Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/96c272-f746-4628-95bc-a6126b54094d/1/e24U60LEEqVzsjiIkfQnnRoxhOg.roa
File: e24U60LEEqVzsjiIkfQnnRoxhOg.roa (raw, json)
Hash identifier: k8NQX4HCM+yskTryOeOLb8S6I8Aq12xXsKzUfHUL6A0=
Subject key identifier: 7B:6E:14:EB:42:C4:12:A5:73:B2:38:88:91:F4:27:9D:1A:31:84:E8
Certificate issuer: /CN=a4e7a0d2fc57a67bb2b7e85c3e8d78192bca0f18
Certificate serial: 0184AA047A70FFDB2096BEC5EC1B750A6480
Authority key identifier: A4:E7:A0:D2:FC:57:A6:7B:B2:B7:E8:5C:3E:8D:78:19:2B:CA:0F:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOeg0vxXpnuyt-hcPo14GSvKDxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/96c272-f746-4628-95bc-a6126b54094d/1/e24U60LEEqVzsjiIkfQnnRoxhOg.roa
Signing time: Thu 24 Nov 2022 14:22:10 +0000
ROA not before: Thu 24 Nov 2022 14:22:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6830
IP address blocks: 212.82.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:04:7a:70:ff:db:20:96:be:c5:ec:1b:75:0a:64:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7a0d2fc57a67bb2b7e85c3e8d78192bca0f18
Validity
Not Before: Nov 24 14:22:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b6e14eb42c412a573b2388891f4279d1a3184e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0a:a1:38:82:3c:7d:7b:80:89:93:f4:63:7d:
dd:84:be:4d:bc:e1:87:3b:d4:0a:20:04:1a:e7:d1:
dc:03:2c:ba:2c:d7:54:e2:2a:d4:09:70:9a:cb:dc:
16:15:8c:f3:6d:da:c7:ee:45:f6:e9:ac:e8:aa:36:
9d:d3:08:66:48:7a:7d:c5:9e:27:c7:46:85:2f:07:
5e:54:52:cb:9c:da:61:d3:ef:c0:11:35:17:70:1f:
74:d5:ea:ba:0c:c1:2d:cc:08:1a:60:97:14:45:9c:
b9:e3:b1:37:58:9e:ad:8f:de:46:83:de:d7:67:9a:
0d:a2:27:d5:46:20:f7:42:c5:a9:6d:12:82:48:03:
51:7e:14:2f:74:76:75:08:15:b3:52:00:59:06:88:
98:dc:cd:08:ca:7a:41:38:eb:75:29:61:aa:2a:df:
c3:93:64:dd:a4:01:9a:61:03:fc:14:3e:51:d5:7e:
d5:df:d1:3c:46:aa:87:ad:ad:e0:69:eb:78:b1:c5:
c4:1e:a3:c9:8c:d0:ad:71:bd:95:4b:8a:eb:e5:13:
80:51:55:95:3d:e2:ca:d0:f4:ff:af:57:d7:80:83:
fa:ca:9d:16:3a:a7:eb:31:a4:ff:f2:be:19:60:4c:
7c:88:ad:81:ed:7c:e7:e4:8c:fa:13:7a:ee:9c:a8:
ae:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6E:14:EB:42:C4:12:A5:73:B2:38:88:91:F4:27:9D:1A:31:84:E8
X509v3 Authority Key Identifier:
keyid:A4:E7:A0:D2:FC:57:A6:7B:B2:B7:E8:5C:3E:8D:78:19:2B:CA:0F:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOeg0vxXpnuyt-hcPo14GSvKDxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/96c272-f746-4628-95bc-a6126b54094d/1/e24U60LEEqVzsjiIkfQnnRoxhOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/96c272-f746-4628-95bc-a6126b54094d/1/pOeg0vxXpnuyt-hcPo14GSvKDxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.82.40.0/22
Signature Algorithm: sha256WithRSAEncryption
74:6d:72:1a:25:28:bc:cc:4b:38:25:08:4a:18:99:68:aa:42:
64:4a:10:e5:72:b6:b3:9e:f3:0c:09:ce:4c:5a:68:e7:b1:60:
9f:67:00:d3:fb:64:f2:ac:ba:f0:be:0f:87:ba:d8:0c:a9:a2:
84:0d:f9:a1:8d:d1:99:39:ff:0a:bf:b2:7b:7f:5c:f2:ba:04:
16:ed:48:b0:18:a6:7d:1d:12:35:63:3a:d5:0e:16:28:4f:bf:
8a:9e:fe:f4:35:89:df:79:db:aa:1a:62:80:ad:ee:d0:c2:86:
c8:a6:3c:68:db:8f:b4:6c:3e:ec:ca:75:bc:a9:0b:6c:65:0b:
f1:c8:7b:fe:36:7f:3d:c3:96:1a:ad:e8:57:f1:e1:2b:48:0a:
0b:06:93:6d:0b:4e:66:f6:64:e1:bb:68:65:9e:76:19:94:68:
85:74:70:f8:0e:ba:f5:2e:2a:b4:61:a4:25:88:fc:d9:50:e0:
6e:06:72:2e:b4:cb:89:9b:e2:16:1a:fd:54:68:5b:90:97:00:
24:36:43:c2:2f:d1:ae:e0:c4:ed:19:8a:7e:72:4e:65:64:45:
eb:c4:e0:42:ce:c4:f0:9c:3c:dd:d3:4f:0c:cd:7f:95:bf:c9:
77:c7:ab:51:49:f2:49:6e:29:75:bd:e9:23:41:38:b3:d0:4e:
e7:b2:98:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:55 2024 by rpki-client on console-ams.rpki-client.org