Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/n-nB4DaaGKFGBvLswIoS-v0lnpM.roa
File: n-nB4DaaGKFGBvLswIoS-v0lnpM.roa (raw, json)
Hash identifier: 8l6Dpp71JS96ygU4Hbyyb0WlCydexUjq81I6fqMwkb0=
Subject key identifier: 9F:E9:C1:E0:36:9A:18:A1:46:06:F2:EC:C0:8A:12:FA:FD:25:9E:93
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 083B5083
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/n-nB4DaaGKFGBvLswIoS-v0lnpM.roa
Signing time: Sat 01 Jan 2022 07:56:16 +0000
ROA not before: Sat 01 Jan 2022 07:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206803
IP address blocks: 212.22.79.0/24 maxlen: 24
212.22.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138104963 (0x83b5083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fe9c1e0369a18a14606f2ecc08a12fafd259e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d5:43:3b:9a:47:99:0b:40:6c:ff:f7:1e:6b:
28:71:8d:b7:ea:25:b7:e9:f4:ca:e7:09:83:fe:a9:
45:f9:8c:59:f3:90:78:44:06:86:69:7b:0c:47:74:
b9:6f:d1:4f:38:33:b3:03:cf:6d:00:41:af:a8:19:
99:4b:ab:7e:bd:44:65:4f:17:52:d6:6b:e7:de:41:
20:a4:cf:82:a4:54:8b:c0:9d:d1:bb:2a:73:d7:09:
3e:cf:43:6e:f6:e2:e1:89:aa:67:f0:ee:36:6a:02:
87:21:86:26:ff:8d:76:b2:85:9f:9c:6e:ff:36:77:
43:5b:b9:72:8f:69:bf:5b:3b:d6:28:1b:47:2f:89:
50:c3:f4:ed:23:b8:4a:5f:05:84:1b:d0:43:ad:35:
9c:09:2f:8a:a5:62:e0:02:2a:18:8d:81:a5:94:2e:
5d:e5:2f:fd:fe:37:b2:53:77:52:31:11:9e:bc:76:
30:0d:93:cf:25:0a:3f:00:f2:c1:18:86:e0:55:30:
a4:9b:fe:63:86:bb:eb:8b:80:f2:29:56:3e:2f:bc:
57:95:b6:c1:75:b2:28:a6:38:e0:a4:36:b5:be:3f:
98:78:8b:e2:7a:8c:e7:f9:60:0b:e4:21:23:02:f9:
ee:f3:dd:02:99:05:4a:61:ee:96:ea:5d:2a:c3:f3:
4e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:E9:C1:E0:36:9A:18:A1:46:06:F2:EC:C0:8A:12:FA:FD:25:9E:93
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/n-nB4DaaGKFGBvLswIoS-v0lnpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.79.0/24
212.22.91.0/24
Signature Algorithm: sha256WithRSAEncryption
29:8f:c1:c1:8e:8e:16:21:02:7b:1c:ba:5d:8a:1a:1f:0c:ae:
56:2b:a2:2b:42:e4:92:c4:21:bc:26:ea:e5:76:73:e2:54:48:
23:5d:7e:04:aa:e5:b7:b1:d1:18:28:0d:a2:ac:ce:8a:38:b0:
0c:2b:e6:9e:78:41:f4:92:15:2c:5a:0d:6e:b5:31:80:f9:26:
4a:31:e1:75:e8:24:21:de:b9:7b:84:36:4b:34:78:8c:9d:0f:
03:99:97:b9:ac:ec:f0:99:17:22:b4:dd:07:ff:7d:b9:14:5d:
cc:f7:49:b8:60:7e:8b:62:23:6f:36:d3:30:5f:2d:69:ff:10:
d5:72:d3:4b:e7:c7:62:ed:d8:ef:b2:c1:f3:ad:5f:ca:9d:45:
8f:94:9f:b9:44:bc:ed:10:cc:45:4f:4e:ad:b5:ce:30:f0:14:
04:b7:a7:68:4e:20:c5:71:9a:e6:6c:28:f8:9d:12:4d:85:54:
d6:20:d6:74:b9:df:d2:b3:9e:36:31:2e:3c:81:e1:0b:fb:8d:
68:24:f9:6a:63:47:89:a9:b6:6a:ac:c8:14:d6:45:4e:27:5e:
51:f7:40:31:93:c6:d6:5b:2f:97:e6:94:9e:36:b2:49:8e:3b:
3d:e0:aa:9b:5b:fc:0e:9c:85:68:1d:19:8e:a6:7a:9f:64:74:
5c:ea:45:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:35 2024 by rpki-client on console-fra.rpki-client.org