Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/d7aNpXNBIwv1JTwkMEY_ogxZALY.roa
File: d7aNpXNBIwv1JTwkMEY_ogxZALY.roa (raw, json)
Hash identifier: DhDKSLSRMPDpVS+wf+ZtIRUvEZHHAUekpbbjLkhx0to=
Subject key identifier: 77:B6:8D:A5:73:41:23:0B:F5:25:3C:24:30:46:3F:A2:0C:59:00:B6
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 083531F6
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/d7aNpXNBIwv1JTwkMEY_ogxZALY.roa
Signing time: Sat 01 Jan 2022 07:56:12 +0000
ROA not before: Sat 01 Jan 2022 07:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51248
IP address blocks: 212.22.70.0/24 maxlen: 24
212.22.81.0/24 maxlen: 24
212.22.87.0/24 maxlen: 24
185.65.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137703926 (0x83531f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77b68da57341230bf5253c2430463fa20c5900b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9e:35:fe:56:d7:ad:9c:ec:cf:ae:c7:d8:1f:
68:95:3c:e6:47:b8:75:f1:87:97:68:88:31:8b:36:
8e:4c:95:fc:80:a3:e5:57:87:65:99:c3:3b:22:20:
ab:9d:97:81:5f:54:d2:14:65:41:94:30:0e:ba:47:
f8:f9:4e:58:78:1c:0b:71:6d:7a:3d:1e:71:92:f1:
ad:8f:f5:78:da:d3:ad:65:97:c2:90:93:a5:48:d3:
a6:40:25:e4:31:a9:d5:74:e1:58:56:6f:a7:5b:dd:
78:7c:3a:ae:08:7c:b3:aa:ec:79:b7:0e:ce:1a:77:
2d:00:2d:1e:39:ff:b0:fd:65:c0:7b:e8:01:a7:4f:
65:f2:e3:b5:2d:16:b4:38:3b:73:c9:b0:4b:70:dd:
b8:a9:2d:18:10:d7:64:cc:4c:4e:29:c4:9c:1e:6d:
09:a9:d6:46:1e:bf:7f:e2:92:ec:7f:1e:bc:5d:18:
c9:7d:c3:7d:c2:b2:08:da:92:37:85:0a:56:c2:29:
21:fd:2c:9d:fd:0c:96:ea:e5:3f:fa:04:5d:4f:8d:
d0:89:f8:dd:d8:52:1b:6d:73:f8:a0:ce:8d:6a:65:
88:20:74:19:a4:dd:2a:60:42:f5:2e:d6:c4:e9:cc:
3a:bb:95:35:f7:5e:33:4a:fc:5e:39:87:61:ae:89:
5e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B6:8D:A5:73:41:23:0B:F5:25:3C:24:30:46:3F:A2:0C:59:00:B6
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/d7aNpXNBIwv1JTwkMEY_ogxZALY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.202.0/24
212.22.70.0/24
212.22.81.0/24
212.22.87.0/24
Signature Algorithm: sha256WithRSAEncryption
89:fa:39:0a:86:f3:1f:06:c5:f4:e1:ce:ae:b3:e2:ca:1a:8c:
be:34:ef:6d:08:45:37:1a:8e:4d:c9:5a:b5:78:7e:80:b5:0a:
7c:45:24:7c:34:f6:d0:34:46:49:cd:d6:99:46:9a:d8:82:84:
49:bc:c0:f0:f2:f2:be:ac:d5:cc:da:22:40:f4:fc:5e:48:92:
27:79:72:c0:36:8d:4d:c5:d9:b9:65:f3:a9:17:93:28:94:26:
07:21:e0:89:7a:db:66:9e:9a:77:7d:67:2a:0e:30:65:88:ea:
9c:73:b8:01:8a:35:c0:59:eb:2e:b0:37:4e:3f:99:34:45:4a:
ed:85:3b:18:2c:3e:a5:ec:3c:12:06:67:06:46:41:8b:eb:bf:
c9:dd:f9:c2:6b:57:5b:20:bc:65:6a:81:d3:f0:6c:48:ef:44:
88:70:41:ba:1b:b0:87:14:60:5e:56:4f:b5:d9:d4:c0:fb:3a:
b1:46:58:9a:5b:b3:c1:d1:3a:00:44:c4:92:af:dd:ee:18:67:
57:21:28:b2:82:a9:ee:e6:ce:07:63:28:80:b3:ae:5d:0d:1b:
33:50:b4:11:8a:9f:8f:7e:04:d0:72:95:d4:b3:4a:6f:75:eb:
7f:6a:17:38:81:87:2e:d0:c5:dc:35:a0:1e:af:69:05:4c:2c:
ad:d5:80:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org