Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/ekNBQJc6HZtYjJGmQXNmz-LL_H8.roa
File: ekNBQJc6HZtYjJGmQXNmz-LL_H8.roa (raw, json)
Hash identifier: 9iFRi+ACz8dDMTn5FFN610y3NajKHCSIHKaxcGfqHNg=
Subject key identifier: 7A:43:41:40:97:3A:1D:9B:58:8C:91:A6:41:73:66:CF:E2:CB:FC:7F
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 0183D179B0F81F6EE1D0EFD6949CEB0B850E
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/ekNBQJc6HZtYjJGmQXNmz-LL_H8.roa
Signing time: Thu 13 Oct 2022 13:12:36 +0000
ROA not before: Thu 13 Oct 2022 13:12:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 212.68.164.0/22 maxlen: 22
212.68.172.0/22 maxlen: 22
212.68.168.0/22 maxlen: 22
212.68.180.0/22 maxlen: 22
212.68.184.0/22 maxlen: 22
212.68.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:79:b0:f8:1f:6e:e1:d0:ef:d6:94:9c:eb:0b:85:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Oct 13 13:12:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a434140973a1d9b588c91a6417366cfe2cbfc7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9d:aa:65:da:7e:22:d7:54:2c:40:26:6c:b9:
30:04:e0:62:76:25:84:a7:46:53:a2:8c:e5:26:49:
19:1e:94:e7:e5:b3:5b:4f:c1:a6:9f:a7:f6:c3:fa:
49:2a:10:b1:70:90:83:25:8a:49:23:84:cb:9e:69:
6d:25:66:4d:77:ea:4e:ba:96:4c:88:80:d2:d9:b7:
68:90:fa:c7:00:67:ee:24:06:2c:a3:f1:1e:38:cf:
39:db:c2:f2:20:e2:7a:e7:38:84:35:dd:ec:fd:2d:
5e:3b:58:b4:45:5b:e9:0d:33:ed:71:8c:7a:f4:82:
0d:56:f2:14:40:e6:d7:78:3d:4c:51:51:b8:69:19:
27:09:1c:4f:dc:dd:79:61:71:52:21:71:2d:cd:8d:
e6:d9:93:bb:90:61:d2:5c:3c:31:25:63:bc:db:06:
87:16:d5:51:8e:a2:91:05:1d:19:c6:9c:be:b6:1d:
c6:61:8f:47:ae:d2:12:12:38:bf:ca:7c:77:9e:b7:
82:0f:37:5b:01:6f:da:43:9b:d3:52:d0:43:28:83:
8a:33:4e:72:fc:f7:06:4a:41:14:0a:f4:ee:cf:ad:
4e:5c:f3:44:97:e0:da:ce:3e:26:ad:61:85:f5:84:
9d:b4:b5:5f:a4:53:aa:25:77:84:ae:3a:b5:bb:ab:
2b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:43:41:40:97:3A:1D:9B:58:8C:91:A6:41:73:66:CF:E2:CB:FC:7F
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/ekNBQJc6HZtYjJGmQXNmz-LL_H8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.164.0-212.68.175.255
212.68.180.0-212.68.191.255
Signature Algorithm: sha256WithRSAEncryption
2b:f9:0e:22:8a:0e:67:0a:95:f1:06:a4:48:80:8d:ea:b7:22:
d2:73:a1:03:bb:3d:66:ac:59:14:c3:c4:43:fa:a6:4c:0e:36:
95:56:2f:36:27:bc:e6:79:87:9b:0c:95:75:4a:33:8b:02:18:
2f:ca:a1:a4:0d:04:c0:99:7c:d7:01:53:b5:9c:49:6a:43:0b:
bb:3d:c8:83:a4:34:ef:0c:fa:55:fb:ce:a0:82:57:34:2f:4d:
e8:e2:40:c8:99:bd:c9:2c:3f:57:41:0a:4f:0e:8d:cf:b3:e8:
96:f3:b0:69:c3:b0:f6:fc:a0:40:22:72:27:09:93:4e:2d:2d:
cc:c1:04:e0:27:97:6a:80:30:8d:1d:3c:3f:e8:00:db:e7:c6:
c3:a8:79:11:68:5c:36:94:32:c0:52:30:0a:bf:92:07:4d:af:
14:14:71:32:19:df:72:cf:ea:2a:0f:dc:c1:8b:5a:db:0f:e9:
8a:cb:87:c3:2b:b5:ed:39:b6:87:b9:7b:47:34:8a:f0:30:1e:
6f:9e:0c:e4:23:1d:2b:bb:8a:39:01:4d:35:21:d8:08:9c:b8:
0c:71:4e:2f:7c:0f:3d:4b:c1:e7:0b:34:7a:21:9a:fd:a5:b3:
a3:6e:fe:c5:4c:fd:fe:d5:64:14:20:20:c2:bf:25:fc:bd:04:
2d:0a:9a:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:49 2024 by rpki-client on console-fra.rpki-client.org