Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/0b4629-39cc-4e6c-9e1c-991b7aee746c/1/nZ7oxGdYJ40Qx9o8LzW7_CtJfqI.roa
File: nZ7oxGdYJ40Qx9o8LzW7_CtJfqI.roa (raw, json)
Hash identifier: jRZungsV4GPFlhaG07UXuM+7xY99rsAyVgBXNhIj+ag=
Subject key identifier: 9D:9E:E8:C4:67:58:27:8D:10:C7:DA:3C:2F:35:BB:FC:2B:49:7E:A2
Certificate issuer: /CN=a92dc7bdbc9d097336de6243b550ab173375ea39
Certificate serial: 88FFC6
Authority key identifier: A9:2D:C7:BD:BC:9D:09:73:36:DE:62:43:B5:50:AB:17:33:75:EA:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qS3HvbydCXM23mJDtVCrFzN16jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/0b4629-39cc-4e6c-9e1c-991b7aee746c/1/nZ7oxGdYJ40Qx9o8LzW7_CtJfqI.roa
Signing time: Fri 03 Jun 2022 06:15:20 +0000
ROA not before: Fri 03 Jun 2022 06:15:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 212.39.33.0/24 maxlen: 24
212.39.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8978374 (0x88ffc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a92dc7bdbc9d097336de6243b550ab173375ea39
Validity
Not Before: Jun 3 06:15:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d9ee8c46758278d10c7da3c2f35bbfc2b497ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a8:40:35:ff:ee:01:cd:74:5f:4a:b3:b1:5b:
b7:87:0e:9f:73:cb:de:d5:ca:7b:19:69:e0:b5:7d:
16:fe:de:0c:f3:1a:73:95:a5:4d:8a:b5:65:25:35:
46:e4:3d:58:99:41:0d:de:e0:16:66:14:dd:29:0a:
e0:46:c3:3d:44:23:e3:9e:53:c4:e7:e3:86:56:b3:
77:f0:b9:00:de:1a:df:6a:c8:fd:39:d1:65:9d:d5:
3d:8c:da:42:2f:7f:d1:25:ec:3f:85:0e:91:4d:fb:
04:56:e4:77:5c:fe:1d:0e:d7:ce:dc:b7:b3:83:90:
6e:2a:59:9e:8c:8f:00:0a:83:10:65:2b:db:91:93:
f4:15:69:55:c8:f7:11:89:c2:c6:13:84:41:1b:58:
82:15:09:00:db:e9:1f:1a:5f:b4:d3:f8:ba:40:c3:
f3:52:ba:b3:0a:13:7c:fd:c8:2c:e0:57:90:05:10:
fb:68:9c:30:81:6b:ab:49:43:91:c3:b4:ee:c2:68:
27:1c:b0:66:c8:88:5f:b5:84:18:28:8a:f5:20:a0:
71:4a:e7:86:26:8f:c7:c2:c8:22:8d:bd:86:ee:aa:
be:dd:2f:07:57:bd:ec:5c:b6:e7:ca:67:7e:a7:da:
83:6f:8c:12:36:44:70:65:74:b6:6d:8c:46:cd:86:
43:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:9E:E8:C4:67:58:27:8D:10:C7:DA:3C:2F:35:BB:FC:2B:49:7E:A2
X509v3 Authority Key Identifier:
keyid:A9:2D:C7:BD:BC:9D:09:73:36:DE:62:43:B5:50:AB:17:33:75:EA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qS3HvbydCXM23mJDtVCrFzN16jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/0b4629-39cc-4e6c-9e1c-991b7aee746c/1/nZ7oxGdYJ40Qx9o8LzW7_CtJfqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/0b4629-39cc-4e6c-9e1c-991b7aee746c/1/qS3HvbydCXM23mJDtVCrFzN16jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.39.33.0/24
212.39.42.0/24
Signature Algorithm: sha256WithRSAEncryption
24:a0:44:df:f3:9f:65:b6:d9:a3:b2:bb:48:3f:44:36:5f:ec:
3b:85:8c:fc:88:6c:b9:6f:05:f1:d2:8d:1e:2a:b2:59:37:6b:
9f:05:2d:70:db:9f:f7:9b:15:f7:c5:cc:b2:92:df:d3:b4:c9:
9e:a7:61:7e:2e:a0:f6:ae:cf:d5:df:ff:7b:93:0e:d2:fe:7e:
3a:c0:d5:d8:46:e0:71:f9:f3:cb:34:05:cd:47:59:77:f4:5f:
3e:1d:81:ab:4c:67:20:05:a3:d4:5d:7a:17:50:d7:24:db:ff:
f3:79:82:60:69:34:a1:e8:43:76:4b:89:e2:74:35:ee:68:e4:
a5:b8:37:f4:c7:0b:5a:c5:42:8b:56:1f:b4:52:9b:8c:29:fb:
22:2d:2b:b3:82:4b:3b:02:f8:e9:67:20:ed:55:ed:69:0e:65:
b1:a5:ed:65:de:01:9a:a5:06:34:8d:3f:61:ac:f8:4c:45:0b:
8a:6c:23:b6:86:cf:41:f3:81:79:2b:26:d7:3f:1a:de:0d:ae:
94:ca:62:e1:1c:f4:60:fa:1c:94:25:e2:7b:a5:e8:38:6c:4f:
53:52:a9:66:9c:14:8a:d8:e8:4c:f4:bf:a3:c9:7a:ab:c8:3c:
a1:d3:39:29:5e:4c:48:60:c0:5a:7e:ce:2c:12:13:78:b3:f6:
dd:b3:08:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:00 2024 by rpki-client on console-ams.rpki-client.org