Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Tr7WlnYU8ZCHWcXuLMjj76Irg1k.roa
File: Tr7WlnYU8ZCHWcXuLMjj76Irg1k.roa (raw, json)
Hash identifier: OK33oOq5UmwyNS64Q6A2cCySNcTewl5ViSdADuW86X8=
Subject key identifier: 4E:BE:D6:96:76:14:F1:90:87:59:C5:EE:2C:C8:E3:EF:A2:2B:83:59
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 105EB33B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Tr7WlnYU8ZCHWcXuLMjj76Irg1k.roa
Signing time: Tue 14 Jun 2022 10:52:44 +0000
ROA not before: Tue 14 Jun 2022 10:52:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204721
IP address blocks: 212.192.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274641723 (0x105eb33b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 14 10:52:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ebed6967614f1908759c5ee2cc8e3efa22b8359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:29:42:9d:87:0e:72:29:ec:46:26:eb:a1:4f:
2e:93:76:40:72:33:8c:6a:64:37:0e:a1:9c:f1:27:
02:7d:db:99:d8:1c:a9:84:41:bd:af:82:88:b8:17:
6c:bb:9d:cf:7d:05:60:b0:58:11:d5:04:2b:18:7e:
2d:13:ed:0e:9f:90:d1:cb:d0:2d:49:9a:f6:d8:e5:
84:5f:67:39:77:a2:09:a0:84:e3:64:3a:3e:62:87:
89:e4:e8:f5:7a:ec:46:83:b3:cf:72:28:5b:4f:ae:
90:aa:99:d4:37:3a:81:34:c2:43:54:3a:f2:95:ba:
7e:6b:d0:23:a9:06:82:df:3c:d0:36:a3:6c:77:90:
15:19:de:c1:c5:d7:69:5d:d1:a6:4d:e0:bd:9d:a6:
b3:31:61:ad:0b:79:f6:8b:ce:7e:84:33:ce:e8:c4:
80:5e:8f:f4:cb:90:5f:04:48:15:48:32:06:25:f8:
6f:cf:e8:8f:3a:c4:81:12:db:ee:dd:c2:d2:cf:0e:
56:ec:b3:94:7e:74:e0:1e:73:7f:f9:a9:f5:e6:03:
c9:10:a7:2e:c4:85:a8:95:ba:8c:a2:b2:2d:93:43:
6b:7c:49:7b:f7:ae:4c:4c:7e:79:65:58:d3:7d:40:
f5:85:82:0a:ee:67:e5:da:53:45:ce:d3:92:49:bb:
da:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:BE:D6:96:76:14:F1:90:87:59:C5:EE:2C:C8:E3:EF:A2:2B:83:59
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Tr7WlnYU8ZCHWcXuLMjj76Irg1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.220.0/24
Signature Algorithm: sha256WithRSAEncryption
48:52:19:a3:a4:49:49:94:cc:9f:9f:ff:b6:f5:3f:b6:d1:f6:
7d:38:9f:22:96:d1:21:54:17:d9:e7:d1:88:e8:06:ee:8c:fb:
c8:20:fc:9f:0b:17:44:e2:ae:6b:97:9c:9a:00:c6:53:24:f6:
52:f4:98:37:b2:45:32:2b:e1:50:46:14:bc:e6:0c:5d:c9:76:
98:25:fb:18:da:a1:04:8e:1b:b2:ab:3d:ba:79:7d:3b:99:31:
8f:83:cb:8e:ee:65:83:6b:cc:28:74:8e:01:17:78:18:d0:4d:
e1:1a:50:e7:cc:7c:72:63:2d:6a:9f:de:80:d3:01:26:15:6b:
90:0a:dc:d2:1a:a2:b8:7c:c4:7c:37:f6:c8:e3:2d:0a:f1:13:
8e:f0:e7:12:db:03:3e:0d:aa:96:55:69:30:22:2e:e0:ea:ab:
c2:85:31:e5:db:48:4d:ca:76:f5:88:27:1e:85:68:00:e8:6b:
12:c0:aa:01:80:68:78:2e:44:4d:ed:3e:e8:da:82:8c:7b:8a:
0f:4c:05:56:bd:f6:47:3b:6d:af:cd:07:61:92:65:7e:c6:fa:
4e:5b:a9:81:30:7a:e0:0a:85:db:12:f4:cb:5b:09:37:bb:72:
4f:cd:09:d8:8e:e5:16:27:63:99:cf:16:80:b7:eb:72:8e:16:
22:66:ca:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:04 2023 by rpki-client on console-fra.rpki-client.org