Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/ebc748-6826-4140-a8e0-843eeee0a260/1/M78k6zKM0_eqXfJ20tWqupJ9WJA.roa
File: M78k6zKM0_eqXfJ20tWqupJ9WJA.roa (raw, json)
Hash identifier: heBychfBBbdOvqgR50375efFt5LzsN6i+jAGQ6iV0Ps=
Subject key identifier: 33:BF:24:EB:32:8C:D3:F7:AA:5D:F2:76:D2:D5:AA:BA:92:7D:58:90
Certificate issuer: /CN=cc215f58159ec576a2022776ea64f61c5bb00194
Certificate serial: 105F82E3
Authority key identifier: CC:21:5F:58:15:9E:C5:76:A2:02:27:76:EA:64:F6:1C:5B:B0:01:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zCFfWBWexXaiAid26mT2HFuwAZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/ebc748-6826-4140-a8e0-843eeee0a260/1/M78k6zKM0_eqXfJ20tWqupJ9WJA.roa
Signing time: Sat 01 Jan 2022 02:58:06 +0000
ROA not before: Sat 01 Jan 2022 02:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49950
IP address blocks: 212.122.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274694883 (0x105f82e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc215f58159ec576a2022776ea64f61c5bb00194
Validity
Not Before: Jan 1 02:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33bf24eb328cd3f7aa5df276d2d5aaba927d5890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:d0:d1:e4:6b:f8:03:e9:6a:73:c5:bc:4f:
b2:34:30:b3:1b:34:50:16:04:14:f8:4b:17:15:6e:
43:7c:f3:0a:74:8e:06:98:d3:b8:29:70:fc:09:a0:
29:20:39:79:ef:28:aa:47:c7:68:1e:9c:b6:ca:b1:
f6:b2:a0:87:ef:6e:85:6d:4c:ad:5f:c3:66:b7:27:
51:01:89:7b:ea:de:a6:d4:dd:4a:d5:72:47:dd:d2:
e3:d6:a8:13:d5:b4:4e:f0:76:e9:66:71:60:99:4e:
9b:16:25:30:c8:19:7a:a9:0f:dc:69:dd:b4:81:b2:
da:d2:c3:ff:6a:0f:82:d8:45:8c:41:2a:af:1a:49:
72:a7:8f:04:a2:19:69:f6:48:ad:db:95:f1:e0:3f:
41:b9:d2:92:46:cf:d1:86:68:5e:b5:24:d1:44:6a:
4d:80:a2:19:da:c7:e4:b7:a9:45:04:29:e4:a5:ea:
fd:2f:5a:cf:09:b9:c0:49:d5:42:0a:ab:a9:21:d6:
0d:24:da:6c:31:55:fd:28:80:9b:43:7e:ff:f2:29:
70:f0:df:a2:a9:69:a7:2b:27:5e:c8:f7:ed:49:6a:
7e:42:6f:93:b4:63:bb:0f:c2:0d:d0:7c:f3:3d:59:
df:d0:10:ab:e7:24:1b:0b:64:50:64:5e:d1:00:db:
7b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BF:24:EB:32:8C:D3:F7:AA:5D:F2:76:D2:D5:AA:BA:92:7D:58:90
X509v3 Authority Key Identifier:
keyid:CC:21:5F:58:15:9E:C5:76:A2:02:27:76:EA:64:F6:1C:5B:B0:01:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zCFfWBWexXaiAid26mT2HFuwAZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/ebc748-6826-4140-a8e0-843eeee0a260/1/M78k6zKM0_eqXfJ20tWqupJ9WJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/ebc748-6826-4140-a8e0-843eeee0a260/1/zCFfWBWexXaiAid26mT2HFuwAZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.122.166.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:9e:c3:08:f1:88:8b:28:81:7f:07:8e:3e:54:21:92:5c:08:
3a:96:a1:70:c5:f1:8c:1d:4a:ca:1c:b9:cf:5a:f5:7b:3b:2c:
eb:76:62:2b:5a:29:75:63:10:9d:8d:ea:bd:20:ef:2d:6c:c0:
a2:8b:2a:0a:2e:b9:81:60:b4:c6:a3:15:bf:5a:03:36:ff:46:
ba:9b:52:48:df:6c:51:70:1b:71:67:4a:b1:31:5d:53:70:4c:
05:78:3e:22:30:91:18:82:2f:16:33:98:29:58:3c:ab:03:b9:
a7:49:45:f2:4b:f1:f0:76:d4:b1:ae:62:9c:6c:9c:bb:5c:d7:
88:da:1e:73:f9:e9:5c:eb:77:b3:c3:04:07:0f:55:25:90:22:
a3:aa:21:75:c9:73:39:88:ce:a4:9d:b0:7f:15:a5:2b:a3:d0:
56:15:55:6b:e1:1f:00:77:a2:1a:fb:04:3a:d5:66:7e:7a:fd:
9a:e5:3e:a4:83:e5:35:9c:7c:73:bc:83:85:e9:4d:cc:7b:4d:
34:44:d0:1f:d1:6d:5c:61:71:2b:cb:fe:ad:eb:8e:05:e2:f6:
bb:e2:20:2e:2b:50:c1:6b:6e:d6:7d:69:cc:fe:ca:4f:f8:b0:
97:63:b3:b7:ba:42:10:33:43:89:4c:37:ab:9e:61:05:f5:4c:
4d:d7:7b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:54 2023 by rpki-client on console-ams.rpki-client.org