Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/a85b2e-b438-4ce6-a126-fd9916fd957b/1/335qDXIYifS4xHLe_6f41w7tg3I.roa
File: 335qDXIYifS4xHLe_6f41w7tg3I.roa (raw, json)
Hash identifier: 0SzEhCQULqfm6q8EedvbUTuZ/aWqUerO8fELd39NhVI=
Subject key identifier: DF:7E:6A:0D:72:18:89:F4:B8:C4:72:DE:FF:A7:F8:D7:0E:ED:83:72
Certificate issuer: /CN=e32bfdccd3bb06102d47a657e60b8d7a3b044579
Certificate serial: 9D03
Authority key identifier: E3:2B:FD:CC:D3:BB:06:10:2D:47:A6:57:E6:0B:8D:7A:3B:04:45:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yv9zNO7BhAtR6ZX5guNejsERXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/a85b2e-b438-4ce6-a126-fd9916fd957b/1/335qDXIYifS4xHLe_6f41w7tg3I.roa
Signing time: Wed 02 Feb 2022 06:34:36 +0000
ROA not before: Wed 02 Feb 2022 06:34:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 212.18.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40195 (0x9d03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32bfdccd3bb06102d47a657e60b8d7a3b044579
Validity
Not Before: Feb 2 06:34:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df7e6a0d721889f4b8c472deffa7f8d70eed8372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:77:d4:3a:c0:7f:6e:ad:b7:56:3c:64:05:ba:
bf:f5:d0:90:2c:a7:90:8c:bc:9e:53:b8:49:82:11:
5d:a2:b6:4d:37:56:5f:98:af:29:6e:bb:d2:de:6f:
c5:9e:1e:c0:34:27:8f:d1:31:16:9c:f3:f0:3a:0f:
dd:cf:c6:cc:2d:85:3d:36:9f:2e:5b:cb:d2:99:71:
96:63:9b:f2:54:d3:10:40:93:58:60:46:d3:0c:cc:
a2:fb:ee:7c:22:9e:34:44:2a:0a:38:2a:9d:cb:a8:
f5:9c:a4:87:98:5a:10:4b:c0:9e:75:32:a3:5f:6c:
b9:fa:8e:27:99:5f:6c:1b:34:1d:83:a8:96:c3:7d:
aa:c5:3a:89:51:50:bd:59:56:7a:35:7a:f2:03:c9:
3b:c7:0d:a9:3d:38:74:af:b9:10:42:26:09:8c:d6:
1e:14:68:a1:b5:47:28:06:9c:55:a6:0d:ae:2d:e2:
9f:21:c2:dc:2c:ed:7c:ea:7a:14:14:cc:e0:d8:78:
aa:36:b6:28:ba:98:1e:d9:5c:c6:14:37:06:e4:f3:
c3:c9:7a:db:ae:a4:5b:ed:6c:a0:26:b3:8f:77:1f:
a8:49:6c:ad:68:b8:df:98:ed:b0:f6:aa:96:24:41:
4f:a0:a2:9c:7c:f2:51:f0:81:ef:2f:5e:af:ea:64:
bf:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:7E:6A:0D:72:18:89:F4:B8:C4:72:DE:FF:A7:F8:D7:0E:ED:83:72
X509v3 Authority Key Identifier:
keyid:E3:2B:FD:CC:D3:BB:06:10:2D:47:A6:57:E6:0B:8D:7A:3B:04:45:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yv9zNO7BhAtR6ZX5guNejsERXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/a85b2e-b438-4ce6-a126-fd9916fd957b/1/335qDXIYifS4xHLe_6f41w7tg3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/a85b2e-b438-4ce6-a126-fd9916fd957b/1/4yv9zNO7BhAtR6ZX5guNejsERXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.127.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:82:b8:db:4e:aa:01:7d:59:05:dc:db:2f:61:10:6b:0f:9a:
3a:be:94:41:76:8e:3c:34:04:6e:aa:7d:40:ff:7f:97:8b:00:
b6:af:45:a9:e8:69:39:63:96:55:ae:e7:d3:7e:3f:a0:90:ef:
38:03:9b:a7:1c:ce:eb:b0:85:e3:ba:1b:2b:c4:8d:31:bd:70:
2d:99:1f:7f:79:aa:a8:d5:31:17:86:d7:59:89:fa:33:bc:94:
d3:87:af:a8:19:fc:af:a6:78:b1:62:f9:81:aa:12:a0:34:a3:
de:f0:14:ea:9b:47:aa:1a:75:68:05:e2:b9:61:83:9e:a2:35:
88:a6:c3:96:3d:cd:f2:16:e9:b5:9f:a8:96:36:e0:5a:71:f4:
4e:b0:a7:d8:05:94:55:df:5f:e1:21:91:7a:50:a1:48:26:e9:
05:33:af:83:ed:8a:f0:9a:cb:3e:48:c5:08:79:3d:98:76:c3:
c3:7d:da:28:c8:02:db:6f:03:61:af:c0:36:8a:51:4a:09:30:
e8:a0:3b:68:0b:91:98:a4:20:3f:a7:10:1b:ff:89:f8:5a:aa:
24:76:2d:60:96:61:86:65:88:d8:b7:dc:cc:3e:a8:af:19:c7:
86:66:5d:e8:31:7e:1a:eb:a8:9d:ba:3c:e6:af:f3:9d:22:95:
21:81:c8:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:53 2023 by rpki-client on console-ams.rpki-client.org