Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/FL1UNh9HK3tLVRxTxHI8dq4Je5E.roa
File: FL1UNh9HK3tLVRxTxHI8dq4Je5E.roa (raw, json)
Hash identifier: xAaZXFkFwz8oYQb6Bp+ThL4utsxXp40wsKgA9etbgLg=
Subject key identifier: 14:BD:54:36:1F:47:2B:7B:4B:55:1C:53:C4:72:3C:76:AE:09:7B:91
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 082AFF5F
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/FL1UNh9HK3tLVRxTxHI8dq4Je5E.roa
Signing time: Sat 01 Jan 2022 07:56:06 +0000
ROA not before: Sat 01 Jan 2022 07:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8888
IP address blocks: 212.22.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137035615 (0x82aff5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14bd54361f472b7b4b551c53c4723c76ae097b91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a3:0c:dc:0d:25:de:fd:5e:3f:c6:0a:a3:2d:
a8:05:1e:b3:1d:2b:78:9f:86:41:53:bc:16:58:a9:
7e:59:93:c2:64:0b:03:48:2e:83:88:56:1e:ec:cd:
09:c3:4b:8a:c6:98:51:aa:72:03:1d:18:c3:31:1a:
c3:ee:ea:be:5d:3d:8b:29:00:6c:f5:99:1a:7e:ca:
b6:f3:5c:e3:5d:db:b5:db:c5:83:ab:4f:0b:f1:db:
08:d8:51:55:29:c1:55:84:d6:04:0c:43:13:4b:d7:
6f:2d:0d:d3:0b:20:da:3a:fd:cb:b8:c7:8b:34:c1:
d9:fd:74:50:3a:aa:4e:7c:7e:46:46:d8:22:70:41:
b9:79:3a:dd:dd:de:32:0b:e0:0a:f5:e6:a7:b3:2a:
35:56:15:54:49:c7:41:12:29:64:c5:1a:2b:89:1b:
92:d1:97:9d:86:7b:f0:8a:bc:73:a3:4b:ac:09:31:
82:65:73:22:74:10:60:e5:f7:3a:ff:0b:02:c7:7b:
ff:38:72:d9:ac:55:a2:ff:5e:12:4c:c8:07:82:84:
f4:20:12:ba:95:c6:b8:c2:97:65:e8:83:c4:a5:6b:
46:e6:2d:48:61:a8:2a:8e:d4:a6:30:2b:2a:04:7b:
7f:87:57:77:b0:db:56:15:10:69:28:d5:5b:57:6a:
66:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BD:54:36:1F:47:2B:7B:4B:55:1C:53:C4:72:3C:76:AE:09:7B:91
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/FL1UNh9HK3tLVRxTxHI8dq4Je5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.74.0/24
Signature Algorithm: sha256WithRSAEncryption
34:73:94:50:90:50:38:59:73:12:35:ca:96:cc:1a:81:81:8e:
d2:a0:5e:2f:7d:13:43:24:6c:5f:29:26:a5:58:82:f1:a3:9f:
32:9d:67:e4:b3:61:ff:38:c5:9d:13:89:bf:ca:f2:bd:11:aa:
25:71:38:4a:59:8a:92:d1:75:4c:55:05:54:e3:45:db:b2:2d:
19:53:68:d5:83:83:2b:13:69:a8:7d:98:65:af:3d:ac:b8:a2:
20:71:33:b1:b1:b4:a9:a6:c4:02:10:69:03:e9:73:00:46:54:
09:38:70:16:b9:ce:67:f3:ce:cc:19:a8:ce:c0:b0:d3:0f:c7:
e7:49:8c:f2:c6:2b:75:50:a3:42:59:b7:fc:97:c7:9e:e7:55:
27:4e:71:75:3d:cb:94:bc:17:17:47:57:02:33:67:6e:23:d6:
c6:d1:af:f7:06:93:92:41:2e:85:5d:da:1a:95:df:fb:1a:51:
e8:86:da:c6:40:c5:07:d4:76:54:19:af:a0:7f:3b:ad:d8:6e:
b5:b1:a4:f1:40:94:66:27:64:91:6e:03:51:5f:03:c4:36:ef:
8b:a3:91:0b:1e:99:d2:ac:ad:2e:46:b1:c5:f6:ff:24:a9:34:
60:fd:98:83:88:9c:25:98:91:1f:0a:a4:22:0b:d3:a3:5f:73:
10:a1:c8:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org