Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/7Xml4P8Hz3hjzcENwzu2r1eN9jk.roa
File: 7Xml4P8Hz3hjzcENwzu2r1eN9jk.roa (raw, json)
Hash identifier: 9Hap/2US+81sWYsjBcftDdr4Py6ePezuu+s7nuQcitM=
Subject key identifier: ED:79:A5:E0:FF:07:CF:78:63:CD:C1:0D:C3:3B:B6:AF:57:8D:F6:39
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 16B527EC
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/7Xml4P8Hz3hjzcENwzu2r1eN9jk.roa
Signing time: Mon 28 Mar 2022 16:46:56 +0000
ROA not before: Mon 28 Mar 2022 16:46:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 212.68.172.0/24 maxlen: 24
212.68.173.0/24 maxlen: 24
212.68.174.0/24 maxlen: 24
212.68.178.0/24 maxlen: 24
212.68.179.0/24 maxlen: 24
212.68.177.0/24 maxlen: 24
212.68.175.0/24 maxlen: 24
212.68.176.0/24 maxlen: 24
212.68.180.0/24 maxlen: 24
212.68.181.0/24 maxlen: 24
212.68.183.0/24 maxlen: 24
212.68.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 380970988 (0x16b527ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Mar 28 16:46:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed79a5e0ff07cf7863cdc10dc33bb6af578df639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:48:ca:bd:0f:8b:e7:86:79:dc:c3:2c:24:be:
99:5b:cb:59:7e:67:33:2c:48:13:b6:10:12:b0:8c:
2a:38:22:d0:3e:e5:4e:49:d0:f9:1d:a3:d4:5a:e6:
2d:09:38:fc:e2:3c:06:7b:e1:37:7f:81:a8:7a:cb:
07:cf:e6:dd:f3:5b:c5:16:cb:c4:ed:1e:38:67:49:
fc:6e:ba:9b:04:70:42:f3:d8:f7:c1:d4:15:70:d4:
69:93:17:23:d1:a5:c1:52:a9:a8:75:5d:eb:f8:e7:
f9:ab:3c:7b:9e:04:71:8d:0e:2d:96:22:58:f6:19:
f2:91:df:3a:55:c9:0c:66:17:92:7d:f5:e1:bd:d5:
6f:3a:f7:b6:f3:e9:5e:36:a2:de:9b:6e:85:a8:8f:
1d:41:cd:aa:c2:c5:93:9a:f2:36:4c:41:00:c7:6b:
72:97:8d:7e:4a:2a:27:de:6f:d4:b9:82:27:62:13:
14:3e:41:7c:db:b4:88:78:45:36:67:24:4f:e1:b5:
93:c9:e7:62:5e:34:9e:b8:9b:62:dc:72:09:66:b7:
0a:18:31:77:a2:c8:0a:9f:76:d5:f7:27:12:e8:8b:
e0:50:4f:1f:84:96:7c:8e:5b:5f:bc:9f:a4:9d:7e:
b6:47:dc:d4:7d:84:a0:5f:e6:5a:e1:8c:48:7e:e3:
f8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:79:A5:E0:FF:07:CF:78:63:CD:C1:0D:C3:3B:B6:AF:57:8D:F6:39
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/7Xml4P8Hz3hjzcENwzu2r1eN9jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.172.0-212.68.183.255
Signature Algorithm: sha256WithRSAEncryption
55:a1:48:9d:e7:bb:f9:1f:a3:61:04:fb:d5:81:6d:d6:d4:3c:
a8:b3:17:d1:e1:6a:a2:e6:48:f8:54:8e:cf:eb:5f:3e:20:ac:
