Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/aNKPl_5cmQT8Mzs3dK9zwK7n8_E.roa
File: aNKPl_5cmQT8Mzs3dK9zwK7n8_E.roa (raw, json)
Hash identifier: aw78F2UCiionQasWJQMnpygvEY0oN2AFs2iimU+6BkA=
Subject key identifier: 68:D2:8F:97:FE:5C:99:04:FC:33:3B:37:74:AF:73:C0:AE:E7:F3:F1
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 018332ECE83290A8128BC5D13C18C19EB485
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/aNKPl_5cmQT8Mzs3dK9zwK7n8_E.roa
Signing time: Mon 12 Sep 2022 18:18:50 +0000
ROA not before: Mon 12 Sep 2022 18:18:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 212.68.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:32:ec:e8:32:90:a8:12:8b:c5:d1:3c:18:c1:9e:b4:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Sep 12 18:18:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68d28f97fe5c9904fc333b3774af73c0aee7f3f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:df:a5:49:75:52:bd:44:d6:e5:ec:02:28:51:
52:04:df:f8:eb:a7:09:52:68:40:cd:60:03:ab:fa:
64:ed:c5:07:75:dd:2b:05:8b:ed:67:f9:c2:a3:3b:
e4:ec:58:cd:22:57:47:2c:26:6f:88:65:00:57:9e:
63:41:da:23:b6:14:66:b8:5e:c8:f7:82:f6:e3:6c:
62:02:84:34:0c:8e:14:4f:2d:8d:0a:15:63:c5:b3:
48:06:ae:67:19:36:dc:b4:d4:98:ea:df:29:15:07:
46:d0:77:a5:71:72:6b:f4:ef:20:33:c1:72:cd:ea:
63:0f:8d:88:16:2d:25:89:66:dd:2c:c1:a8:b2:4d:
cd:3e:db:28:2e:c7:7b:25:2a:0a:2f:00:14:2f:b6:
31:c1:c0:92:6d:23:44:3e:23:41:6f:ee:43:83:d1:
af:94:7e:38:99:15:26:84:a2:5b:d8:e4:54:aa:2e:
ef:f6:a9:31:da:67:5c:22:c0:72:62:80:f6:9f:c0:
44:ea:ec:d5:82:59:06:1d:b4:73:9d:e0:2f:eb:d6:
3c:f9:0d:ca:74:05:14:69:b6:15:da:82:ef:f1:33:
e6:d9:f8:c3:80:ff:a3:3f:cd:c5:be:88:70:ce:fc:
18:69:e4:ba:d0:95:d1:0e:95:5a:6e:46:66:14:16:
ef:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D2:8F:97:FE:5C:99:04:FC:33:3B:37:74:AF:73:C0:AE:E7:F3:F1
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/aNKPl_5cmQT8Mzs3dK9zwK7n8_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.176.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:1f:93:95:41:06:60:f7:7b:7a:8c:e3:3b:18:c2:3b:bb:3c:
b7:d7:c1:4d:5a:f4:c7:f5:fe:0f:56:a8:36:b3:73:27:8d:ab:
5b:a5:28:f6:1c:c9:65:19:79:2f:bc:0f:29:cb:ab:ad:a3:ac:
55:4b:2c:22:58:e2:99:bb:01:24:9a:54:54:87:9d:68:c5:67:
3b:bc:92:aa:03:2e:ee:80:19:62:2f:9b:f7:01:ea:21:76:98:
15:d2:28:42:60:11:55:69:84:1b:f1:ca:7d:41:ab:f1:28:71:
e5:da:d8:b1:b2:ea:78:83:37:1a:47:f2:96:67:a0:65:52:2c:
ae:e5:24:ac:fc:a5:5b:b9:ce:fb:b1:23:45:0e:b2:f1:27:0b:
23:0b:71:56:24:60:b8:a4:44:5b:7c:72:ee:8f:bb:f6:07:7c:
68:50:b7:de:56:eb:10:d1:1b:03:da:a8:94:03:a5:63:14:2d:
88:84:04:42:a0:ad:d5:02:8a:bf:37:00:75:c0:66:06:fc:9a:
5b:e4:9f:76:f3:3f:81:d2:7b:70:1d:7d:26:bd:34:47:ad:74:
b6:33:9b:23:75:72:95:c8:81:8a:58:8e:af:20:57:b6:cd:f1:
97:72:99:a2:56:cf:58:39:d4:f5:a4:d4:bb:74:8f:b7:db:5a:
2f:a1:b1:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:15 2024 by rpki-client on console-ams.rpki-client.org