Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/o_RwJn18tArZzPlE4EwKHduM9Wg.roa
File: o_RwJn18tArZzPlE4EwKHduM9Wg.roa (raw, json)
Hash identifier: C/QMQOQbp/TaY+vdg9xyApKehtv3PXNJmWHHF8eDuz8=
Subject key identifier: A3:F4:70:26:7D:7C:B4:0A:D9:CC:F9:44:E0:4C:0A:1D:DB:8C:F5:68
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01855360AA328F1EF4AD543B5A464C204A2E
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/o_RwJn18tArZzPlE4EwKHduM9Wg.roa
Signing time: Tue 27 Dec 2022 11:38:41 +0000
ROA not before: Tue 27 Dec 2022 11:38:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 212.69.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:53:60:aa:32:8f:1e:f4:ad:54:3b:5a:46:4c:20:4a:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Dec 27 11:38:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3f470267d7cb40ad9ccf944e04c0a1ddb8cf568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bc:2e:e2:66:1a:78:67:d3:d8:05:ea:23:8e:
d2:a0:2d:37:ac:76:50:e4:a3:0d:b5:45:aa:8b:47:
d0:98:8e:35:a0:5f:b5:3a:e9:c8:dc:56:ce:98:ef:
c0:7c:15:7b:57:ed:8d:4b:de:2e:29:98:c7:c0:f7:
64:43:04:5d:ae:f2:f8:ed:b9:e9:93:d0:9d:17:6d:
3f:7a:ac:14:23:6b:2d:e4:f6:bd:7e:66:ee:91:1c:
5f:a1:cd:1d:bd:b9:44:6b:00:06:7d:52:99:32:89:
e2:aa:7a:ca:76:b6:12:b1:10:09:83:bc:e6:31:f3:
c5:b5:6a:b5:ae:e4:65:54:06:5a:da:76:ef:02:9e:
d6:13:d6:20:79:d1:02:d6:81:ed:21:ae:bb:eb:e1:
4e:94:2e:b0:b4:f0:14:a8:c5:e5:f6:59:5a:04:50:
18:49:69:5d:b5:07:a5:24:db:a8:6d:cb:30:92:28:
d1:e0:a2:0a:b7:fd:fa:49:34:ac:04:92:50:a8:bf:
ba:3f:70:bd:de:7e:d0:73:5f:4b:28:1f:5f:47:32:
25:c7:41:1d:4d:93:f9:ac:fb:f1:69:5a:89:93:8a:
7b:8f:b2:04:dc:c9:aa:cc:53:db:e1:00:86:c0:aa:
7f:0a:bb:23:bb:46:7e:f1:0f:e2:9e:b9:f7:0f:b1:
95:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F4:70:26:7D:7C:B4:0A:D9:CC:F9:44:E0:4C:0A:1D:DB:8C:F5:68
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/o_RwJn18tArZzPlE4EwKHduM9Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.14.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:4b:de:6a:37:e1:8e:5e:52:01:64:cc:d3:90:26:50:6f:b8:
0b:94:ea:37:0f:9a:56:72:7a:23:14:68:d8:82:ef:80:0a:e6:
55:1d:fb:d0:75:f5:e0:bc:e1:c4:8d:41:e2:08:4f:26:6d:36:
de:74:5b:6c:65:a9:bb:86:09:ad:2b:e2:94:70:ad:be:ad:f8:
c9:64:bc:4d:39:56:ab:b0:45:5a:cb:de:ed:6c:32:c9:35:38:
29:13:d4:72:a4:27:7f:6e:d0:52:d5:28:49:bb:09:c5:fb:cc:
4d:f8:ae:ce:6c:27:da:d9:dc:3c:d7:5e:da:9d:b1:1c:e6:be:
43:df:ca:99:e1:01:01:34:31:6d:44:60:f5:e7:54:3d:65:0b:
88:0b:11:11:d6:99:04:79:f8:7b:0d:81:08:7c:aa:ab:aa:83:
41:7a:91:08:8a:19:f3:56:e0:af:27:39:3d:00:57:1b:5d:31:
0f:33:fb:ac:fc:e5:19:43:4e:3a:77:57:79:b6:51:44:39:4c:
b5:d0:5e:12:1b:07:66:d2:a2:84:c1:11:93:e4:a6:d8:b7:07:
d6:5d:0b:f0:00:c4:de:b4:c9:d2:44:1e:24:a1:e4:06:fa:03:
b5:87:6e:88:65:8b:74:6d:26:a9:d6:26:9f:c7:47:ac:5f:48:
83:fe:39:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:35 2023 by rpki-client on console-fra.rpki-client.org