aa:e4:8e:3f:67:75:ee:7d:2f:72:77:c2:c7:6a:b7:64:40:b7:
da:70:c6:a4:8f:89:51:6f:f1:6f:09:32:80:ba:f4:bb:67:93:
bb:c4:6d:db:80:dd:9a:5f:4f:35:db:18:d8:03:48:c8:bd:ab:
2b:ad:18:ac:20:73:61:17:1d:46:0c:70:6d:2a:45:92:7f:ab:
44:ac:d0:28:9f:62:c8:fd:c8:99:cb:42:f5:a4:13:5a:f9:16:
f9:fb:c7:30:3c:9e:76:3a:7d:26:5b:e9:2d:e2:46:24:b3:fa:
37:ce:26:c7:7d:e1:ee:69:51:b4:15:2c:fa:1d:68:74:9d:23:
3a:d9:9f:8a:13:6f:9a:2f:06:09:96:72:03:ef:2f:b8:5a:e8:
e0:bc:3d:26:69:4d:7c:2b:4d:cb:60:ec:ab:53:9d:14:75:59:
93:70:2a:5b:8d:7e:4a:83:84:76:3b:ac:eb:7e:51:b5:16:88:
95:be:ba:38:f6:9b:10:7d:c6:12:fb:58:ca:5d:03:34:e7:e0:
53:ab:c3:5d:27:53:46:f9:e9:85:e1:fb:7f:2d:28:84:79:98:
15:bf:e4:fc
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEFrUn7DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YmJhZDNkZTgzMWRhOTQyMjJjMWFkZDEwNGNhZjRjMzI0NzY4OWFjMB4XDTIyMDMy
ODE2NDY1NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWQ3OWE1ZTBmZjA3
Y2Y3ODYzY2RjMTBkYzMzYmI2YWY1NzhkZjYzOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpIyr0Pi+eGedzDLCS+mVvLWX5nMyxIE7YQErCMKjgi0D7l
TknQ+R2j1FrmLQk4/OI8BnvhN3+BqHrLB8/m3fNbxRbLxO0eOGdJ/G66mwRwQvPY
98HUFXDUaZMXI9GlwVKpqHVd6/jn+as8e54EcY0OLZYiWPYZ8pHfOlXJDGYXkn31
4b3Vbzr3tvPpXjai3ptuhaiPHUHNqsLFk5ryNkxBAMdrcpeNfkoqJ95v1LmCJ2IT
FD5BfNu0iHhFNmckT+G1k8nnYl40nribYtxyCWa3Chgxd6LICp921fcnEuiL4FBP
H4SWfI5bX7yfpJ1+tkfc1H2EoF/mWuGMSH7j+AkCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTteaXg/wfPeGPNwQ3DO7avV432OTAfBgNVHSMEGDAWgBSrutPegx2pQiLB
rdEEyvTDJHaJrDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3E3clQzb01kcVVJaXdhM1JCTXIwd3lSMmlhdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvOGU4MTQ5LWQ1M2MtNDk5Mi1iZDA3LTU1YzQzNGVlYzk2Yy8x
LzdYbWw0UDhIejNoanpjRU53enUycjFlTjlqay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
OGU4MTQ5LWQ1M2MtNDk5Mi1iZDA3LTU1YzQzNGVlYzk2Yy8xL3E3clQzb01kcVVJ
aXdhM1JCTXIwd3lSMmlhdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQC1ESsAwQD1ESwMA0GCSqGSIb3
DQEBCwUAA4IBAQBVoUid57v5H6NhBPvVgW3W1DyosxfR4Wqi5kj4VI7P618+IKyq
5I4/Z3XufS9yd8LHardkQLfacMakj4lRb/FvCTKAuvS7Z5O7xG3bgN2aX0812xjY
A0jIvasrrRisIHNhFx1GDHBtKkWSf6tErNAon2LI/ciZy0L1pBNa+Rb5+8cwPJ52
On0mW+kt4kYks/o3zibHfeHuaVG0FSz6HWh0nSM62Z+KE2+aLwYJlnID7y+4Wujg
vD0maU18K03LYOyrU50UdVmTcCpbjX5Kg4R2O6zrflG1FoiVvro49psQfcYS+1jK
XQM05+BTq8NdJ1NG+emF4ft/LSiEeZgVv+T8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:49 2024 by rpki-client on console-fra.rpki-client.org