Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/dIaOHhDIv2PDCz-Q82H-l7DBe7U.roa
File: dIaOHhDIv2PDCz-Q82H-l7DBe7U.roa (raw, json)
Hash identifier: dOW2KvGi2HZRlDwBH3kFzYJJ3EqXANi6ecrFDWe04+0=
Subject key identifier: 74:86:8E:1E:10:C8:BF:63:C3:0B:3F:90:F3:61:FE:97:B0:C1:7B:B5
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 160F8FB9
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/dIaOHhDIv2PDCz-Q82H-l7DBe7U.roa
Signing time: Mon 17 Jan 2022 10:19:30 +0000
ROA not before: Mon 17 Jan 2022 10:19:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17941
IP address blocks: 212.68.180.0/22 maxlen: 22
212.68.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 370118585 (0x160f8fb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Jan 17 10:19:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74868e1e10c8bf63c30b3f90f361fe97b0c17bb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:35:1d:28:64:bc:b6:d0:ef:2c:86:6e:57:b1:
0f:98:14:aa:25:65:1d:66:a2:7e:2d:9e:c5:07:0c:
38:02:c5:32:ff:1a:90:42:b8:a2:c7:46:cd:a8:0e:
3c:b4:24:c4:96:05:a2:3c:f4:ae:86:73:e0:b4:ad:
65:44:1e:97:62:34:f6:92:6e:55:af:c3:47:f6:a3:
27:c2:30:02:4a:4b:f0:1d:68:c7:23:7a:e3:a1:13:
44:d5:a3:9b:0c:3c:07:38:e8:cb:b7:46:ef:df:38:
95:82:4e:6a:e5:5c:db:e1:3d:68:08:c7:11:d5:53:
ad:ca:0e:56:90:88:f7:2b:40:eb:f9:b9:19:26:ee:
7d:40:90:7e:d6:d7:46:50:74:96:2b:e7:6e:de:2a:
81:b4:08:3e:58:1f:7f:bf:28:2f:28:c0:bb:c6:f9:
8e:44:65:ab:b6:29:20:80:55:ae:a3:6b:da:3f:05:
14:42:60:76:5a:49:13:9d:5c:be:d0:15:e3:46:93:
42:16:f7:4f:5e:f5:20:5c:ec:c5:86:72:11:4e:fd:
5d:5a:a1:d8:58:aa:17:27:dc:a2:42:18:6e:a7:8b:
58:32:f8:e9:69:82:2f:c0:b8:df:81:75:05:13:c8:
28:63:fa:3c:d5:79:46:d2:46:5d:13:26:dc:07:ea:
c8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:86:8E:1E:10:C8:BF:63:C3:0B:3F:90:F3:61:FE:97:B0:C1:7B:B5
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/dIaOHhDIv2PDCz-Q82H-l7DBe7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.180.0-212.68.187.255
Signature Algorithm: sha256WithRSAEncryption
ae:a8:e7:90:6a:f5:0f:e9:bb:67:63:26:59:6b:5c:b4:c8:6c:
44:2f:6c:ea:35:0a:cb:d4:e1:6a:a5:dd:bd:bd:24:c3:c6:da:
e4:78:bc:e6:f7:83:73:eb:c4:9e:f9:44:35:3c:0d:a9:d0:5e:
22:3d:e9:76:77:7d:b9:2c:9a:14:c1:d7:5a:13:ea:25:d3:85:
19:57:42:99:d7:b9:7b:35:e7:71:7f:7e:06:66:2c:9c:3d:ab:
6f:61:19:19:2a:5b:aa:98:ab:e5:37:06:17:28:e3:9b:6c:a2:
52:dc:80:46:d9:8f:41:c2:82:f7:11:76:42:90:2d:25:74:35:
9b:8c:a3:80:19:68:a2:47:72:d6:5d:0e:e4:df:2e:7f:64:9f:
b4:27:2b:52:76:1a:b4:00:2f:44:dc:01:5f:cf:93:32:73:02:
36:9d:57:db:ab:5c:86:84:55:15:68:ee:d6:ed:a5:50:b8:9e:
ca:4b:85:0a:d8:5a:35:f9:3e:fe:d5:a4:21:74:e9:df:7a:5b:
d0:0b:97:0d:3d:af:c5:b5:ee:2c:0f:95:33:23:77:a4:c8:77:
e6:52:56:22:f7:97:40:2c:c7:be:3f:74:3c:b6:61:14:40:27:
89:37:e3:15:cf:b0:ca:d3:aa:d1:03:0f:37:f8:89:5b:be:09:
a2:55:e9:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:15 2024 by rpki-client on console-ams.rpki-client.org