Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/f0oCCvtgd0tmc7aQ2VkqNMNkkWU.roa
File: f0oCCvtgd0tmc7aQ2VkqNMNkkWU.roa (raw, json)
Hash identifier: 8/ptIBXZZGRr8/1E5C+xOGPgWz52yuwdH51p/QsS6Tc=
Subject key identifier: 7F:4A:02:0A:FB:60:77:4B:66:73:B6:90:D9:59:2A:34:C3:64:91:65
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 15E3A194
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/f0oCCvtgd0tmc7aQ2VkqNMNkkWU.roa
Signing time: Sat 01 Jan 2022 08:01:15 +0000
ROA not before: Sat 01 Jan 2022 08:01:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12548
IP address blocks: 212.68.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 367239572 (0x15e3a194)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Jan 1 08:01:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f4a020afb60774b6673b690d9592a34c3649165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4e:c3:62:36:c4:0b:ae:1f:a4:2c:c4:ea:b2:
1e:47:75:65:bf:26:f8:a2:0a:89:3a:eb:5c:a3:de:
b0:50:fe:32:18:42:05:9e:b3:0f:bb:af:49:89:16:
18:a4:88:4c:b9:f2:4b:4c:53:d6:7d:c0:da:2e:04:
f6:c7:7f:80:27:46:6b:da:f8:ec:57:c9:ed:88:02:
bc:41:06:ee:f0:39:55:d1:5a:e8:a0:cb:de:b9:6c:
c9:30:59:27:c7:ca:08:cd:5f:b0:c8:ea:15:22:a5:
be:12:d6:ed:3a:e0:43:52:4b:44:57:d9:b1:ff:8b:
40:9f:29:c6:35:0b:67:7a:6a:18:25:de:37:0b:ab:
28:c1:f4:2e:2e:7a:2e:2e:26:c2:d7:ce:c1:b9:ba:
06:ca:8b:9a:84:f9:e7:1c:26:3f:c4:c1:bd:91:f2:
f3:89:3d:7c:f6:f4:63:be:87:06:48:aa:92:95:14:
d6:a6:f7:fd:12:19:35:f9:c5:85:5c:73:ee:43:fa:
46:52:0b:01:cc:e8:9e:4a:c3:8d:98:eb:33:24:15:
0d:96:7b:5f:93:e2:d1:90:31:60:56:48:7a:ef:c3:
b5:08:4b:38:79:c6:e7:10:54:fb:63:93:cc:ee:44:
21:98:ef:31:b7:3a:04:d1:00:25:35:ec:e5:0a:db:
08:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:4A:02:0A:FB:60:77:4B:66:73:B6:90:D9:59:2A:34:C3:64:91:65
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/f0oCCvtgd0tmc7aQ2VkqNMNkkWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.160.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:df:c6:d6:ed:91:71:0f:e4:e8:ff:22:8d:5b:6b:7b:a0:e5:
ca:4f:e4:e3:52:d4:84:13:a5:51:51:b3:05:75:ce:b6:73:7e:
6e:99:b8:53:b2:46:ca:de:f5:8d:c2:27:87:9c:90:45:38:fb:
f0:11:69:e9:c0:51:56:bd:10:1e:24:dd:5e:76:a4:61:a5:38:
a4:17:d3:96:de:ff:ce:58:ed:e3:15:29:d1:b4:03:82:05:d1:
3c:be:41:f2:58:b0:38:00:f2:5d:ad:96:fc:83:6e:52:50:7a:
db:71:e1:3b:a6:80:2d:73:5a:46:26:b9:33:ac:a0:3a:31:52:
da:e6:4b:0f:b6:51:54:dd:c5:4d:27:ed:c2:80:7b:d5:0c:6a:
82:c9:eb:16:ec:73:b9:32:33:f9:b7:30:2f:35:c4:c2:3f:10:
41:7e:3d:43:96:2d:65:b2:31:7d:d4:64:d0:ae:52:f1:31:a4:
bf:58:df:7f:56:26:3b:1b:d9:88:9a:ed:be:2c:d0:45:b6:38:
a3:a6:3c:5d:b6:36:59:2c:8a:12:35:7d:c9:2f:75:2b:e6:33:
d7:53:21:ab:4b:85:4f:1d:cc:fd:3b:5d:06:62:8b:60:e2:26:
33:dc:11:00:62:02:5c:21:c9:f4:ed:91:47:b5:dc:ec:f6:93:
52:18:bc:ca
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFeOhlDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YmJhZDNkZTgzMWRhOTQyMjJjMWFkZDEwNGNhZjRjMzI0NzY4OWFjMB4XDTIyMDEw
MTA4MDExNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Y0YTAyMGFmYjYw
Nzc0YjY2NzNiNjkwZDk1OTJhMzRjMzY0OTE2NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK1Ow2I2xAuuH6QsxOqyHkd1Zb8m+KIKiTrrXKPesFD+MhhC
BZ6zD7uvSYkWGKSITLnyS0xT1n3A2i4E9sd/gCdGa9r47FfJ7YgCvEEG7vA5VdFa
6KDL3rlsyTBZJ8fKCM1fsMjqFSKlvhLW7TrgQ1JLRFfZsf+LQJ8pxjULZ3pqGCXe
NwurKMH0Li56Li4mwtfOwbm6BsqLmoT55xwmP8TBvZHy84k9fPb0Y76HBkiqkpUU
1qb3/RIZNfnFhVxz7kP6RlILAczonkrDjZjrMyQVDZZ7X5Pi0ZAxYFZIeu/DtQhL
OHnG5xBU+2OTzO5EIZjvMbc6BNEAJTXs5QrbCLkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR/SgIK+2B3S2ZztpDZWSo0w2SRZTAfBgNVHSMEGDAWgBSrutPegx2pQiLB
rdEEyvTDJHaJrDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3E3clQzb01kcVVJaXdhM1JCTXIwd3lSMmlhdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmMvOGU4MTQ5LWQ1M2MtNDk5Mi1iZDA3LTU1YzQzNGVlYzk2Yy8x
L2Ywb0NDdnRnZDB0bWM3YVEyVmtxTk1Oa2tXVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMv
OGU4MTQ5LWQ1M2MtNDk5Mi1iZDA3LTU1YzQzNGVlYzk2Yy8xL3E3clQzb01kcVVJ
aXdhM1JCTXIwd3lSMmlhdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtREoDANBgkqhkiG9w0BAQsFAAOC
AQEAoN/G1u2RcQ/k6P8ijVtre6Dlyk/k41LUhBOlUVGzBXXOtnN+bpm4U7JGyt71
jcInh5yQRTj78BFp6cBRVr0QHiTdXnakYaU4pBfTlt7/zljt4xUp0bQDggXRPL5B
8liwOADyXa2W/INuUlB623HhO6aALXNaRia5M6ygOjFS2uZLD7ZRVN3FTSftwoB7
1QxqgsnrFuxzuTIz+bcwLzXEwj8QQX49Q5YtZbIxfdRk0K5S8TGkv1jff1YmOxvZ
iJrtvizQRbY4o6Y8XbY2WSyKEjV9yS91K+Yz11Mhq0uFTx3M/TtdBmKLYOImM9wR
AGICXCHJ9O2RR7Xc7PaTUhi8yg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:15 2024 by rpki-client on console-ams.rpki-client.org