Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1STHUgsQE2a4CdJUt3s1fB4PlKE.roa
File: 1STHUgsQE2a4CdJUt3s1fB4PlKE.roa (raw, json)
Hash identifier: WeKC3Y+kVBLzDmUsOa+4MHglwHfGb8fa1IyMT2MmCMs=
Subject key identifier: D5:24:C7:52:0B:10:13:66:B8:09:D2:54:B7:7B:35:7C:1E:0F:94:A1
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 198D5A29
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1STHUgsQE2a4CdJUt3s1fB4PlKE.roa
Signing time: Fri 03 Jun 2022 15:27:20 +0000
ROA not before: Fri 03 Jun 2022 15:27:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12756
IP address blocks: 212.72.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 428694057 (0x198d5a29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jun 3 15:27:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d524c7520b101366b809d254b77b357c1e0f94a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0f:ae:ae:b3:5d:58:8c:1c:6e:f5:45:e2:2f:
30:92:0b:2f:05:93:b6:fd:ab:1c:46:c0:ef:9b:a5:
90:9f:d0:96:19:01:86:09:08:15:b5:38:08:bb:b2:
0c:0a:60:fd:c3:a7:4e:70:c5:79:af:c2:5a:94:96:
64:e8:4b:93:dd:8c:af:fb:44:98:15:3e:df:03:58:
c6:a9:f8:f3:9b:05:d9:1e:ec:17:50:c7:f0:b0:a4:
b5:b5:1f:a5:ff:29:d0:89:89:8e:31:08:b5:30:6f:
18:a7:c7:91:44:1a:2c:20:6e:aa:e1:24:6b:24:c8:
4d:d8:5c:20:71:ce:83:28:31:f9:94:e8:d6:4e:b7:
42:44:5d:b1:d4:7d:47:fc:58:9f:c9:2c:55:88:cc:
f6:f0:a6:67:ce:d1:4c:c7:74:b5:8e:3c:d1:a7:0c:
e9:d5:c2:48:0e:ea:a0:84:ea:2b:3b:f3:f8:8b:13:
4e:25:b6:7b:da:6c:5d:6a:8e:92:9d:9d:32:24:a5:
34:e3:ef:a6:2a:9d:17:ec:a5:bf:c1:6f:98:67:87:
0c:1b:91:95:5f:fb:85:0c:b4:48:d0:bd:8d:8f:2a:
cd:ce:fa:8c:74:d3:b9:1f:2e:cb:d3:12:9a:f4:55:
b1:8f:c5:f6:bc:18:b0:f4:fc:7d:70:b7:1b:ec:0a:
60:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:24:C7:52:0B:10:13:66:B8:09:D2:54:B7:7B:35:7C:1E:0F:94:A1
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1STHUgsQE2a4CdJUt3s1fB4PlKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.72.205.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:5c:57:69:02:ba:03:68:06:e6:bc:78:ae:1a:3d:a4:9f:2c:
f3:60:91:10:ae:52:54:ab:b1:79:ee:7b:9e:5e:83:62:8a:ea:
e6:41:50:5f:cf:64:45:2f:ce:3c:ed:de:1d:88:37:7a:39:37:
81:10:bb:30:d8:a0:00:2a:a7:55:37:20:0f:71:89:c3:f4:9f:
ea:c8:43:d4:70:bf:b7:80:8f:34:32:02:53:b4:5f:30:c0:7f:
87:f5:61:00:7c:d1:08:e2:aa:f0:28:d0:23:e5:d5:fe:9d:8f:
ed:5b:c7:49:a3:4f:7f:fc:97:ad:da:e6:46:c6:d8:f6:38:39:
aa:6d:98:3f:0a:a0:45:97:da:5c:72:51:15:0f:6a:fc:e1:ec:
a4:46:97:56:2f:4e:f5:0d:00:68:0f:72:35:9d:f8:21:47:e2:
bb:04:ff:54:4f:23:d2:fe:84:21:1d:ef:66:2e:58:99:ad:4f:
aa:d3:34:26:2b:ad:c1:c2:e7:57:be:73:d3:46:c1:23:0d:66:
bb:5e:3b:2c:68:6d:80:87:8d:db:dc:b2:fc:8f:fe:92:55:d4:
48:01:42:df:ad:0e:cc:59:45:06:23:e3:c8:18:9a:18:e6:d5:
cb:cd:42:07:ca:92:54:43:28:24:d4:a2:7a:84:25:78:e6:f1:
9b:18:6b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org