Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/SfumU3e_dwZHwcKyfhQ7S_iQw8U.roa
File: SfumU3e_dwZHwcKyfhQ7S_iQw8U.roa (raw, json)
Hash identifier: x8/wOiuwPj74u/Yc2czuYkfEph2v2KJGxrGCpreFazw=
Subject key identifier: 49:FB:A6:53:77:BF:77:06:47:C1:C2:B2:7E:14:3B:4B:F8:90:C3:C5
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 165734B8
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/SfumU3e_dwZHwcKyfhQ7S_iQw8U.roa
Signing time: Wed 16 Feb 2022 12:06:23 +0000
ROA not before: Wed 16 Feb 2022 12:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18046
IP address blocks: 212.68.172.0/22 maxlen: 22
212.68.176.0/22 maxlen: 22
212.68.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 374813880 (0x165734b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Feb 16 12:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49fba65377bf770647c1c2b27e143b4bf890c3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:70:35:19:30:c7:39:02:77:75:ad:c1:0b:3a:
ba:54:a4:79:e1:44:fa:1f:3c:28:65:dc:bc:11:84:
ce:2d:ad:91:73:69:06:59:b4:de:02:83:e6:de:e8:
53:8f:95:93:bd:7a:f2:24:5b:4b:64:61:b6:46:73:
3f:65:b5:6d:59:23:e0:46:3e:4d:a9:b7:a1:60:69:
06:0d:a2:83:78:9f:1d:b6:cb:4f:66:99:00:fe:51:
d6:04:00:eb:81:21:e7:bb:98:dd:86:3c:ed:65:ba:
ca:e3:b9:78:b8:ec:9f:35:41:1e:a0:48:10:39:fe:
db:ba:67:41:5b:99:9e:a8:09:3f:79:1a:1f:c3:03:
b7:2a:21:81:47:4a:0e:1c:49:fd:3a:d9:2c:9a:7c:
7f:d3:4d:38:14:56:39:97:92:57:dd:57:36:44:97:
d2:88:63:d4:c7:04:8a:03:28:b1:83:de:eb:8a:b7:
c7:f1:e7:5f:ae:91:14:aa:89:50:0b:ec:b4:e3:50:
0e:79:12:d9:44:0b:5d:47:a1:e7:d3:91:67:5e:8f:
cb:a1:1d:c4:7d:6d:a3:01:fc:5f:07:68:fe:ef:7b:
38:35:e6:ca:f7:ab:d4:7e:b2:9e:c8:41:84:27:89:
4f:13:06:10:1a:1d:3b:20:67:90:39:d1:0d:4d:af:
ff:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:FB:A6:53:77:BF:77:06:47:C1:C2:B2:7E:14:3B:4B:F8:90:C3:C5
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/SfumU3e_dwZHwcKyfhQ7S_iQw8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.172.0-212.68.183.255
Signature Algorithm: sha256WithRSAEncryption
7e:48:37:78:81:36:d0:4b:54:2d:8b:bd:75:df:18:25:7f:07:
5c:b7:66:e8:3a:93:36:ae:3e:d7:9e:3d:4d:69:a8:06:1c:11:
f5:bd:df:c5:e9:2f:1f:24:ae:0c:13:be:9b:cf:a2:8e:31:22:
5c:93:87:dd:19:4b:4e:36:f2:66:10:0b:fa:e2:68:e5:4f:2f:
81:7a:cc:7c:01:f7:0c:60:a8:7f:56:82:46:bb:c6:43:be:79:
0e:80:0a:01:a8:42:ca:fd:7d:1f:82:e3:fa:aa:21:96:a3:9f:
5f:87:e6:dc:14:8f:18:f5:1a:11:1c:66:1f:93:2d:2d:35:44:
34:f4:a6:a2:83:16:48:a0:0b:29:af:67:53:5c:00:84:c7:cb:
05:f4:7d:65:77:c6:8f:bd:db:98:dc:0a:79:3f:1a:11:0b:e5:
d8:05:d2:8e:da:a9:3e:96:f3:3e:a7:7e:a7:09:52:af:6a:55:
bf:0d:e0:7d:ea:3d:d6:4c:b5:1b:07:9a:c4:d3:f2:19:79:22:
2c:cd:6f:a1:84:4b:00:ea:3e:b6:4a:00:3e:6d:1e:e3:c6:9b:
c0:77:de:05:e1:e0:80:fc:9e:eb:00:df:6d:3a:f2:ce:37:6d:
67:4c:7b:39:2d:af:72:02:2b:ba:b2:02:bc:31:e0:11:a3:21:
67:a5:ba:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:15 2024 by rpki-client on console-ams.rpki-client.org