Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/jKd6ik12pkZZeSMsDevrzGu2vbo.roa
File: jKd6ik12pkZZeSMsDevrzGu2vbo.roa (raw, json)
Hash identifier: 7VUX6voZbWjLx8pAr5EehoLXu3y86YeZuZ7tvy724QE=
Subject key identifier: 8C:A7:7A:8A:4D:76:A6:46:59:79:23:2C:0D:EB:EB:CC:6B:B6:BD:BA
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 08D82321
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/jKd6ik12pkZZeSMsDevrzGu2vbo.roa
Signing time: Thu 03 Mar 2022 14:40:52 +0000
ROA not before: Thu 03 Mar 2022 14:40:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208102
IP address blocks: 212.22.66.0/24 maxlen: 24
212.22.85.0/24 maxlen: 24
212.22.93.0/24 maxlen: 24
212.22.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148382497 (0x8d82321)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Mar 3 14:40:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ca77a8a4d76a6465979232c0debebcc6bb6bdba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b6:1c:78:d9:a1:83:96:bc:07:d1:b6:7b:65:
64:19:68:47:7b:5c:38:84:b5:01:29:54:81:3f:09:
03:76:1f:f8:da:e2:59:7d:7d:fe:45:10:50:98:6b:
9d:fb:e2:7c:80:1f:e9:bd:a4:03:fb:ea:3a:29:f2:
00:6f:5c:d3:de:b1:8d:22:3c:8f:b7:07:ca:01:4a:
63:30:0c:43:96:cd:0d:75:3a:56:bb:59:14:f0:53:
64:1d:77:3c:63:f1:74:bb:39:91:68:24:4b:eb:24:
86:71:36:94:5b:69:85:d1:07:05:f1:a0:fe:ae:03:
3e:55:05:8d:2f:d7:bb:a7:c6:42:45:53:eb:93:20:
e4:81:c7:ae:43:04:32:b8:0b:a2:7f:1a:18:a4:ed:
b9:73:d9:19:15:f6:da:2c:2f:65:0a:eb:01:54:ff:
b1:a7:e8:2e:27:43:93:c1:93:44:6d:ca:48:31:71:
a0:d3:cd:f0:ad:ee:5f:91:6c:2a:91:0f:70:ab:82:
e8:06:8e:e4:78:75:c8:39:94:f1:d1:ff:7a:b4:48:
20:a3:d8:72:06:8a:a3:21:7a:06:19:a5:2b:eb:e9:
64:93:bb:e4:87:ea:fb:ad:2c:04:2b:dd:28:02:f6:
e2:73:56:ff:0d:4f:9b:bf:e0:00:e8:42:13:ea:aa:
54:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A7:7A:8A:4D:76:A6:46:59:79:23:2C:0D:EB:EB:CC:6B:B6:BD:BA
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/jKd6ik12pkZZeSMsDevrzGu2vbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.66.0/24
212.22.85.0/24
212.22.92.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:49:a6:17:f9:a1:41:1c:36:e2:05:e2:3a:a0:f6:cb:3f:cc:
82:54:9e:a7:84:20:59:e8:1c:70:a3:db:6c:b4:d6:39:3e:a4:
d0:1b:e6:a4:de:19:78:30:2f:b6:d4:bd:66:55:40:ab:6c:47:
ec:a0:94:4d:19:e7:b6:66:ac:5d:32:f6:72:8a:cd:bb:d5:f8:
4b:b0:8a:eb:ba:38:5e:c5:d4:f6:f4:4e:cf:a2:39:39:0d:fc:
29:42:80:22:08:b4:0d:a9:a4:aa:ca:6a:25:63:b1:ae:fa:36:
50:ea:5c:0c:a2:c5:15:10:61:12:54:49:ba:15:ba:6e:dd:2e:
82:0c:b0:db:8c:55:cc:0c:1e:3b:e0:4f:a9:3e:6f:99:93:ab:
d6:f1:b4:c7:d8:49:d2:2f:5a:d3:fd:15:0e:34:0c:17:4f:04:
16:77:ce:1a:da:84:b4:db:da:a4:13:62:39:14:e5:44:e6:ce:
d9:55:73:34:81:49:c0:e4:fe:50:e1:26:ca:59:d2:a0:ed:31:
0f:4c:f4:38:53:23:a3:85:65:ed:16:ca:66:6f:64:22:1a:9a:
88:b1:75:7a:41:90:94:32:79:5f:1c:49:dd:1d:f7:dc:0d:93:
77:cf:05:e7:bb:f0:bb:af:60:16:7d:1d:ef:ab:66:48:88:08:
7a:7c:2d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org