Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/a85b2e-b438-4ce6-a126-fd9916fd957b/1/7GtnEJ6dRGcP6l0FnpE_T6Ef9tY.roa
File: 7GtnEJ6dRGcP6l0FnpE_T6Ef9tY.roa (raw, json)
Hash identifier: arLKviv3EKNu1QiwMFQxZPC8K+DDkQjCmOuE2icdTsA=
Subject key identifier: EC:6B:67:10:9E:9D:44:67:0F:EA:5D:05:9E:91:3F:4F:A1:1F:F6:D6
Certificate issuer: /CN=e32bfdccd3bb06102d47a657e60b8d7a3b044579
Certificate serial: 0182B4F3D8063EBC37990F751692F3476A0C
Authority key identifier: E3:2B:FD:CC:D3:BB:06:10:2D:47:A6:57:E6:0B:8D:7A:3B:04:45:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yv9zNO7BhAtR6ZX5guNejsERXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/a85b2e-b438-4ce6-a126-fd9916fd957b/1/7GtnEJ6dRGcP6l0FnpE_T6Ef9tY.roa
Signing time: Fri 19 Aug 2022 07:14:15 +0000
ROA not before: Fri 19 Aug 2022 07:14:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 212.18.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b4:f3:d8:06:3e:bc:37:99:0f:75:16:92:f3:47:6a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32bfdccd3bb06102d47a657e60b8d7a3b044579
Validity
Not Before: Aug 19 07:14:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec6b67109e9d44670fea5d059e913f4fa11ff6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9e:2c:30:47:da:8d:e8:a0:f2:f3:6c:ac:9f:
f4:2d:72:2a:6c:ed:64:2b:77:49:bc:65:53:dd:dd:
e3:a8:3b:c3:d9:46:3f:49:5c:d6:19:f3:37:98:b3:
f6:6b:bf:be:ca:3a:b3:87:84:87:6e:f9:61:ae:20:
40:a8:d8:4e:80:4b:86:8e:e3:4d:32:40:0b:7a:7d:
0c:06:d4:d8:3d:b7:f2:b6:2b:3d:8d:d6:32:87:ec:
8b:49:fe:04:3d:17:2d:fc:7a:3a:66:ee:cb:43:7c:
bf:2e:af:3c:85:38:de:59:9b:3d:8c:fc:91:3b:ca:
3a:e4:21:b0:33:15:8c:0b:81:da:d1:bd:3f:54:3e:
1c:57:5e:ee:18:d0:39:8a:c6:ca:b9:13:59:9f:de:
46:4d:b4:89:48:c0:a0:09:b7:f2:0c:99:65:88:0b:
be:98:a7:76:7d:ac:cb:0f:44:7a:d7:88:c4:a9:14:
4e:8e:95:f7:c6:d6:25:8a:02:41:cd:a3:7e:6a:89:
54:15:de:68:ff:95:ec:0f:50:d4:e9:78:fd:39:b1:
18:6e:15:bb:7e:1d:99:c7:95:1a:d3:90:9b:bf:e7:
07:b3:32:c3:1f:1f:dd:f9:28:33:61:46:5d:d4:d6:
4e:28:87:3c:8b:bb:3b:f4:4e:7e:84:57:fb:45:44:
64:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:6B:67:10:9E:9D:44:67:0F:EA:5D:05:9E:91:3F:4F:A1:1F:F6:D6
X509v3 Authority Key Identifier:
keyid:E3:2B:FD:CC:D3:BB:06:10:2D:47:A6:57:E6:0B:8D:7A:3B:04:45:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yv9zNO7BhAtR6ZX5guNejsERXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/a85b2e-b438-4ce6-a126-fd9916fd957b/1/7GtnEJ6dRGcP6l0FnpE_T6Ef9tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/a85b2e-b438-4ce6-a126-fd9916fd957b/1/4yv9zNO7BhAtR6ZX5guNejsERXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.127.0/24
Signature Algorithm: sha256WithRSAEncryption
30:0d:20:ed:9f:9d:21:4d:58:51:50:8f:18:d6:0b:19:ac:db:
93:f2:51:6e:51:6a:d4:cb:cf:07:62:04:8b:69:ac:02:98:f0:
a2:c0:10:df:6c:eb:27:12:b6:6d:b4:d6:31:5e:ad:49:b6:54:
12:be:96:90:1c:ad:6e:c4:7c:eb:8a:e0:5c:12:e8:12:2c:2f:
2c:47:52:9b:83:7b:a6:62:6c:6c:57:0a:4a:c1:d7:84:68:00:
16:a1:0d:77:64:7e:fb:dd:73:3d:68:66:be:f6:d2:94:86:30:
0e:36:64:83:28:9e:a6:7a:27:32:07:dc:fd:cc:42:2c:67:de:
15:01:57:82:a0:db:2c:fa:6d:57:62:68:8a:e2:1e:9a:fd:6b:
d4:89:1e:69:00:16:a2:05:08:2f:36:c7:f0:41:7c:b0:5b:a9:
3b:03:35:2e:69:27:dd:5a:08:04:35:47:c6:6f:e6:81:71:3c:
1d:95:8d:e5:d8:6a:d6:7c:f4:c9:31:6b:39:25:52:a7:8c:80:
fd:35:9b:4d:cc:78:18:9c:3f:2f:e6:6a:ed:b0:ad:22:15:bd:
e0:c0:1f:91:93:27:5f:07:72:07:5f:0a:f3:17:76:bf:6a:44:
ce:19:3e:8a:d1:e4:2b:f0:c5:93:5d:b0:31:f3:ae:6e:a5:7e:
26:71:4a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:06 2023 by rpki-client on console-fra.rpki-client.org