Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/doiIVcrkaC0vjADWkLAhsiFY3ko.roa
File: doiIVcrkaC0vjADWkLAhsiFY3ko.roa (raw, json)
Hash identifier: KYHs5K0b7pRIB9F7H+q+DRHoN/h7GhbGIWb7C+WIaVc=
Subject key identifier: 76:88:88:55:CA:E4:68:2D:2F:8C:00:D6:90:B0:21:B2:21:58:DE:4A
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 0839C517
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/doiIVcrkaC0vjADWkLAhsiFY3ko.roa
Signing time: Sat 01 Jan 2022 07:56:15 +0000
ROA not before: Sat 01 Jan 2022 07:56:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204576
IP address blocks: 212.22.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138003735 (0x839c517)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76888855cae4682d2f8c00d690b021b22158de4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:27:e9:d8:70:5d:9c:a5:70:48:02:3e:1b:58:
dc:1f:ef:db:b2:47:0d:56:22:22:ed:21:63:85:9b:
df:8d:d5:22:20:48:a4:7f:4b:77:26:78:60:85:54:
1e:be:53:f9:ea:b3:09:b2:63:d5:2a:78:8a:78:be:
84:3f:0a:3c:40:73:7e:6a:08:b1:0a:f1:43:97:00:
1b:88:cb:c1:97:f5:3a:3e:4a:40:70:fe:c3:1b:0e:
f8:67:0c:7c:db:e4:5f:e4:e6:c8:4b:13:45:f4:96:
28:91:d6:5a:25:5d:95:3a:ee:7b:b9:49:38:58:51:
2e:e1:fe:25:55:49:52:0d:4d:06:39:5d:6f:f2:32:
7f:a5:13:a6:1d:26:ff:d4:0a:f1:af:e5:a1:d9:ae:
82:2d:85:45:89:41:d0:f3:b3:79:36:eb:34:1d:fc:
0d:a6:3c:40:c2:dd:82:58:6b:a7:b7:98:f0:8d:ef:
7f:a5:c1:0f:ed:1f:b7:7f:28:70:22:90:c2:28:f9:
8e:d4:ff:9c:05:b9:3a:12:37:7e:7b:1b:6c:b6:9b:
59:da:67:56:25:6d:8e:c8:88:23:2c:66:cd:7f:50:
5f:d3:15:3b:71:ed:a1:a8:20:0a:e7:90:56:34:fa:
3a:03:3e:76:0c:10:a6:73:51:a0:cc:d5:f4:09:74:
bf:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:88:88:55:CA:E4:68:2D:2F:8C:00:D6:90:B0:21:B2:21:58:DE:4A
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/doiIVcrkaC0vjADWkLAhsiFY3ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.73.0/24
Signature Algorithm: sha256WithRSAEncryption
65:c3:3c:9f:49:52:4a:41:fb:c3:b3:24:91:5c:1c:a3:ce:77:
6a:df:60:bf:ba:28:b5:11:08:3f:cb:0c:cf:ae:d3:f2:cd:07:
dd:39:cd:90:0c:16:ed:ae:48:4b:b6:05:21:96:94:c5:b3:98:
49:8a:f1:a1:8d:e2:d9:e3:06:76:bb:17:7b:a6:2f:06:27:f2:
6e:be:56:5e:a9:da:35:2a:58:5e:cb:fd:8a:9a:f8:c8:6b:46:
da:b8:f5:3b:ba:4c:51:aa:d5:74:45:36:bd:56:15:ee:be:a2:
eb:62:07:b9:03:8d:ae:87:22:e1:7c:af:e5:15:09:4f:b4:42:
1b:50:7f:fc:ee:59:76:ab:bc:46:87:20:ba:46:ed:4d:fd:db:
4f:d7:ce:3e:5f:f7:c2:20:2b:fb:60:05:8c:6b:c7:32:c7:2b:
2d:28:c1:31:32:e0:c1:62:b3:f6:e0:65:03:bb:b8:44:9c:40:
71:0c:08:6f:b4:22:95:86:7a:14:ef:d3:e8:6a:48:5a:94:c9:
46:a9:74:e0:6e:8d:08:be:2f:b1:9c:04:1f:a8:12:3e:af:d9:
2c:5f:54:b8:af:e3:13:b1:59:86:ae:39:03:34:f4:00:f7:83:
5b:a8:60:ed:8c:e6:e5:c0:67:68:62:bd:e2:e3:19:71:18:7a:
40:3f:57:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:35 2024 by rpki-client on console-fra.rpki-client.org