Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/e6lcPGtBTOraZ3PhNz2tVbbFU1U.roa
File: e6lcPGtBTOraZ3PhNz2tVbbFU1U.roa (raw, json)
Hash identifier: xJF5tqZRTcs/k7oZpz4arPRtb7By3irAOhrAFHFskYI=
Subject key identifier: 7B:A9:5C:3C:6B:41:4C:EA:DA:67:73:E1:37:3D:AD:55:B6:C5:53:55
Certificate issuer: /CN=defc2686c29abef18f40b30e7e9513247a66ef13
Certificate serial: 063978B9
Authority key identifier: DE:FC:26:86:C2:9A:BE:F1:8F:40:B3:0E:7E:95:13:24:7A:66:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3vwmhsKavvGPQLMOfpUTJHpm7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/e6lcPGtBTOraZ3PhNz2tVbbFU1U.roa
Signing time: Sat 01 Jan 2022 00:53:08 +0000
ROA not before: Sat 01 Jan 2022 00:53:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207534
IP address blocks: 212.6.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104429753 (0x63978b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=defc2686c29abef18f40b30e7e9513247a66ef13
Validity
Not Before: Jan 1 00:53:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ba95c3c6b414ceada6773e1373dad55b6c55355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fd:55:7c:95:c3:d2:2f:79:46:1a:dc:a7:af:
c6:2e:5b:d6:9d:90:ca:c2:24:a1:52:ba:09:f6:7c:
ca:d3:18:da:9c:2e:3e:ce:93:d9:0c:4d:dd:c2:f6:
dc:c9:16:1c:1a:7f:fc:61:44:d7:cf:3b:47:9a:a6:
de:00:6a:e6:2c:31:c9:1d:15:21:33:24:8c:d4:d6:
3d:3d:7f:c8:30:8a:a3:4f:9a:f6:3c:4f:30:2d:e0:
28:85:3b:ce:15:d2:f8:66:dd:6f:3e:99:29:24:06:
a6:ae:93:97:15:49:d8:46:78:79:dd:4e:9f:97:45:
59:9f:4f:26:15:f5:84:c2:08:00:bf:8c:3a:35:71:
e1:63:01:43:af:09:ad:81:7e:5c:a4:95:cd:87:4c:
5f:0c:23:b6:3c:ab:c7:d3:9b:93:96:73:fa:58:88:
3d:17:c4:7c:cb:2f:5c:86:18:ad:55:aa:eb:da:1e:
35:9f:7c:1f:ab:4d:e4:8c:bc:7d:e8:f4:38:53:c3:
dc:27:34:d6:21:16:26:1f:56:9a:5b:37:2f:57:84:
90:cd:a8:87:d9:28:3f:6f:9b:95:e8:3a:e7:3e:c1:
9f:88:5a:35:9a:3a:b3:73:49:da:bf:b6:84:03:8a:
03:03:29:b9:bc:f1:17:9f:9f:39:65:f6:85:0e:b1:
5a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A9:5C:3C:6B:41:4C:EA:DA:67:73:E1:37:3D:AD:55:B6:C5:53:55
X509v3 Authority Key Identifier:
keyid:DE:FC:26:86:C2:9A:BE:F1:8F:40:B3:0E:7E:95:13:24:7A:66:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3vwmhsKavvGPQLMOfpUTJHpm7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/e6lcPGtBTOraZ3PhNz2tVbbFU1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b4515e-8641-45b0-b75f-096921c91c41/1/3vwmhsKavvGPQLMOfpUTJHpm7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.33.0/24
Signature Algorithm: sha256WithRSAEncryption
55:88:f8:47:ef:c7:b5:1a:f5:99:6d:48:d4:99:b3:cb:27:e0:
e4:78:12:97:ab:49:4e:e8:76:f3:23:83:84:98:e0:17:b5:fd:
04:fe:f7:28:a6:4f:b6:f7:6b:39:18:92:a0:f5:e2:da:75:fe:
15:da:4f:d5:11:07:df:14:c3:b7:0e:82:da:74:a0:f5:e5:79:
84:ea:e9:c1:e8:fb:61:b9:91:e9:22:46:64:f7:12:85:b6:1b:
64:69:06:9e:68:6d:69:44:16:31:50:43:97:00:0a:8d:ff:73:
90:f0:46:71:c7:f5:4c:70:07:f5:ae:5f:2f:81:b2:3d:ce:b0:
5a:0d:73:12:4d:06:60:dc:c0:de:43:3a:f5:5d:b8:64:5c:f1:
5e:3a:73:a3:01:10:47:05:66:5f:ed:b6:c1:66:06:e5:42:94:
d1:65:12:a3:cc:92:3d:5f:9e:18:34:63:23:a7:e6:33:d7:01:
fe:04:1f:18:3c:63:56:f5:b6:ab:cc:bf:59:0a:56:c9:3c:c8:
bc:30:48:01:9d:d6:6e:65:4f:af:d8:a1:77:9e:a1:ab:3e:69:
63:66:89:14:0f:2f:76:21:46:e8:6e:6e:c5:8c:c8:a7:47:c5:
e9:c0:cd:f3:13:fa:8e:4a:a5:48:9d:77:5d:39:fb:81:37:44:
d2:83:59:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:22 2023 by rpki-client on console-ams.rpki-client.org