7c892430dad11fe5b1
Validity
Not Before: Jan 1 03:51:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=539e8845bbf90f787a3272a5f94d8d2f29f30d1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d9:a8:e6:f7:74:59:23:68:0d:19:87:21:07:
f7:9b:3c:de:4b:d1:21:7f:49:9c:12:a8:22:ba:94:
44:7b:c8:20:d3:45:cc:c4:27:0a:39:27:cc:41:20:
db:0c:5a:16:c9:39:17:4a:08:17:cf:64:39:9a:2b:
5e:c2:39:ee:e5:95:f0:a5:c3:79:ef:e1:2a:9f:66:
6e:44:26:a7:c8:ec:ba:fa:63:ea:c9:c6:fc:33:de:
b5:83:32:31:36:75:1f:25:24:13:6b:eb:27:a0:e8:
66:e4:41:ec:ee:99:8a:0f:00:fd:9d:b0:dc:62:10:
a8:fc:57:c7:87:52:72:d7:fd:c3:1c:53:c7:6a:15:
bc:e5:a2:c6:f8:bb:a0:5b:fa:1d:dc:d5:fc:5c:05:
ce:7c:d6:d2:5f:e9:7f:93:b5:26:ef:5e:80:f5:35:
9c:9f:bc:5f:08:e5:7b:8b:09:b4:e8:5f:4d:27:27:
9d:fa:68:f9:24:5d:35:50:b5:ca:36:cd:8e:2c:f1:
ea:0f:15:9e:f8:86:8c:4c:f9:86:b8:76:31:5d:4e:
ec:26:06:8b:32:e3:c2:1d:79:5a:4e:4d:88:39:3f:
a4:b5:55:6a:a9:89:98:9b:b2:bf:77:c2:ae:4e:af:
c2:e0:c8:0a:a0:81:16:36:a1:00:6f:1e:5a:3f:2c:
1e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:9E:88:45:BB:F9:0F:78:7A:32:72:A5:F9:4D:8D:2F:29:F3:0D:1B
X509v3 Authority Key Identifier:
keyid:9D:06:6C:B8:48:8D:AE:7E:42:34:AA:7C:89:24:30:DA:D1:1F:E5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQZsuEiNrn5CNKp8iSQw2tEf5bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/U56IRbv5D3h6MnKl-U2NLynzDRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d0d2fd-aa90-4207-9104-3ef02d5140b7/1/nQZsuEiNrn5CNKp8iSQw2tEf5bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.110.193.0/24
Signature Algorithm: sha256WithRSAEncryption
65:16:82:2c:b3:ba:49:32:e0:cc:c2:2f:c8:8b:18:ed:21:68:
53:60:b2:57:dd:e9:5e:3d:e4:c9:ab:9e:dc:e4:5d:b3:a4:9b:
b0:85:3b:ce:7f:19:68:a4:4c:6c:cb:5f:e1:93:f8:2c:22:ba:
5f:8c:4b:22:b1:1a:ca:18:13:cc:9a:07:1b:8d:67:0d:4c:dd:
49:60:8b:99:58:b0:8d:1f:f3:3d:c9:e9:75:25:75:d6:37:89:
90:8a:25:f8:fc:7d:26:d1:1d:06:17:78:2c:af:d4:47:7e:3e:
3e:1f:e1:38:93:ba:f6:76:a3:06:85:e6:bb:b4:37:45:48:00:
7c:a5:d8:f6:ea:0a:4f:60:95:16:75:6b:4f:8e:45:71:54:d4:
92:0e:e9:9a:95:5d:6c:78:86:8b:38:f9:14:fa:35:2c:15:9c:
e8:3e:07:76:0b:2c:62:a9:92:02:49:18:90:8a:06:22:45:8a:
e5:34:b7:03:46:6c:89:2c:a7:ed:22:1f:ee:e1:be:f9:f7:d7:
60:8a:6d:ad:5c:d3:85:fc:cc:4b:90:9a:65:c8:f1:d1:f0:b8:
cb:0a:f5:ae:1b:69:82:cb:ec:2d:cc:18:95:6a:0e:94:7c:c4:
c8:0e:a4:7e:9d:9e:9f:08:f7:62:bd:06:c4:56:59:90:ec:89:
7f:f4:0c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:22 2023 by rpki-client on console.sobornost.net