Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/FlMTAJYDK0eLh1IejWz7zd1xdGU.roa
File: FlMTAJYDK0eLh1IejWz7zd1xdGU.roa (raw, json)
Hash identifier: WcP12hKtusWoRR+WjenartViQq/VQRUeBjwuq6fpjRQ=
Subject key identifier: 16:53:13:00:96:03:2B:47:8B:87:52:1E:8D:6C:FB:CD:DD:71:74:65
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 018515B358420F6A5EA5FFBD05B1552F4E3C
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/FlMTAJYDK0eLh1IejWz7zd1xdGU.roa
Signing time: Thu 15 Dec 2022 12:12:33 +0000
ROA not before: Thu 15 Dec 2022 12:12:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 212.68.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:15:b3:58:42:0f:6a:5e:a5:ff:bd:05:b1:55:2f:4e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Dec 15 12:12:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1653130096032b478b87521e8d6cfbcddd717465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:db:26:10:30:ee:cc:a2:42:e7:e6:13:da:14:
31:a9:a3:78:5c:99:57:65:75:3d:49:6b:b0:0c:ae:
cb:78:20:a9:fb:ff:1c:1b:b8:39:5c:33:c9:dd:82:
0d:71:84:48:94:5d:e0:e6:92:65:af:4a:30:35:66:
58:4e:06:bb:84:52:aa:fe:18:27:2c:18:40:a5:4d:
91:6c:fc:bc:ca:16:f7:eb:5c:33:e3:07:a3:31:a1:
96:02:85:ca:ac:c2:d9:dc:fb:64:16:0e:97:18:1b:
94:04:30:14:24:93:2d:66:5d:ef:0c:ed:95:0f:2e:
3a:82:62:72:a9:c7:19:7a:56:d6:6e:d7:d8:36:6b:
dc:6d:f6:76:fc:83:3b:63:2c:ce:8e:03:f8:b9:14:
3c:ca:d7:b0:5b:93:6a:f1:2a:89:c9:c5:da:de:e9:
38:86:84:31:ca:04:50:d9:67:8f:85:6e:35:a6:e3:
5a:20:6a:51:64:2b:a6:3d:bf:1f:43:7e:f2:fc:57:
42:d4:b4:c1:73:e3:f0:75:0e:f3:05:47:b2:2b:4c:
97:0b:7f:76:df:2e:e8:2a:d2:b7:16:92:fb:35:f7:
5a:36:b9:8a:dc:c6:43:13:45:10:d7:72:0d:ee:34:
21:da:65:ce:bb:3d:d3:40:ee:97:f9:69:a5:29:82:
15:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:53:13:00:96:03:2B:47:8B:87:52:1E:8D:6C:FB:CD:DD:71:74:65
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/FlMTAJYDK0eLh1IejWz7zd1xdGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.168.0/22
Signature Algorithm: sha256WithRSAEncryption
76:67:9e:01:8f:72:91:3b:b1:fe:0f:a6:fc:75:a9:bf:6f:fc:
d4:60:f3:30:8f:55:0e:01:bd:89:c9:39:33:42:2b:a5:53:19:
86:d8:97:85:13:de:dc:77:c6:55:c9:ea:3e:51:32:d0:76:4f:
e3:64:49:f6:f8:bf:25:57:46:42:af:aa:3b:dc:ed:b7:d5:67:
1f:c0:f5:a9:a5:61:54:e2:a0:e6:85:12:6c:80:98:2f:a4:fb:
45:43:5b:53:35:37:23:2d:02:47:69:25:b0:d7:9d:14:5b:31:
f7:18:3a:97:28:6f:b6:6b:90:38:87:af:d9:f2:fb:91:45:24:
d9:cd:b8:9c:3a:7f:c0:d2:8a:a8:2e:35:22:7d:85:07:e7:16:
b9:a8:51:5c:2b:eb:a9:f1:a2:af:35:69:af:1b:53:c0:8d:26:
dc:00:85:05:ec:49:05:cd:bc:89:f2:91:a5:24:3c:72:f0:53:
ce:cf:cb:67:2e:30:32:39:82:f3:86:2f:43:9e:35:bc:05:19:
d4:d5:7f:2f:9c:fd:5a:a1:53:5b:2e:7a:e6:2d:37:38:7b:b2:
95:a3:ed:31:d8:c1:ca:80:22:79:b4:3e:29:32:60:3f:a4:08:
ce:50:24:77:7f:17:01:27:fa:4d:5b:b2:75:07:f3:4b:8a:25:
72:5b:cd:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:49 2024 by rpki-client on console-fra.rpki-client.org