Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/b_qHTvQADocsqnV2iQv_naFM-do.roa
File: b_qHTvQADocsqnV2iQv_naFM-do.roa (raw, json)
Hash identifier: 8ys0aE/uv0C68M1aHydGZEEJpa6jbvgrp1//nrBkcqM=
Subject key identifier: 6F:FA:87:4E:F4:00:0E:87:2C:AA:75:76:89:0B:FF:9D:A1:4C:F9:DA
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01826421F520C2BA6B6F812C60811624BF6C
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/b_qHTvQADocsqnV2iQv_naFM-do.roa
Signing time: Wed 03 Aug 2022 14:35:23 +0000
ROA not before: Wed 03 Aug 2022 14:35:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210240
IP address blocks: 212.22.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:64:21:f5:20:c2:ba:6b:6f:81:2c:60:81:16:24:bf:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Aug 3 14:35:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ffa874ef4000e872caa7576890bff9da14cf9da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:10:f8:16:72:11:ed:0f:43:75:e1:79:01:38:
25:63:c4:7e:f6:ac:01:cf:0f:87:aa:0e:0d:66:1f:
a4:5b:9b:f3:32:8e:07:a3:5e:87:4d:ba:48:d4:3b:
4a:90:74:c6:f3:75:94:93:21:54:74:c1:d4:9d:cb:
40:07:47:0c:2f:05:a0:69:9a:25:7c:b3:fa:5a:86:
7e:a7:84:bb:3b:65:bf:09:f3:a3:e6:a3:86:10:d0:
29:35:31:d3:0d:d1:0c:6a:b2:8a:17:a7:c3:b0:e3:
94:73:e4:0a:7a:f5:6c:5c:cb:3a:ab:06:96:eb:11:
43:ea:5a:0f:d2:45:73:72:e5:ec:40:42:09:70:78:
f5:22:12:22:1b:40:ff:cd:b9:73:ce:76:01:b1:74:
61:2f:b7:a4:79:13:01:26:9a:4a:03:21:9f:e6:4e:
e0:89:13:7f:ec:0d:76:9f:3c:01:73:f2:16:cb:07:
7a:a4:e1:ff:49:c4:4d:b2:39:21:8a:76:7f:2e:01:
30:e3:00:59:74:33:9a:b7:06:2f:36:9e:3d:5b:d0:
3e:c9:d4:d3:61:2f:8d:2d:7b:43:db:85:1f:63:8e:
69:47:45:fd:4d:ce:65:42:b0:b9:5b:c2:3c:7f:39:
36:5c:21:eb:d1:fe:73:ab:d1:ef:b0:84:e2:52:e1:
d4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FA:87:4E:F4:00:0E:87:2C:AA:75:76:89:0B:FF:9D:A1:4C:F9:DA
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/b_qHTvQADocsqnV2iQv_naFM-do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.74.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:35:bb:17:a3:ff:de:97:cd:8a:32:33:2d:14:d2:ff:6a:11:
39:ab:80:e4:b1:ed:ad:bd:07:ab:71:16:a5:f6:fa:34:1e:f5:
91:68:13:cb:ec:3a:f0:e0:1b:0c:e6:e3:57:d9:58:1b:a4:2b:
f2:c8:c8:4f:df:c8:5f:86:7f:4a:f4:52:56:d8:1b:50:a6:9c:
a7:b3:d5:5c:9b:49:c3:95:e4:60:a9:3a:ce:4c:fe:04:ef:f0:
87:a7:c6:d6:46:df:aa:83:7b:8b:1b:71:26:37:fd:c9:dd:9b:
ed:8b:b7:83:df:6a:6d:d3:c1:e7:a8:49:46:92:c1:1c:fc:94:
a3:5f:a7:c2:a4:de:c7:32:5a:90:15:93:eb:31:91:06:99:9d:
07:95:2b:55:09:cc:e9:a2:f3:c2:a6:03:33:94:82:9e:5e:8b:
f8:5b:6c:64:df:da:3c:c2:bc:55:61:ae:f1:47:ce:48:94:07:
0f:07:6e:05:13:63:1a:3b:2e:ab:7b:f4:2e:0a:9f:7f:dc:37:
ec:3e:bd:6d:da:90:c6:fd:64:8b:cb:c4:bb:c0:51:54:c6:71:
8b:82:a5:89:21:02:18:e3:8e:8d:cc:50:02:35:38:d5:fb:93:
d7:cf:23:3a:52:0b:4b:23:8e:dd:8a:52:00:50:08:e5:95:ae:
3e:0b:b4:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJkIfUgwrprb4EsYIEWJL9sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NjM2NTM1NWI2NjU1NjRhMjEwYzM1OGM2OGEwMTE3Yjdm
YmViOWEwHhcNMjIwODAzMTQzNTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmZhODc0ZWY0MDAwZTg3MmNhYTc1NzY4OTBiZmY5ZGExNGNmOWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBD4FnIR7Q9DdeF5ATglY8R+9qwB
zw+Hqg4NZh+kW5vzMo4Ho16HTbpI1DtKkHTG83WUkyFUdMHUnctAB0cMLwWgaZol
fLP6WoZ+p4S7O2W/CfOj5qOGENApNTHTDdEMarKKF6fDsOOUc+QKevVsXMs6qwaW
6xFD6loP0kVzcuXsQEIJcHj1IhIiG0D/zblzznYBsXRhL7ekeRMBJppKAyGf5k7g
iRN/7A12nzwBc/IWywd6pOH/ScRNsjkhinZ/LgEw4wBZdDOatwYvNp49W9A+ydTT
YS+NLXtD24UfY45pR0X9Tc5lQrC5W8I8fzk2XCHr0f5zq9HvsITiUuHUgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG/6h070AA6HLKp1dokL/52hTPnaMB8GA1UdIwQY
MBaAFHRjZTVbZlVkohDDWMaKARe3++uaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGIt
NmE0ZWNhZjhiM2IxLzEvYl9xSFR2UUFEb2NzcW5WMmlRdl9uYUZNLWRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGItNmE0ZWNhZjhiM2Ix
LzEvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BZKMA0G
CSqGSIb3DQEBCwUAA4IBAQAdNbsXo//el82KMjMtFNL/ahE5q4Dkse2tvQercRal
9vo0HvWRaBPL7Drw4BsM5uNX2VgbpCvyyMhP38hfhn9K9FJW2BtQppyns9Vcm0nD
leRgqTrOTP4E7/CHp8bWRt+qg3uLG3EmN/3J3Zvti7eD32pt08HnqElGksEc/JSj
X6fCpN7HMlqQFZPrMZEGmZ0HlStVCczpovPCpgMzlIKeXov4W2xk39o8wrxVYa7x
R85IlAcPB24FE2MaOy6re/QuCp9/3DfsPr1t2pDG/WSLy8S7wFFUxnGLgqWJIQIY
446NzFACNTjV+5PXzyM6UgtLI47dilIAUAjlla4+C7R9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:35 2024 by rpki-client on console-fra.rpki-client.org