Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/rTMmu3G96_xIyz4AS7XgX52jA0k.roa
File: rTMmu3G96_xIyz4AS7XgX52jA0k.roa (raw, json)
Hash identifier: jwisAJZwHXM3BB10PITBauaoZO8LXNEUXCp6UaPF+Y4=
Subject key identifier: AD:33:26:BB:71:BD:EB:FC:48:CB:3E:00:4B:B5:E0:5F:9D:A3:03:49
Certificate issuer: /CN=22582c47b01e06d883694841e3c980382c559406
Certificate serial: 01F6B9E0
Authority key identifier: 22:58:2C:47:B0:1E:06:D8:83:69:48:41:E3:C9:80:38:2C:55:94:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlgsR7AeBtiDaUhB48mAOCxVlAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/rTMmu3G96_xIyz4AS7XgX52jA0k.roa
Signing time: Wed 15 Jun 2022 11:54:47 +0000
ROA not before: Wed 15 Jun 2022 11:54:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19437
IP address blocks: 212.52.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32946656 (0x1f6b9e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22582c47b01e06d883694841e3c980382c559406
Validity
Not Before: Jun 15 11:54:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad3326bb71bdebfc48cb3e004bb5e05f9da30349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ed:33:fa:c1:fe:ae:af:a3:51:2e:b4:8b:c8:
6b:f4:00:5a:24:13:3c:f1:c6:fe:11:55:a4:22:f9:
7e:e2:ff:bd:01:78:ba:a9:3e:83:64:19:7c:90:8b:
3b:af:a3:cc:2e:89:06:45:fe:26:30:ab:6b:a6:45:
a8:0b:33:ff:cd:27:f8:db:de:00:1d:8b:df:1f:11:
a6:a4:ca:6c:a7:95:6c:3d:35:c9:8c:a2:b5:96:96:
a6:fe:19:04:9a:f7:df:a6:d8:40:88:85:8c:c8:75:
ae:02:20:b6:94:4b:ce:d6:61:c3:51:27:6a:2d:f2:
3f:a6:68:be:9f:a9:43:4d:a7:60:14:c2:48:84:b4:
65:59:38:5a:13:ff:04:28:34:2b:5b:92:28:70:19:
f4:68:27:bf:1f:aa:66:5f:7b:71:8f:2d:70:de:da:
94:ce:e7:ca:a1:af:f1:90:28:70:b2:1d:b6:c3:37:
57:41:45:f5:ed:5e:66:06:c1:17:28:42:1f:9a:e0:
65:22:b9:18:6f:10:a4:90:17:94:fb:8d:9d:58:5a:
67:2b:4b:c2:ad:8a:52:c0:53:a8:f6:6a:0f:e6:b8:
d0:c0:3f:33:88:4f:01:14:7d:84:ac:8d:bf:16:03:
29:6d:4c:9a:01:f0:dc:22:ed:1e:3a:7e:b9:2d:91:
ba:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:33:26:BB:71:BD:EB:FC:48:CB:3E:00:4B:B5:E0:5F:9D:A3:03:49
X509v3 Authority Key Identifier:
keyid:22:58:2C:47:B0:1E:06:D8:83:69:48:41:E3:C9:80:38:2C:55:94:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlgsR7AeBtiDaUhB48mAOCxVlAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/rTMmu3G96_xIyz4AS7XgX52jA0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/367a0f-0510-4366-aa15-49ed29a9e0af/1/IlgsR7AeBtiDaUhB48mAOCxVlAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.20.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:38:f3:79:43:42:48:00:23:77:22:12:21:da:4c:d2:17:df:
75:df:8b:5c:e1:3c:aa:3b:9e:60:4b:aa:7d:0b:f5:23:47:9e:
44:33:57:48:88:17:b0:ba:36:64:44:0d:83:dd:14:76:47:0d:
3b:c4:5a:ca:44:07:35:f2:1f:be:cd:7e:f8:9a:c0:ee:4c:78:
87:07:38:25:ce:8f:ec:2b:96:f9:c9:54:a5:58:ed:97:1c:8d:
8a:21:8f:b1:83:3d:5d:77:dc:52:a5:79:10:dd:7b:af:73:94:
e8:be:68:95:ee:5f:6d:a7:0e:a9:be:7d:29:70:b6:84:f8:fb:
86:ed:8f:b4:b4:68:83:d6:f0:c5:9c:d3:0a:cf:be:5c:5e:36:
3c:78:77:90:a0:a1:6d:e7:c0:7c:68:32:7e:c0:5b:cd:03:51:
bb:70:7a:84:2e:0d:9f:09:17:cb:d0:9e:32:78:2d:84:13:cc:
0a:b7:fd:8c:cd:73:95:d3:49:78:bd:16:66:5d:e6:a9:51:5a:
d6:ed:07:7d:58:c7:c3:24:72:8c:e2:61:ec:65:1b:ef:46:91:
e5:aa:aa:7a:c2:da:47:8d:4c:4b:b8:67:98:b9:a2:d8:a9:e4:
1a:8e:0b:24:a9:ca:31:4e:95:3b:cc:6e:21:29:79:11:da:78:
6f:d0:1e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:21 2023 by rpki-client on console-ams.rpki-client.org