Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/y1_0jjNhw-jwj86jXeQZLcQOlyI.roa
File: y1_0jjNhw-jwj86jXeQZLcQOlyI.roa (raw, json)
Hash identifier: 9M4hi9wa4zdT7wt4rhZqW/BTUfl8f41ciwhXX2YXEhM=
Subject key identifier: CB:5F:F4:8E:33:61:C3:E8:F0:8F:CE:A3:5D:E4:19:2D:C4:0E:97:22
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 082EDB5B
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/y1_0jjNhw-jwj86jXeQZLcQOlyI.roa
Signing time: Sat 01 Jan 2022 07:56:08 +0000
ROA not before: Sat 01 Jan 2022 07:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34901
IP address blocks: 212.22.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137288539 (0x82edb5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb5ff48e3361c3e8f08fcea35de4192dc40e9722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:44:61:25:7a:d4:9a:3b:35:90:15:62:c1:fd:
c4:e8:66:23:27:e7:ae:70:74:50:7f:ef:18:92:fd:
ab:d7:6f:b9:fe:68:17:1c:31:5d:a7:67:70:f1:5a:
89:bc:21:f8:14:e1:44:a2:16:01:95:9e:7e:65:7b:
ea:01:f9:64:31:90:74:88:d6:6e:b0:85:9b:24:14:
65:f7:60:36:3a:0d:07:ba:29:0b:97:30:c0:52:4d:
75:f2:9b:8f:29:1c:2e:3c:66:82:c8:06:e9:5a:3f:
ca:df:3e:0a:b8:dd:e2:69:be:10:03:ea:20:e5:d5:
46:76:ce:7e:8a:4a:f5:01:58:d8:96:98:f2:96:37:
06:32:4c:1c:6c:04:44:3d:5a:37:8e:e0:a4:a9:92:
e7:07:2f:b2:c8:cd:9a:91:4f:11:16:59:ac:b0:01:
03:37:c6:4d:82:6e:c5:4a:4b:b6:80:ee:ff:d1:f4:
e8:be:a2:ba:ae:af:6f:b3:0c:f5:a7:39:17:d7:cf:
36:2c:b3:8f:33:04:86:f4:47:ee:61:12:e9:56:fd:
6b:db:1d:e8:c5:34:81:68:c1:53:03:0a:d3:b3:0e:
a1:de:66:2d:78:d1:ae:3b:25:96:04:95:3f:a0:de:
08:e3:6f:c9:13:69:d6:5e:c6:22:2f:4c:b6:5b:fc:
a5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5F:F4:8E:33:61:C3:E8:F0:8F:CE:A3:5D:E4:19:2D:C4:0E:97:22
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/y1_0jjNhw-jwj86jXeQZLcQOlyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.65.0/24
Signature Algorithm: sha256WithRSAEncryption
25:cc:7e:96:20:62:82:5c:bc:a7:63:ba:d7:b8:e4:0e:83:c7:
be:74:88:4a:ff:e0:39:4e:5d:a3:36:59:a0:ba:6c:e0:4d:ee:
09:b2:12:17:b4:10:a6:c0:72:1c:d1:66:59:c9:7f:8b:6a:ac:
bc:1d:f3:06:55:f8:77:30:6b:ca:2b:e2:62:d9:b2:eb:94:4e:
cb:ad:b0:92:ea:5b:ed:f1:fe:6d:5a:01:0a:36:56:3a:8e:36:
18:8c:08:9a:2b:b4:1a:8f:58:cb:e8:ff:9a:8d:63:31:67:8e:
d0:52:0b:f5:c1:00:1c:ee:8b:4f:ed:d3:ba:68:31:dd:9b:8a:
ce:28:2a:24:9a:91:2e:58:55:ff:e1:c9:ad:7e:89:a6:cd:8c:
e5:de:57:b1:be:ad:95:04:02:67:17:45:73:00:2e:93:19:49:
e8:ee:9d:ed:69:56:c1:f0:66:e1:a1:e8:19:21:b2:7b:03:8b:
81:35:52:9b:f3:b9:b8:38:8e:4b:16:d8:d0:ad:5c:70:26:c2:
76:21:a5:c0:cb:f6:49:32:d2:4d:2c:54:28:f7:00:21:90:25:
01:d9:1e:ce:2b:a3:d5:64:4d:4a:9f:0a:fc:67:85:04:b9:0a:
24:aa:99:7f:02:25:72:db:ee:d9:c8:e9:22:05:1b:04:4b:ae:
fa:7b:5f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org