Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pXgPKgJGwrFRlyq8S3rTW49tijg.roa
File: pXgPKgJGwrFRlyq8S3rTW49tijg.roa (raw, json)
Hash identifier: e6cofLn+F3Gg+kT6Qy9Sb2tBPaknAqEGpWmESVChbjY=
Subject key identifier: A5:78:0F:2A:02:46:C2:B1:51:97:2A:BC:4B:7A:D3:5B:8F:6D:8A:38
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 083635B3
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pXgPKgJGwrFRlyq8S3rTW49tijg.roa
Signing time: Sat 01 Jan 2022 07:56:12 +0000
ROA not before: Sat 01 Jan 2022 07:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51559
IP address blocks: 212.22.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137770419 (0x83635b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5780f2a0246c2b151972abc4b7ad35b8f6d8a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:c7:c5:42:e0:72:5c:3c:93:57:ab:11:4e:
5e:d6:4b:d0:36:00:22:52:94:c1:c7:69:ca:e9:7c:
c1:31:bf:14:b5:95:70:7a:a7:1a:c7:13:ab:4f:b8:
34:fc:29:54:07:ff:d6:ad:7a:7c:2b:60:20:f9:72:
ef:50:4c:d3:c3:83:0c:96:e6:df:f0:a9:ab:4b:0d:
94:3d:24:e1:ef:0a:15:61:34:62:63:f4:49:bc:d5:
8d:ad:d9:8b:fd:88:11:ba:df:ec:d7:21:16:bb:45:
49:09:17:db:ff:0b:44:81:5a:a8:53:37:ef:68:6b:
b8:00:f1:4f:3b:e5:89:2e:78:58:ee:34:37:34:86:
a2:38:dd:c2:3d:2a:9a:9c:cf:37:05:65:0b:80:5e:
75:54:b4:95:cc:59:7b:06:8e:f1:16:cc:03:98:4e:
b7:05:06:c1:c0:a3:a2:56:52:e3:54:22:81:44:43:
17:9e:8a:53:6a:67:96:5f:09:50:40:30:55:b9:83:
84:88:eb:f4:a3:25:63:0b:8b:71:cf:20:8a:2d:ae:
8c:a0:70:64:9a:33:ab:85:7b:08:f7:ca:b4:ca:33:
ff:44:0b:23:16:17:4c:64:22:d0:e1:7b:61:86:6d:
a0:be:f8:c6:e1:29:bc:1d:ba:71:92:d3:3b:dd:37:
0b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:78:0F:2A:02:46:C2:B1:51:97:2A:BC:4B:7A:D3:5B:8F:6D:8A:38
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pXgPKgJGwrFRlyq8S3rTW49tijg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.69.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:dc:2b:f1:df:d7:00:b8:26:d1:a9:23:b8:6f:b1:31:07:cd:
79:b8:79:02:9b:5a:e5:52:0a:c9:f6:f1:04:74:d9:3e:0e:c5:
24:ef:b4:45:32:56:a1:cc:39:ee:d1:82:6f:6d:3e:b3:72:5b:
1b:01:3f:f3:83:be:7b:18:2b:44:4c:96:66:64:93:1e:0b:2b:
54:b1:54:11:7d:9e:1b:c3:80:bc:cc:69:de:21:43:8a:17:df:
ae:ea:c9:a5:38:d9:cd:01:81:f1:70:9d:51:84:b3:c5:fc:17:
28:81:e9:7f:ab:79:25:bd:da:03:86:9b:61:d4:07:17:a4:bd:
6f:03:6c:72:c4:99:e1:9b:bf:71:6b:71:ba:b1:bf:7a:63:c8:
4c:d3:6b:73:b6:c9:db:fe:d3:52:89:54:83:15:0c:2d:f2:eb:
36:95:53:80:68:d8:88:b9:ce:c9:1c:c8:81:64:49:fc:00:cf:
19:4f:40:51:86:3c:3a:c5:f2:9d:0b:b6:2b:2f:07:e9:d9:b1:
d3:a9:e5:5f:7d:74:8c:a3:b6:33:4a:de:da:ac:4e:30:ff:da:
1b:c5:83:62:8c:94:a3:2f:42:9c:e2:f7:93:d8:84:99:39:47:
8b:29:ba:3f:b6:67:b5:da:d1:81:5f:ce:43:7f:a9:c8:b4:7e:
22:4e:17:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org