Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/418074-06b8-4ce4-980e-fadb113f6780/1/arUeJZmcF6t0HqhrF4Hf-w0Rzb8.roa
File: arUeJZmcF6t0HqhrF4Hf-w0Rzb8.roa (raw, json)
Hash identifier: 9LLwkGD8Bn6qUVd9lXn5JuQOefG8PWaCdMYuWjWaYt0=
Subject key identifier: 6A:B5:1E:25:99:9C:17:AB:74:1E:A8:6B:17:81:DF:FB:0D:11:CD:BF
Certificate issuer: /CN=de1b9ca1f3f157d7ff537ed34597f7c33707ccb3
Certificate serial: 94B69F
Authority key identifier: DE:1B:9C:A1:F3:F1:57:D7:FF:53:7E:D3:45:97:F7:C3:37:07:CC:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hucofPxV9f_U37TRZf3wzcHzLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/418074-06b8-4ce4-980e-fadb113f6780/1/arUeJZmcF6t0HqhrF4Hf-w0Rzb8.roa
Signing time: Sat 01 Jan 2022 01:54:35 +0000
ROA not before: Sat 01 Jan 2022 01:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.23.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9746079 (0x94b69f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de1b9ca1f3f157d7ff537ed34597f7c33707ccb3
Validity
Not Before: Jan 1 01:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ab51e25999c17ab741ea86b1781dffb0d11cdbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:68:74:f3:bc:83:23:2e:bb:85:66:35:47:1e:
e4:01:af:8a:83:a0:d7:46:d7:0e:a5:c5:d8:c0:f3:
04:a0:80:5e:d2:a5:db:7d:39:37:2b:be:8b:ed:87:
db:b7:4e:d9:24:a0:c6:ed:84:92:c6:3c:ea:82:29:
ff:0f:7d:02:29:97:f4:cf:59:67:95:a7:d7:13:15:
ba:04:75:fd:fe:09:18:1e:f5:d3:b5:b6:f4:b4:e8:
2a:c7:35:4c:7f:f3:8c:b6:5b:92:6f:c8:18:c1:0e:
05:cb:8a:72:9e:29:3f:2b:f1:c2:37:b7:7e:8b:b8:
43:62:b0:18:90:35:3d:46:f9:45:28:5a:0c:36:78:
e2:57:e9:9b:52:04:6f:d7:5c:65:0a:c5:ef:ce:c8:
81:f6:e9:05:c6:73:03:fe:49:3e:e2:31:3e:30:f9:
a8:c8:eb:f2:ad:eb:53:c6:75:4b:d6:c0:7e:f4:8a:
66:ff:5e:37:ae:a0:2e:b3:5a:16:de:01:a3:b6:88:
4b:f2:9c:8f:38:19:83:38:1e:ef:1e:b5:a9:f3:c8:
17:12:18:a8:c2:96:d6:37:0b:a4:15:14:16:56:5e:
57:98:0a:50:b4:21:36:d6:c5:88:25:75:07:08:b4:
f4:a0:b2:bd:5c:37:1c:5e:7e:a7:35:d9:ce:7b:bd:
64:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B5:1E:25:99:9C:17:AB:74:1E:A8:6B:17:81:DF:FB:0D:11:CD:BF
X509v3 Authority Key Identifier:
keyid:DE:1B:9C:A1:F3:F1:57:D7:FF:53:7E:D3:45:97:F7:C3:37:07:CC:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hucofPxV9f_U37TRZf3wzcHzLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/418074-06b8-4ce4-980e-fadb113f6780/1/arUeJZmcF6t0HqhrF4Hf-w0Rzb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/418074-06b8-4ce4-980e-fadb113f6780/1/3hucofPxV9f_U37TRZf3wzcHzLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.198.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:0f:6a:b5:93:fa:26:e7:ac:a6:ac:b4:6f:c2:a8:fa:d4:26:
c4:40:3b:3a:bd:3b:ac:52:13:42:1a:c0:f5:54:d2:fe:0c:b8:
ef:a7:d8:03:f0:93:3c:a2:d3:b2:c2:60:26:63:50:72:8b:c3:
5e:ce:70:35:57:1a:65:d4:49:d1:4f:86:c7:63:e7:b3:d0:6a:
c1:03:91:ff:81:9c:43:b5:d2:d2:33:21:5b:f7:45:76:6c:57:
f0:b8:b1:22:9a:6e:e2:ff:13:5a:a3:1b:13:d5:67:0a:c3:2a:
f7:15:a2:68:34:4e:10:81:38:41:59:89:b0:19:fd:03:39:9d:
d9:bc:9c:07:f0:32:ae:73:b5:d5:fc:bc:fe:e1:8a:28:8e:86:
4e:59:aa:2b:6d:46:71:ce:8a:1d:38:18:09:d6:b1:90:a3:f8:
90:6f:ad:33:2a:47:1e:8b:6a:20:68:bd:89:2d:05:92:0d:a7:
d2:7d:77:b7:88:95:4e:27:8c:d1:8a:2d:da:06:95:df:25:db:
e7:dc:4f:90:cf:e4:e6:18:65:cd:53:97:de:b9:87:d2:28:05:
df:cf:32:25:6f:01:5d:24:34:b5:d3:cc:fe:98:15:1c:f1:72:
81:04:b8:2b:e4:41:69:fb:cb:b6:9d:7d:fc:e6:c9:00:0b:25:
2c:e8:b3:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org