Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/ef060c-c726-4b99-8360-b53f27130d78/1/M2W7KT7mPk7TRDbfK_kw4q3GbVE.roa
File: M2W7KT7mPk7TRDbfK_kw4q3GbVE.roa (raw, json)
Hash identifier: +3vM/CyGOQTbg6/BtXaSbipDie0kz8rZtJ84VfwDxJ8=
Subject key identifier: 33:65:BB:29:3E:E6:3E:4E:D3:44:36:DF:2B:F9:30:E2:AD:C6:6D:51
Certificate issuer: /CN=58fdc4e22becb535a1c57f4b8dc441b5331677e3
Certificate serial: 03E85167
Authority key identifier: 58:FD:C4:E2:2B:EC:B5:35:A1:C5:7F:4B:8D:C4:41:B5:33:16:77:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WP3E4ivstTWhxX9LjcRBtTMWd-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/ef060c-c726-4b99-8360-b53f27130d78/1/M2W7KT7mPk7TRDbfK_kw4q3GbVE.roa
Signing time: Sat 01 Jan 2022 02:01:40 +0000
ROA not before: Sat 01 Jan 2022 02:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47194
IP address blocks: 212.65.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65556839 (0x3e85167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58fdc4e22becb535a1c57f4b8dc441b5331677e3
Validity
Not Before: Jan 1 02:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3365bb293ee63e4ed34436df2bf930e2adc66d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1c:1e:a4:3c:f9:19:d4:8d:6d:a7:9d:23:ec:
3d:11:8a:4f:91:87:a1:0f:73:9a:23:b6:0d:28:da:
27:3a:de:a9:fa:71:6a:f3:f9:b6:87:11:d9:35:a5:
8e:65:6a:24:2a:3f:a0:b3:ef:57:f4:28:eb:a1:cb:
84:89:dc:3c:f5:4f:ea:a4:61:1d:b3:e8:7c:e1:e1:
4a:85:35:a2:c9:0f:c2:d7:99:99:78:35:fc:39:b7:
ed:3b:72:ec:5e:fe:da:71:65:b1:b1:72:95:51:3a:
eb:78:73:33:c3:0d:05:df:7b:87:c6:17:10:be:15:
69:a0:97:13:7b:00:7a:62:9c:7d:6a:17:b5:69:30:
43:05:5e:4c:a5:90:5f:53:b9:a8:6d:0e:28:b4:73:
75:b5:ba:d1:8d:ce:d8:78:f4:b5:82:9d:f9:cd:6a:
2c:15:76:50:45:f3:5e:30:04:9a:40:2f:84:cc:65:
19:ee:96:f8:47:73:88:35:41:57:3b:c7:d2:e4:85:
35:3d:c5:9f:d9:00:02:8f:db:ec:ec:4b:a7:0b:73:
e6:84:03:02:9a:83:dc:1f:91:e3:cf:aa:73:0d:c7:
e4:f8:eb:4b:be:5c:75:80:c3:68:bb:3d:21:49:58:
d1:be:9c:2c:b3:26:2d:a3:83:de:9e:58:ad:7d:4e:
aa:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:65:BB:29:3E:E6:3E:4E:D3:44:36:DF:2B:F9:30:E2:AD:C6:6D:51
X509v3 Authority Key Identifier:
keyid:58:FD:C4:E2:2B:EC:B5:35:A1:C5:7F:4B:8D:C4:41:B5:33:16:77:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WP3E4ivstTWhxX9LjcRBtTMWd-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ef060c-c726-4b99-8360-b53f27130d78/1/M2W7KT7mPk7TRDbfK_kw4q3GbVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ef060c-c726-4b99-8360-b53f27130d78/1/WP3E4ivstTWhxX9LjcRBtTMWd-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.65.160.0/19
Signature Algorithm: sha256WithRSAEncryption
49:ed:35:77:11:ac:a6:17:d7:53:22:68:64:42:a9:e6:94:54:
02:43:22:2a:21:d2:46:25:b8:2e:e2:64:56:5b:55:f0:2f:47:
9a:49:a1:db:0f:dd:04:f1:b8:b3:ac:f0:39:bf:4d:0c:a1:94:
1e:dd:9b:6c:b3:61:6b:55:89:50:9e:f2:4b:6b:7d:dc:00:a9:
f9:90:f3:f8:6e:d3:81:5b:d7:b3:bf:bf:e2:15:9d:5e:92:65:
03:1b:9a:85:38:51:49:14:66:c1:fd:bf:a3:49:a9:dd:4c:d8:
ef:3a:ab:d6:20:1d:8c:ff:9d:53:21:99:c1:cc:26:bb:d0:dd:
bb:67:c6:f2:20:74:33:7d:0a:de:fe:30:22:c9:68:7c:e0:70:
65:11:7f:5b:21:10:db:29:4c:f5:12:a1:1c:c0:a8:d0:08:3f:
fe:22:37:a9:33:90:e9:b0:e3:bf:ad:75:c5:31:bd:3b:91:8b:
d8:25:ab:ef:f0:7f:21:57:1c:45:f3:db:4b:75:49:38:a4:63:
cb:86:59:ea:60:93:12:2e:20:40:22:01:4e:0b:b9:cd:e7:38:
06:a2:00:33:ee:bb:5f:dd:19:12:47:f2:66:e9:ed:18:1a:e4:
ce:13:ea:0a:ed:9c:ea:b3:82:16:9f:85:5f:7c:8a:b1:6f:73:
f0:02:26:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:23 2023 by rpki-client on console-fra.rpki-client.org