Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/e9ZulNEXkEq3Q3kGM7E8K3lCGQ4.roa
File: e9ZulNEXkEq3Q3kGM7E8K3lCGQ4.roa (raw, json)
Hash identifier: vguthQ3XZNcVQiGq9VvA1rcBU+mLQcL0IjtyTrDZTv4=
Subject key identifier: 7B:D6:6E:94:D1:17:90:4A:B7:43:79:06:33:B1:3C:2B:79:42:19:0E
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 14306EA3
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/e9ZulNEXkEq3Q3kGM7E8K3lCGQ4.roa
Signing time: Tue 15 Mar 2022 22:35:05 +0000
ROA not before: Tue 15 Mar 2022 22:35:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 212.87.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338718371 (0x14306ea3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 15 22:35:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bd66e94d117904ab743790633b13c2b7942190e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6a:ca:ff:0b:fe:eb:f5:5a:ef:33:15:61:b8:
3d:bc:4f:5c:c8:fa:e3:fe:16:73:ed:5b:1b:fa:f9:
94:d9:d9:f8:1c:1e:b4:f2:2f:2d:dd:fb:30:d1:bf:
b4:6a:93:fa:7a:19:c0:33:97:a9:0a:04:15:98:fd:
be:ba:7d:01:d8:6f:44:fe:1f:b3:bd:ce:f9:a0:2b:
d0:28:5e:86:c4:c3:e6:ff:49:8b:8b:75:69:f3:0e:
58:35:12:ae:13:6f:fc:bc:78:65:e6:85:92:bf:bb:
2e:6f:6e:cd:da:45:72:e5:31:c5:cf:04:d0:74:14:
89:83:96:c6:19:70:78:42:97:9d:9b:8d:2c:e7:03:
66:81:e5:30:a5:c1:52:ef:d1:f1:43:71:aa:9c:24:
58:0d:65:ba:a6:a5:ca:7f:87:fd:6b:4b:b6:30:cf:
9d:dc:fd:d9:c1:d3:bf:60:08:36:c3:ad:d9:62:9f:
35:c3:f4:c8:d0:83:96:dc:69:c6:30:86:53:fd:fe:
4e:97:12:59:b4:c4:56:4a:69:17:88:ea:b8:a2:59:
7f:93:03:1b:67:0d:5e:b3:07:2d:1c:b2:c8:8a:2a:
87:2b:49:7f:a4:5c:8f:4b:25:77:92:40:11:e9:92:
24:04:1b:36:83:55:91:89:1f:9f:95:25:30:5d:25:
3c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D6:6E:94:D1:17:90:4A:B7:43:79:06:33:B1:3C:2B:79:42:19:0E
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/e9ZulNEXkEq3Q3kGM7E8K3lCGQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.192.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:2d:c6:7d:ad:8b:65:77:ac:5c:63:c7:e8:06:5e:bf:43:17:
53:79:cd:7b:25:91:3e:00:77:f3:37:1d:5f:16:03:5c:a2:78:
c6:e8:55:df:0a:7d:3d:a8:f8:55:f3:23:ad:a1:d6:41:91:73:
3a:75:63:4c:eb:4e:cd:7a:0b:9b:1f:ef:44:60:66:7f:7a:a8:
6a:c7:80:6c:31:49:f3:21:5c:4a:5f:8b:f3:e4:fd:a4:6a:77:
bd:11:c9:10:58:bc:93:ce:0c:18:d1:29:ee:2a:b1:be:e3:1a:
e7:39:65:9a:b4:fd:ba:81:70:8e:50:fd:02:fc:60:e8:30:36:
d7:30:11:eb:ce:b2:ea:2c:33:46:f7:fb:34:f3:90:0f:4a:81:
85:ae:3e:c5:b6:14:26:03:63:78:d5:a2:be:dc:c3:5b:1a:1f:
51:a6:c6:25:a4:9b:bf:0d:c1:5a:11:a4:72:3a:10:ba:8f:d2:
61:a1:82:cc:fe:a3:ed:6e:21:2a:50:dd:59:45:2e:b0:cf:fc:
ad:50:16:6c:42:18:64:48:fe:51:cd:30:a6:ad:cf:48:2e:6e:
65:f9:f0:62:cc:d3:2f:4c:17:84:12:dd:8d:25:f0:27:d3:e2:
68:b5:6f:b7:74:fc:1e:49:96:e9:0b:33:20:f4:93:47:16:f8:
7a:58:0b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org