Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hRsjI2J_1RQKkwBMi5YkTd5zA28.roa
File: hRsjI2J_1RQKkwBMi5YkTd5zA28.roa (raw, json)
Hash identifier: 92/jS6zlA3Ll+H88o/cHG1CpFTx/FWBFV0GULymaTH0=
Subject key identifier: 85:1B:23:23:62:7F:D5:14:0A:93:00:4C:8B:96:24:4D:DE:73:03:6F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E1E2374
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hRsjI2J_1RQKkwBMi5YkTd5zA28.roa
Signing time: Sat 01 Jan 2022 01:58:18 +0000
ROA not before: Sat 01 Jan 2022 01:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141172
IP address blocks: 212.193.4.0/22 maxlen: 24
212.193.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236856180 (0xe1e2374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=851b2323627fd5140a93004c8b96244dde73036f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:46:ef:65:f4:d9:e5:e5:c4:cf:1f:45:22:4c:
55:89:2e:03:c6:07:1f:e1:97:e6:35:d7:80:62:68:
3c:f6:b3:fe:84:b7:66:4b:d0:b5:fe:6f:b6:2f:62:
54:62:09:64:96:69:70:fe:01:20:20:ac:5c:e0:25:
9b:24:f9:7b:be:0a:d1:e7:ee:30:67:2a:c7:90:cf:
6f:c7:31:d9:92:25:81:de:b6:39:03:78:e9:6d:bc:
03:ec:79:39:1b:7e:56:a4:53:28:70:fc:c1:b7:ad:
2c:93:b6:8f:a3:e4:4c:26:6a:55:45:91:8e:5c:c5:
26:d4:f0:54:93:2f:b1:73:45:dd:f5:73:af:bc:d1:
e5:0b:49:ca:de:bf:28:5e:52:87:8b:9a:4a:bd:93:
1b:8f:d4:60:f9:8e:32:40:02:c4:c5:c8:6a:73:a2:
15:88:58:b7:fb:77:76:b1:34:dd:1a:fa:d3:8f:ff:
8f:d9:d8:a3:45:07:0f:e7:c3:a0:b9:31:4d:95:e1:
c5:bb:53:d6:b9:54:ba:7e:cc:2a:5a:85:cf:21:34:
58:91:a1:a4:99:b5:0c:ee:c1:08:cb:6e:7f:cf:23:
f5:cb:05:36:b6:31:c9:a6:91:c8:7a:f5:6d:58:2c:
48:76:d4:50:af:6e:cb:d3:25:03:29:4c:19:5e:83:
65:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1B:23:23:62:7F:D5:14:0A:93:00:4C:8B:96:24:4D:DE:73:03:6F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hRsjI2J_1RQKkwBMi5YkTd5zA28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.4.0-212.193.11.255
Signature Algorithm: sha256WithRSAEncryption
73:d5:2b:56:7e:98:2e:8a:fc:71:e3:7d:48:4b:5f:91:8e:5c:
27:bd:69:92:46:ea:bb:bc:b4:57:ab:69:c6:63:5e:52:c9:10:
dc:7e:bc:1b:54:e1:13:22:c1:24:61:5d:2c:6f:d9:58:f3:60:
9c:da:ab:4f:6c:ec:94:2c:a7:70:91:5f:0b:1d:70:19:86:bb:
a6:f4:bd:0e:a8:44:c0:ce:12:5d:c6:93:77:7c:98:cf:1d:b2:
9a:33:e4:cd:38:c2:66:ed:cf:03:9e:32:1b:f6:34:df:7e:1f:
ad:a8:78:bf:cb:d5:ea:65:84:81:06:8e:2c:b3:3d:b2:f5:cd:
7a:45:06:51:89:09:fe:11:3a:3d:59:07:b5:69:34:1b:58:51:
3f:b3:bf:fc:73:64:94:52:35:2a:30:25:a5:b9:99:ef:eb:68:
25:de:8d:08:7e:08:26:90:28:f0:1b:fc:90:fa:a7:82:59:ca:
37:b4:06:00:b1:46:4d:fe:b9:4a:c7:32:45:dc:63:fa:4c:d5:
2a:fd:bb:5c:d0:ec:d9:ec:ce:ee:9e:f4:3e:cc:de:77:0a:23:
16:dd:35:d6:12:2f:74:69:3d:d4:e4:0b:40:2a:fe:79:2e:3d:
42:cb:a6:e3:f0:ba:e7:3a:6a:69:e3:53:7f:df:ae:c8:06:5f:
9f:30:8c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:09 2023 by rpki-client on console-fra.rpki-client.org