Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/0b4629-39cc-4e6c-9e1c-991b7aee746c/1/gkeKvmWqD0kuNFAm_NqHjb2Ac6g.roa
File: gkeKvmWqD0kuNFAm_NqHjb2Ac6g.roa (raw, json)
Hash identifier: yXxFF5byQWrZEozBt+q6FMNJjAKoGr5G+Cd/bO3Rbd4=
Subject key identifier: 82:47:8A:BE:65:AA:0F:49:2E:34:50:26:FC:DA:87:8D:BD:80:73:A8
Certificate issuer: /CN=a92dc7bdbc9d097336de6243b550ab173375ea39
Certificate serial: E452
Authority key identifier: A9:2D:C7:BD:BC:9D:09:73:36:DE:62:43:B5:50:AB:17:33:75:EA:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qS3HvbydCXM23mJDtVCrFzN16jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/0b4629-39cc-4e6c-9e1c-991b7aee746c/1/gkeKvmWqD0kuNFAm_NqHjb2Ac6g.roa
Signing time: Wed 06 Apr 2022 06:59:19 +0000
ROA not before: Wed 06 Apr 2022 06:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212632
IP address blocks: 212.39.32.0/24 maxlen: 24
212.39.34.0/24 maxlen: 24
212.39.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58450 (0xe452)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a92dc7bdbc9d097336de6243b550ab173375ea39
Validity
Not Before: Apr 6 06:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82478abe65aa0f492e345026fcda878dbd8073a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f1:96:00:5f:0c:f9:34:8e:06:49:66:73:a8:
8e:ee:eb:11:d2:be:24:c7:4e:5f:fd:61:7f:70:ef:
7c:07:1b:22:58:27:6e:6f:82:69:e1:fd:0d:cc:7b:
f8:b4:69:3d:c0:85:f2:22:0a:6c:d2:ac:bf:c3:20:
94:10:6d:6f:1a:6d:a2:f9:d7:ef:1c:53:10:ad:62:
c6:a5:ab:7b:d5:04:2b:e4:e7:43:b0:ed:74:58:8d:
3e:b1:4b:03:81:bc:2d:43:0d:a5:28:d0:54:ba:d4:
77:f0:38:f5:26:fb:42:e8:b7:82:c7:95:06:47:13:
d5:b4:9c:12:2b:fc:10:c4:08:46:24:a9:66:e1:55:
31:d2:45:f8:cd:5a:53:8a:1f:cb:eb:d0:8e:d2:ef:
c9:2a:9b:0f:ba:fb:cc:4b:cc:36:ab:00:a4:e0:05:
98:f1:98:6c:7d:89:3c:52:a6:29:26:de:aa:0c:00:
c4:ca:35:78:70:0f:40:11:e4:07:f7:89:51:7c:1f:
13:c1:72:b1:45:f1:d2:0f:09:04:e5:0f:c9:54:23:
47:c1:5d:07:55:56:0f:92:c8:81:41:5b:58:4a:7e:
9b:1f:85:ce:24:86:21:87:ec:62:35:21:ef:98:b5:
87:9d:f5:13:58:03:ae:e9:7d:7b:23:63:65:25:e9:
54:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:47:8A:BE:65:AA:0F:49:2E:34:50:26:FC:DA:87:8D:BD:80:73:A8
X509v3 Authority Key Identifier:
keyid:A9:2D:C7:BD:BC:9D:09:73:36:DE:62:43:B5:50:AB:17:33:75:EA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qS3HvbydCXM23mJDtVCrFzN16jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/0b4629-39cc-4e6c-9e1c-991b7aee746c/1/gkeKvmWqD0kuNFAm_NqHjb2Ac6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/0b4629-39cc-4e6c-9e1c-991b7aee746c/1/qS3HvbydCXM23mJDtVCrFzN16jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.39.32.0/24
212.39.34.0/24
212.39.63.0/24
Signature Algorithm: sha256WithRSAEncryption
62:37:59:e9:a6:be:a3:21:53:04:ec:49:42:4d:0a:14:52:15:
49:5c:bc:f1:67:96:8d:bc:0e:65:7c:0d:25:c7:95:9e:4e:5a:
fd:15:55:54:54:99:f0:54:6c:63:c3:5f:b6:b2:fe:e4:4d:6b:
a9:e7:48:06:60:0a:90:db:aa:7b:31:80:71:e8:bb:a7:c0:8d:
c4:35:c5:a2:4d:83:4b:16:92:6e:c5:df:cd:97:38:e4:e8:fb:
ff:27:3e:14:6f:60:0a:4f:cd:05:b4:5f:cf:e5:38:b6:53:94:
7b:a7:3f:84:e6:c3:f0:a1:40:68:c5:3c:18:64:4b:1c:b6:4d:
d8:82:61:89:81:0d:dd:ed:cc:11:bc:26:4d:ca:f4:27:4b:40:
eb:5a:77:6a:8c:0d:a6:1a:ef:2e:5e:74:86:d4:8d:96:ab:cd:
13:7e:c1:97:9f:d8:23:6c:96:72:01:16:c4:73:56:0d:48:9b:
18:c2:3f:43:b3:b3:85:08:a2:63:2f:d4:80:c1:10:67:07:21:
27:5a:d4:94:89:9c:5a:ff:51:f2:d2:7c:6f:2e:47:f3:f1:21:
18:5f:b0:33:bf:24:80:3a:53:e0:77:3c:58:7c:d1:1e:05:9b:
5f:8a:4e:52:24:49:cf:0d:28:ed:60:06:73:39:9f:c1:bb:b2:
c4:37:c4:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:03 2024 by rpki-client on console-fra.rpki-client.org