Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/tAEQLtCezIRLFo1GoIHIH1FMVQg.roa
File: tAEQLtCezIRLFo1GoIHIH1FMVQg.roa (raw, json)
Hash identifier: Bc3+NXdVb7H3qK6HhY8uYB6uT3SdKAn6mklbIJYFfVE=
Subject key identifier: B4:01:10:2E:D0:9E:CC:84:4B:16:8D:46:A0:81:C8:1F:51:4C:55:08
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 082B666C
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/tAEQLtCezIRLFo1GoIHIH1FMVQg.roa
Signing time: Sat 01 Jan 2022 07:56:07 +0000
ROA not before: Sat 01 Jan 2022 07:56:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18450
IP address blocks: 212.22.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137061996 (0x82b666c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b401102ed09ecc844b168d46a081c81f514c5508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e4:32:7d:e1:1a:ef:36:b9:1d:e1:f1:e7:7c:
4a:56:b5:73:43:5b:93:09:36:f7:eb:7a:3a:b6:79:
58:35:8c:f8:02:f9:43:66:61:cf:f0:f2:2a:b2:0a:
80:7a:8a:61:33:e0:5f:08:e6:c9:1a:fb:e4:b6:4f:
55:dd:08:81:22:58:55:cb:3e:a6:f3:79:81:e2:2d:
74:88:ac:03:1f:97:68:8b:d7:50:f8:a6:88:6f:c1:
8b:8f:b4:1d:45:3d:c1:76:7b:04:47:26:7e:5c:f4:
5d:c7:d0:02:d0:95:c8:0f:4a:ca:e9:fe:90:f5:86:
c0:34:a7:e1:b5:f4:a8:d7:2b:08:b3:05:1b:a1:40:
6d:23:f2:ef:b7:08:00:c6:a1:16:cc:53:4f:2b:f7:
6c:46:94:86:bc:13:f9:86:f1:96:56:82:86:ff:c9:
ef:2f:9d:b4:40:b1:ca:c0:d1:fb:9b:12:a0:0b:2b:
5a:74:36:53:6d:aa:f5:f7:a1:45:44:da:11:4c:f7:
d0:c1:c8:89:a7:4a:7a:db:3e:c5:ce:28:3b:d9:0d:
3f:e9:cc:a8:de:39:c6:7c:c1:a6:8d:8f:89:d1:a9:
71:40:9c:81:fd:31:1c:c4:81:e1:f2:4b:16:e8:1f:
48:2c:09:ac:09:72:30:fe:8d:ad:1b:d2:82:c4:bf:
23:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:01:10:2E:D0:9E:CC:84:4B:16:8D:46:A0:81:C8:1F:51:4C:55:08
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/tAEQLtCezIRLFo1GoIHIH1FMVQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.78.0/24
Signature Algorithm: sha256WithRSAEncryption
71:5b:3c:2a:75:81:0b:1c:cd:79:3a:78:63:0d:b7:7e:9f:fb:
68:93:83:6f:6b:0a:fe:49:52:33:51:ef:12:da:73:f2:04:52:
29:6a:8c:de:27:d8:59:16:c5:b3:fc:1b:1e:bd:7b:ad:c6:4e:
fb:62:b9:74:6a:42:92:0e:5d:ce:10:88:9a:11:20:31:12:53:
d6:41:9c:f3:b8:1d:81:41:d5:ed:55:0d:1b:49:41:d9:38:31:
7b:05:61:22:1a:db:3f:5c:ef:bc:97:c5:3f:12:db:af:fa:ac:
a6:b8:4b:90:bb:5a:0f:fa:25:5e:87:71:4f:95:71:a3:d3:fe:
02:be:a4:ec:0d:aa:52:43:f6:01:f9:3c:91:8c:ad:53:18:bf:
91:17:50:f4:26:f9:ca:68:29:f2:8e:8c:b4:29:0d:54:6a:13:
99:13:c9:88:e2:1c:ea:35:4f:39:1c:a3:3c:c8:58:49:e3:62:
d0:22:74:18:d4:ca:dd:b4:e7:73:a4:70:94:1a:7b:af:09:5f:
4a:3a:69:19:e4:7e:12:c6:07:ae:6a:e0:a3:d7:5d:5d:f9:18:
af:dd:74:38:32:4b:35:bb:53:5c:bd:ce:23:cd:34:a1:65:1f:
1c:c5:6f:6f:87:0c:6b:3e:0d:b8:93:ac:55:77:01:c2:d2:ca:
46:79:1c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org