Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/fbc141-99fc-4f83-b585-0fe6f55db3f6/1/eKFQKnpiZ-a_47tRwclzpZ22Jys.roa
File: eKFQKnpiZ-a_47tRwclzpZ22Jys.roa (raw, json)
Hash identifier: 6DUGpKWAaAxYbSAW+qZV7lzik0Jm3BVwOo/s3oslD+U=
Subject key identifier: 78:A1:50:2A:7A:62:67:E6:BF:E3:BB:51:C1:C9:73:A5:9D:B6:27:2B
Certificate issuer: /CN=029e98336f6a6cc9dbcf1ecb4895580f094e3e2b
Certificate serial: 891354
Authority key identifier: 02:9E:98:33:6F:6A:6C:C9:DB:CF:1E:CB:48:95:58:0F:09:4E:3E:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ap6YM29qbMnbzx7LSJVYDwlOPis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/fbc141-99fc-4f83-b585-0fe6f55db3f6/1/eKFQKnpiZ-a_47tRwclzpZ22Jys.roa
Signing time: Tue 28 Jun 2022 10:29:02 +0000
ROA not before: Tue 28 Jun 2022 10:29:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8697
IP address blocks: 212.34.0.0/19 maxlen: 24
213.139.32.0/19 maxlen: 24
2a00:18d8:2::/48 maxlen: 48
2a00:18d8::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8983380 (0x891354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=029e98336f6a6cc9dbcf1ecb4895580f094e3e2b
Validity
Not Before: Jun 28 10:29:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78a1502a7a6267e6bfe3bb51c1c973a59db6272b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:76:2b:a2:f4:5d:d3:73:77:92:d4:9b:ba:e5:
d7:b9:0c:e5:8d:1e:76:f7:e1:45:ca:94:dc:67:8a:
fa:d8:ad:58:73:23:67:71:40:4c:3e:bb:60:b8:8f:
8b:04:49:a5:ea:dc:33:da:b0:3f:b2:0d:c1:0c:a8:
1c:a5:52:16:d1:47:77:eb:f1:3e:20:dc:66:6a:d2:
5f:c3:56:d7:7c:d1:6b:4c:d4:3b:11:e9:57:3a:0b:
f9:83:63:df:78:cc:c8:34:08:63:c3:ea:3b:20:c4:
0b:38:9e:fd:0e:76:d4:65:72:b2:f7:41:3a:36:b7:
11:d3:95:2b:d3:af:db:a9:b0:87:24:f5:46:c8:16:
16:3a:d3:df:de:82:41:83:38:3e:cc:69:e9:e5:f5:
48:10:f9:a1:ac:4a:b9:6d:18:98:39:bb:07:73:bb:
17:77:e5:68:b4:c9:c9:10:8c:60:1e:d7:01:aa:d0:
a1:24:33:7c:51:2b:7a:bf:08:fd:03:87:07:99:38:
78:95:9a:94:e4:d2:c5:45:ba:a7:da:45:95:19:91:
d1:81:ce:32:e1:8a:0c:29:5f:4a:2f:37:9e:bc:ff:
5a:ba:e0:9e:14:13:be:1e:e8:9e:e0:05:ab:9f:72:
5f:a3:6e:a0:ca:df:4c:62:8a:4d:b7:d0:2d:2c:90:
3c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A1:50:2A:7A:62:67:E6:BF:E3:BB:51:C1:C9:73:A5:9D:B6:27:2B
X509v3 Authority Key Identifier:
keyid:02:9E:98:33:6F:6A:6C:C9:DB:CF:1E:CB:48:95:58:0F:09:4E:3E:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ap6YM29qbMnbzx7LSJVYDwlOPis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/fbc141-99fc-4f83-b585-0fe6f55db3f6/1/eKFQKnpiZ-a_47tRwclzpZ22Jys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/fbc141-99fc-4f83-b585-0fe6f55db3f6/1/Ap6YM29qbMnbzx7LSJVYDwlOPis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.34.0.0/19
213.139.32.0/19
IPv6:
2a00:18d8::/32
Signature Algorithm: sha256WithRSAEncryption
bd:e7:77:e6:ea:be:75:e1:2f:d2:51:4f:6d:8e:00:df:69:d5:
ee:e4:8a:d9:ed:d0:cf:b3:4d:f6:3c:e2:7d:40:3e:0c:93:51:
65:dc:77:71:ca:7d:fa:b5:28:a2:00:48:14:58:b7:45:7f:78:
25:0c:3b:15:1c:c1:0c:0d:fc:b8:ae:78:0b:44:b1:a6:d1:bb:
8d:8b:f6:c8:8e:c8:28:bd:73:b3:b7:16:08:c1:b3:01:08:4e:
ca:ef:d4:e8:f3:37:0c:82:e8:c9:b9:3d:27:bb:84:79:91:63:
eb:6d:90:95:8f:df:0e:b5:19:4f:ec:f2:2e:e2:c7:88:49:a4:
61:b1:8e:9a:6e:43:b4:d2:6d:94:ba:2f:e0:28:de:8b:54:51:
45:79:d0:3e:fe:5a:14:01:e4:87:92:56:d1:93:55:75:1c:ff:
f6:c1:b4:9c:3c:83:d6:68:dc:be:d4:fc:5f:b6:5d:a4:cf:2e:
1b:b9:6d:e3:71:a4:99:0a:9d:26:83:e0:4d:4b:bb:04:56:ea:
88:39:7b:72:03:f2:fa:7e:aa:e6:36:d3:16:0d:0a:b8:fc:dc:
7e:da:53:bc:4d:7a:d6:b3:8c:a1:f0:f4:12:21:73:38:cd:58:
36:96:af:f3:bb:21:0f:0a:24:d2:76:c1:b5:7a:bc:3f:9e:c2:
6f:c4:e5:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:08 2023 by rpki-client on console-ams.rpki-client.org