Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/wNSqqJYOAnjO54BaILw5ort5emQ.roa
File: wNSqqJYOAnjO54BaILw5ort5emQ.roa (raw, json)
Hash identifier: 6EL4E9X0fZxRNr5rMxvy8CRv9mqvnmNeNIo2DxcKvvY=
Subject key identifier: C0:D4:AA:A8:96:0E:02:78:CE:E7:80:5A:20:BC:39:A2:BB:79:7A:64
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01833B166030DF90B2736BE3E8C86A8CC859
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/wNSqqJYOAnjO54BaILw5ort5emQ.roa
Signing time: Wed 14 Sep 2022 08:21:05 +0000
ROA not before: Wed 14 Sep 2022 08:21:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9215
IP address blocks: 212.252.64.0/24 maxlen: 24
212.252.67.0/24 maxlen: 24
212.252.65.0/24 maxlen: 24
212.252.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3b:16:60:30:df:90:b2:73:6b:e3:e8:c8:6a:8c:c8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Sep 14 08:21:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0d4aaa8960e0278cee7805a20bc39a2bb797a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8c:92:68:75:ec:85:9c:8e:22:73:fe:08:cc:
5d:b4:7b:2f:d6:bb:58:b3:9e:5d:2a:2f:4f:9c:2a:
e0:e6:79:9b:35:1d:39:0b:6f:8d:ad:ea:67:0c:66:
15:64:b9:7d:2e:5c:0b:e6:01:fe:98:6b:6c:fb:05:
bc:a8:d3:66:52:3a:dc:48:82:2b:cc:9f:33:38:dd:
42:e7:e4:69:11:ef:11:1d:cf:63:81:0b:d1:5e:8e:
4b:6f:d6:7c:f6:c8:94:59:00:10:52:74:22:1b:60:
19:24:c9:ba:30:4a:c9:89:a7:12:56:35:71:06:e8:
85:2b:87:00:c5:38:f3:b2:7d:1f:8c:35:5f:eb:83:
73:4e:11:e3:e0:df:69:f8:fd:e4:e0:4e:6d:04:bd:
de:cd:5c:2f:79:81:6f:74:38:fd:f7:ff:1b:a0:7d:
33:7c:be:f6:a3:89:ef:12:c6:62:3f:4f:f5:ab:d7:
09:8d:c9:08:23:6f:6f:05:c0:66:ed:d5:95:36:cf:
b2:b3:bf:d7:33:f2:b8:11:55:e5:08:62:67:dc:c7:
a2:a7:0d:67:ca:dd:95:44:3a:02:d9:42:64:20:b7:
3a:1f:05:81:85:2c:79:77:ee:f6:28:96:55:66:2e:
d4:db:21:c7:56:ff:3f:5c:a1:2b:0f:0d:d5:00:0b:
6b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D4:AA:A8:96:0E:02:78:CE:E7:80:5A:20:BC:39:A2:BB:79:7A:64
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/wNSqqJYOAnjO54BaILw5ort5emQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.252.64.0/23
212.252.67.0/24
212.252.75.0/24
Signature Algorithm: sha256WithRSAEncryption
24:98:f7:1a:91:49:ac:91:6c:23:4a:ce:58:53:77:3f:6b:43:
12:a5:f8:2d:de:97:c9:31:24:68:70:8a:10:15:f1:37:8f:40:
df:13:93:e9:fc:73:0b:7d:2b:1b:e1:b5:e9:c6:45:d5:7f:c8:
69:a6:a3:8a:0a:1f:25:e4:80:61:c1:19:bc:61:2e:ce:5b:5d:
9b:67:5f:90:4f:c8:f7:21:af:73:5b:61:73:7b:ff:11:bd:7f:
c0:92:48:de:ad:6a:ee:5d:9f:0e:80:7d:b8:1d:53:99:38:8b:
3a:c4:9b:32:b2:d6:5f:71:4c:83:fb:1b:11:5a:63:38:b2:43:
2b:75:11:1c:a6:3e:8b:ea:3b:37:b8:1a:1f:a7:59:e7:ca:7e:
c3:b3:71:2a:1e:e5:96:72:7f:39:d7:c9:85:3b:db:f7:04:7a:
51:f6:e2:53:8b:05:c5:8e:de:5e:e7:a9:ea:19:50:35:b6:2b:
50:7b:41:26:2a:ea:8b:2f:0f:32:7a:43:28:47:28:14:e3:e1:
c9:8b:64:9d:90:30:f7:13:a8:0d:69:36:04:52:4f:a4:b2:b1:
50:67:5f:d8:31:77:20:f3:4e:04:07:14:de:8b:6c:18:70:b3:
a1:23:37:79:30:0a:fa:66:b0:7b:df:2c:65:6c:1e:b3:2d:5c:
8e:b8:19:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org