Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/leOqDm-dWY95ZPtGe9cUPMB8r4I.roa
File: leOqDm-dWY95ZPtGe9cUPMB8r4I.roa (raw, json)
Hash identifier: 4CMuTb/2PSCNoVmQUAUZvmEZmGr7y/MynCcDNMRmkzo=
Subject key identifier: 95:E3:AA:0E:6F:9D:59:8F:79:64:FB:46:7B:D7:14:3C:C0:7C:AF:82
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 082E0116
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/leOqDm-dWY95ZPtGe9cUPMB8r4I.roa
Signing time: Sat 01 Jan 2022 07:56:08 +0000
ROA not before: Sat 01 Jan 2022 07:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31133
IP address blocks: 212.22.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137232662 (0x82e0116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95e3aa0e6f9d598f7964fb467bd7143cc07caf82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a1:31:1c:42:d1:6e:27:e9:cc:6a:47:2a:31:
13:4c:eb:a6:6a:09:25:d8:3f:d2:b3:95:d9:2f:54:
7b:26:cf:b9:1c:73:fb:79:82:57:b2:2a:08:ca:35:
0c:13:76:18:01:6c:ce:da:39:c1:77:ac:af:aa:6e:
5f:c9:19:0c:c8:2c:94:e0:b1:d4:ec:cd:d5:69:20:
69:0e:b0:00:7b:c4:ba:90:6c:95:11:37:26:2d:ea:
f3:4a:92:75:8e:5c:8d:7e:59:b3:c2:e6:96:d5:9d:
ea:27:3f:12:90:f1:f8:d0:2f:7b:e2:dd:38:75:2e:
d6:dc:c6:52:83:58:0b:ba:f5:ae:89:bf:95:f3:8a:
e1:50:e1:50:3f:40:6f:f8:0d:f0:2f:e5:bf:e2:70:
80:ae:ec:36:7d:2a:93:86:f1:56:69:d9:ed:4d:4d:
2d:a3:41:3a:9a:5e:5f:8d:4e:24:e3:68:61:47:25:
87:a1:39:bf:0a:d6:0e:10:eb:47:15:cd:84:a6:d1:
04:41:b1:26:47:bb:7d:f3:21:d3:fd:21:3d:df:3b:
aa:29:02:3d:34:b4:aa:72:e6:b8:58:48:f8:00:f6:
b1:c9:08:b5:83:cd:4a:a2:81:6d:ab:d1:af:1f:50:
a8:a1:f1:2a:fa:85:8a:17:04:a6:ff:43:96:50:2f:
ad:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E3:AA:0E:6F:9D:59:8F:79:64:FB:46:7B:D7:14:3C:C0:7C:AF:82
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/leOqDm-dWY95ZPtGe9cUPMB8r4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.74.0/24
Signature Algorithm: sha256WithRSAEncryption
73:46:66:a8:60:bd:5c:1a:75:be:dd:91:ff:78:ff:7f:50:0e:
85:b6:bf:83:a7:f8:94:a9:fd:e1:06:7b:3c:bc:57:d9:4d:02:
e3:2b:1c:9f:d5:b6:90:61:e4:0b:68:69:20:c8:79:a0:e2:aa:
fc:ea:f5:62:4c:ae:9c:ed:fd:f7:b1:00:bf:8b:ac:4a:14:fc:
04:9d:d0:1e:34:37:25:6f:68:cd:4c:87:2c:59:11:f4:9b:2b:
fa:94:6b:80:ed:65:77:1d:5e:28:d8:4b:59:d5:6d:b6:93:89:
c5:14:cb:ce:f3:7b:22:4b:1a:57:ce:a2:c2:44:11:53:49:26:
a1:1b:2d:32:19:18:d5:80:5e:23:2b:e5:3f:58:46:97:79:16:
e9:7c:b5:b4:cf:ad:ba:b5:f4:6f:a6:01:57:99:84:c3:50:93:
b5:c3:50:19:a8:dd:99:d3:bf:db:e4:8b:3c:0c:13:13:d6:95:
71:05:e6:ff:5f:4b:12:2a:7a:a3:fe:ae:86:2e:ac:f2:4c:10:
54:f7:17:88:f3:ae:12:4a:da:86:ab:7e:be:c6:3a:77:10:9c:
1e:6c:15:f9:cb:d4:2e:a8:b7:ea:2a:ee:8e:44:97:34:ed:c5:
97:3d:83:33:a5:5e:73:aa:62:29:7e:05:0c:9b:c6:3c:35:20:
62:92:e7:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org