Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Uu6SrM5t_er6yCvpO5xUP-h3UTM.roa
File: Uu6SrM5t_er6yCvpO5xUP-h3UTM.roa (raw, json)
Hash identifier: lnbylp7MQBcppoJUOgHnmNz7w/DnasVf3Dawi2/fzNM=
Subject key identifier: 52:EE:92:AC:CE:6D:FD:EA:FA:C8:2B:E9:3B:9C:54:3F:E8:77:51:33
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01845CBC731B1280959144506A1EAA013EC5
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Uu6SrM5t_er6yCvpO5xUP-h3UTM.roa
Signing time: Wed 09 Nov 2022 14:12:44 +0000
ROA not before: Wed 09 Nov 2022 14:12:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206119
IP address blocks: 212.69.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5c:bc:73:1b:12:80:95:91:44:50:6a:1e:aa:01:3e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Nov 9 14:12:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52ee92acce6dfdeafac82be93b9c543fe8775133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e4:7d:1b:b8:cc:a4:3a:1a:69:d7:a6:67:3d:
cf:af:8f:44:51:57:28:ad:ec:9f:b1:40:66:c4:c1:
4d:78:16:31:b7:f2:44:c6:da:17:91:61:fc:57:51:
50:1a:54:e0:3a:ca:d9:9f:72:61:b6:d0:8b:83:2f:
85:fd:b7:11:df:3c:a5:a0:5b:b3:20:b3:9b:af:0e:
8f:ba:c0:e8:be:5f:8d:d2:81:02:8e:02:bd:dd:c6:
00:73:9d:b9:70:f9:64:fc:02:dd:f8:03:d8:ef:97:
fa:c4:1b:2f:9e:dd:66:94:30:d9:5c:7d:36:fc:ab:
8b:43:b9:2f:28:e6:98:22:20:c6:52:b0:2b:51:25:
66:cb:e9:af:16:ac:37:e5:52:cb:58:92:4f:d8:e7:
6d:68:e0:59:99:1c:e2:0b:09:17:88:cb:11:9a:48:
cc:ea:82:cf:98:59:2b:da:36:fa:02:2c:71:e9:9b:
07:f3:95:ff:b7:ac:ac:66:51:49:ac:b9:66:34:cd:
0a:0f:c6:5f:a6:2e:e0:cf:15:27:a1:72:bb:82:62:
f7:8c:3c:e2:7c:fa:93:a8:83:c2:34:f5:d8:dd:a5:
ee:e7:87:6d:61:2a:b8:38:b8:f3:5d:48:61:c3:db:
f7:88:dd:9d:e2:ab:c4:74:df:42:14:80:ee:9a:e8:
2d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EE:92:AC:CE:6D:FD:EA:FA:C8:2B:E9:3B:9C:54:3F:E8:77:51:33
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Uu6SrM5t_er6yCvpO5xUP-h3UTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.1.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:d9:63:e1:d7:aa:f9:79:cd:45:37:84:b6:24:d4:ad:ae:a5:
1d:ed:d2:dd:4f:19:7f:16:0e:16:0f:66:88:0a:b2:88:8b:6d:
3f:4c:b9:6d:42:f9:71:0d:5c:e6:8b:e7:ce:0f:95:6a:cd:fa:
cf:50:eb:7b:ce:89:45:72:86:51:fc:1e:aa:fe:1a:32:54:d5:
37:0d:a5:e2:b6:c9:17:12:1b:53:4f:0f:f3:c5:7a:81:62:0e:
13:d3:6b:b9:c5:20:7c:bd:b2:3b:3d:15:c6:d8:95:52:d6:52:
c8:01:74:6a:a6:6b:29:2a:72:cb:8b:90:ec:89:bf:e1:86:cc:
93:24:96:82:71:f4:bb:03:1f:7c:0e:64:99:51:29:5c:24:c7:
25:97:be:fe:48:81:c7:d0:b3:fc:2d:0c:7a:c8:a8:0f:58:77:
e9:08:34:1d:bc:a6:eb:e6:29:f0:12:4e:92:97:b5:c6:98:fa:
d8:d9:10:f7:2a:35:9c:73:2a:9d:88:60:2a:e8:df:ac:8a:13:
18:9e:35:49:12:01:be:69:03:b8:5b:4b:72:bb:f9:5c:8c:b5:
e2:3e:28:23:db:aa:70:18:a4:08:26:12:50:87:fb:51:8e:21:
7d:e4:9e:a4:e5:58:6c:65:98:78:ac:5a:43:1e:9c:70:ae:d0:
32:47:30:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-fra.rpki-client.org