Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/g1rd4qx5kP7f-1uTKMB-EmS75Zg.roa
File: g1rd4qx5kP7f-1uTKMB-EmS75Zg.roa (raw, json)
Hash identifier: bE26wWcNiYmLv77VrHTPiD+8sFDYcef+FJ7P4xB//t0=
Subject key identifier: 83:5A:DD:E2:AC:79:90:FE:DF:FB:5B:93:28:C0:7E:12:64:BB:E5:98
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 08C8454B
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/g1rd4qx5kP7f-1uTKMB-EmS75Zg.roa
Signing time: Tue 05 Apr 2022 17:59:04 +0000
ROA not before: Tue 05 Apr 2022 17:59:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 212.69.1.0/24 maxlen: 24
212.69.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147342667 (0x8c8454b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Apr 5 17:59:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=835adde2ac7990fedffb5b9328c07e1264bbe598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:50:94:9f:a0:50:ae:3b:5e:a9:3c:12:4f:cb:
20:3c:27:9d:c9:97:85:d4:a8:eb:6b:af:08:f0:4e:
29:81:b7:0f:88:95:53:a7:75:2c:db:04:78:0e:ae:
0d:c4:45:ba:f1:c4:8f:90:bc:dc:46:69:5b:2c:de:
17:0d:14:30:c9:60:92:d7:99:a7:d3:11:0a:28:15:
b1:4d:b7:20:6f:57:5f:76:23:f0:7d:ce:ee:0f:fb:
bb:7d:ed:6c:2e:17:0b:0d:d3:30:e4:8b:73:37:be:
0f:d4:d6:92:3e:e0:05:c0:06:fb:2f:c8:dd:9b:72:
b3:a6:7e:32:4c:b6:88:a3:73:68:b2:0b:93:01:4b:
7b:58:12:74:65:76:f1:00:b3:f9:c3:af:be:9c:59:
72:4a:09:5a:4a:eb:56:2e:da:e9:e6:7b:c1:c9:2a:
bf:dc:d1:85:d1:7d:53:56:5f:2a:b1:4c:d8:d6:81:
43:62:21:02:d6:e2:a2:4c:a3:2c:f8:0c:e3:20:d7:
7a:7d:a4:62:35:c5:f9:03:00:56:45:ca:2a:c7:77:
47:11:5f:da:fb:07:00:4c:10:3e:fa:64:82:4c:4f:
95:6d:c3:be:5e:81:c2:28:ab:69:94:72:ca:d8:dd:
2e:f0:7d:af:b3:bd:fd:04:f1:02:fa:2f:93:63:ef:
59:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5A:DD:E2:AC:79:90:FE:DF:FB:5B:93:28:C0:7E:12:64:BB:E5:98
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/g1rd4qx5kP7f-1uTKMB-EmS75Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.0.0/23
Signature Algorithm: sha256WithRSAEncryption
44:02:85:26:72:e2:1e:de:e4:a5:f5:26:78:34:8b:46:81:8d:
84:85:dd:27:4b:6f:00:eb:e7:dd:be:e5:d5:d4:98:36:9b:81:
51:28:e6:65:32:d9:81:89:59:79:11:14:5b:87:79:ca:ed:b9:
f9:2d:49:01:59:22:6c:a8:29:6d:f9:7c:34:74:24:43:73:00:
2b:02:ea:65:47:84:bc:ad:e1:3f:f6:46:8a:8e:fd:ae:9c:55:
17:1b:5f:3c:83:62:03:77:f0:8d:4c:28:cf:b1:c9:49:97:ac:
c5:08:cb:ca:c3:32:81:06:80:9b:7b:1d:3d:79:8f:9e:2e:c0:
d7:a6:49:67:65:96:48:9f:30:44:37:91:c1:c4:b8:7e:9c:b7:
1c:aa:7b:fe:2a:9e:f1:68:df:db:a0:11:ab:1a:9b:5b:64:16:
2c:52:52:86:09:c5:5f:2b:d8:bf:5f:d5:0f:46:ec:76:a1:a8:
bb:b3:7f:69:30:18:41:99:6a:b9:81:13:a8:55:19:0b:03:49:
b5:57:92:18:21:c0:39:f4:df:1b:6f:60:8f:0a:9c:73:f5:2c:
5a:8b:3c:d5:c9:60:cf:d6:cd:1b:cd:15:f9:dc:88:02:7f:53:
4e:9f:10:ba:37:70:8e:41:ee:1e:44:e1:40:f8:f2:55:d7:44:
db:a8:b6:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-fra.rpki-client.org