Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EbCS4A7erJ4OLpc3VfhQnaySpzY.roa
File: EbCS4A7erJ4OLpc3VfhQnaySpzY.roa (raw, json)
Hash identifier: 6w6NCGiDhihzyUpLSdJrEJpH1HzA1Tlgdb26P9SEaDk=
Subject key identifier: 11:B0:92:E0:0E:DE:AC:9E:0E:2E:97:37:55:F8:50:9D:AC:92:A7:36
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018378AC6CB6BB54FD49665E0D1CF26352ED
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EbCS4A7erJ4OLpc3VfhQnaySpzY.roa
Signing time: Mon 26 Sep 2022 07:21:49 +0000
ROA not before: Mon 26 Sep 2022 07:21:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17819
IP address blocks: 212.69.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:78:ac:6c:b6:bb:54:fd:49:66:5e:0d:1c:f2:63:52:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Sep 26 07:21:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11b092e00edeac9e0e2e973755f8509dac92a736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:41:bc:31:06:03:5e:c2:34:b6:99:38:d8:6e:
91:b2:12:f3:b6:48:c8:fd:70:f6:e2:58:7e:44:0d:
70:6c:88:8a:e4:bd:dd:ea:31:70:82:3b:f4:72:51:
11:1a:b5:3d:e6:18:4d:2e:d4:26:06:3d:79:bf:22:
b0:8d:2b:59:71:80:fd:fd:2e:d9:47:6c:b6:dd:b2:
ed:9c:a2:54:2e:46:f8:e3:c5:ca:ec:df:77:24:1e:
11:73:3e:af:78:97:cd:b2:8c:82:b4:a7:e0:e7:4e:
ab:cb:45:3a:34:b2:2d:fb:28:bc:7b:0b:a0:c6:60:
83:14:38:36:7c:22:be:6a:b0:cd:21:f8:34:9e:ff:
3d:28:ba:85:05:db:0d:fa:dd:8c:25:9d:f5:1d:07:
ce:3e:82:b3:e6:7d:46:3a:01:3a:17:7b:df:e2:8a:
2a:99:65:89:86:b2:2c:2a:b0:82:60:04:da:52:bf:
57:45:e5:5b:43:21:b1:30:9c:e5:a0:3c:23:18:04:
fe:4d:4c:41:43:9a:45:03:ab:ae:1a:c9:3c:90:25:
b3:55:03:22:4a:8e:a6:12:91:b7:f3:dd:f3:86:16:
f2:c8:65:40:d4:62:3c:e2:61:69:5d:30:2b:38:18:
a0:95:da:9a:7b:18:86:40:a2:0b:ed:9a:39:11:6d:
94:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B0:92:E0:0E:DE:AC:9E:0E:2E:97:37:55:F8:50:9D:AC:92:A7:36
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/EbCS4A7erJ4OLpc3VfhQnaySpzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.18.0/24
Signature Algorithm: sha256WithRSAEncryption
95:26:4a:58:ca:70:54:38:9f:2f:e4:56:6d:c9:37:ca:5a:3f:
20:f2:c0:03:87:82:f1:37:9f:66:ca:04:98:b8:27:3e:43:4d:
35:2a:5a:fe:9a:31:83:4d:3c:51:80:d9:41:74:72:37:23:b6:
94:81:60:c3:f0:d5:5f:f0:3b:e9:e1:43:66:c9:5f:46:de:41:
59:28:f2:03:77:e4:b9:ee:ef:b8:83:33:cf:cd:79:aa:d5:7b:
72:04:45:0f:ac:7a:61:11:f5:55:22:92:27:92:46:1f:db:73:
cc:d6:d1:91:aa:20:92:d2:b9:ef:9f:67:91:7a:7b:b7:c1:62:
a4:bc:9f:10:98:96:ea:64:b2:3c:9e:d8:ad:18:25:03:cd:d7:
3f:60:97:12:7f:3e:a7:f6:63:2a:7e:ee:e6:83:91:c7:85:d5:
f7:94:9b:a3:94:f5:50:0b:3d:3f:19:12:1b:ae:38:7b:e2:81:
d6:06:7b:c8:69:d3:19:08:5b:4c:b2:68:67:09:e9:f3:c9:72:
5d:c9:d3:c7:d8:b8:19:f2:aa:c9:db:18:57:a4:f5:b9:c3:3c:
d8:c6:f1:02:94:56:c4:d7:c9:d7:f1:c7:17:2e:95:f3:83:f0:
e6:e9:3d:5c:9f:3f:e9:63:bb:3c:27:8e:c9:c1:aa:e3:9a:41:
af:19:41:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:32 2023 by rpki-client on console-fra.rpki-client.org