Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/9E2-mVau9hwT1npjHIKGGQ9ANCw.roa
File: 9E2-mVau9hwT1npjHIKGGQ9ANCw.roa (raw, json)
Hash identifier: KQGUym8/HAqv8dkbyx9TecK7+PwKVWICe1s80VLLJp4=
Subject key identifier: F4:4D:BE:99:56:AE:F6:1C:13:D6:7A:63:1C:82:86:19:0F:40:34:2C
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01850684EF78BB9D389E50EDCC7E7B5263C3
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/9E2-mVau9hwT1npjHIKGGQ9ANCw.roa
Signing time: Mon 12 Dec 2022 13:27:33 +0000
ROA not before: Mon 12 Dec 2022 13:27:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200733
IP address blocks: 212.22.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:84:ef:78:bb:9d:38:9e:50:ed:cc:7e:7b:52:63:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Dec 12 13:27:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f44dbe9956aef61c13d67a631c8286190f40342c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:48:9a:b7:0f:6d:c0:70:fb:f4:2f:fd:55:21:
c8:fe:78:e7:af:43:7d:bc:ce:ab:bc:e8:02:c1:46:
e0:77:fd:ed:6c:0c:f7:5c:d1:90:e9:2a:e8:b0:4b:
16:34:c6:43:68:71:a8:a0:be:49:63:65:78:b0:b7:
31:53:90:99:e5:92:c1:60:eb:52:5a:28:3f:92:dc:
fe:5d:e0:5c:c1:56:4b:f1:d6:6e:c0:81:72:de:18:
33:ab:1a:4b:35:0d:7f:96:8d:c7:10:0e:85:74:63:
de:b4:fd:38:71:c1:14:a6:fd:5f:17:bd:93:99:0a:
70:d4:13:1f:ee:14:bc:28:19:de:0a:99:8c:82:d3:
d0:be:9a:43:44:cd:71:6f:09:97:8c:6b:48:b9:a2:
83:22:0d:4b:b6:57:f8:f6:41:f2:9c:31:79:b5:e2:
fc:e0:e4:5f:1d:e4:d4:8f:04:bf:3e:de:c0:3f:42:
45:3b:57:83:6b:22:8c:87:27:29:eb:f1:8b:00:6c:
60:25:92:8e:c6:8b:c3:b5:67:f6:7c:4a:d3:94:a9:
ab:01:ac:89:4a:0e:1e:61:40:bc:40:ad:f3:29:c1:
ca:b2:91:13:ee:dc:08:70:03:90:69:2d:8e:3a:42:
ab:1a:b3:b1:f0:12:28:c0:cf:7d:8c:75:8a:7f:4c:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4D:BE:99:56:AE:F6:1C:13:D6:7A:63:1C:82:86:19:0F:40:34:2C
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/9E2-mVau9hwT1npjHIKGGQ9ANCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.90.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:27:db:00:ed:5f:17:5f:76:73:ad:ad:3e:b0:05:69:e5:c3:
b5:cf:83:3e:8e:7e:12:56:d1:48:d5:a5:a3:8f:8d:fe:f9:ac:
97:25:0d:30:76:96:b1:b7:17:a3:e4:e2:12:48:16:d0:79:aa:
a1:c7:43:72:5a:c6:e0:be:f9:f6:67:82:9e:b0:d9:53:3d:44:
fa:0a:80:68:ac:2d:9b:55:e1:a4:97:84:eb:80:10:9b:6c:7d:
47:99:63:fe:75:09:8b:60:de:6f:28:8f:00:3a:b3:91:5f:7d:
82:7a:7f:f3:cd:ae:5e:95:1b:69:ad:07:71:e9:90:09:24:40:
68:f3:37:bf:d4:27:74:d2:15:d8:3a:5d:de:37:54:bd:79:b1:
1b:6d:d7:31:29:87:58:b5:06:cd:01:a0:9b:2a:f3:da:36:4b:
6d:14:23:80:6a:ad:9f:81:47:a9:62:c8:ea:05:6a:33:af:8f:
ee:e8:cb:03:b3:8b:c3:58:7c:4e:26:d7:86:af:29:8d:d4:59:
bc:52:66:95:c4:e8:52:08:ad:e7:42:b2:70:01:13:f5:e7:05:
c9:96:56:a4:ec:88:44:c7:83:21:90:66:19:31:b9:ef:e9:b9:
12:85:d5:57:05:61:a3:e7:48:f8:7c:dc:55:1d:ce:37:db:f7:
c7:17:bf:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org