Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/sHadnze__kTjojB5qfbqWOsYNqI.roa
File: sHadnze__kTjojB5qfbqWOsYNqI.roa (raw, json)
Hash identifier: AtjKLJ/4j7kpsxy1rcs+gRNUzCitJ4daKACvfwN89vE=
Subject key identifier: B0:76:9D:9F:37:BF:FE:44:E3:A2:30:79:A9:F6:EA:58:EB:18:36:A2
Certificate issuer: /CN=92bd25b6b9f3cfe0785ffd4e5e5402833b4a4f8d
Certificate serial: 09E8E8C4
Authority key identifier: 92:BD:25:B6:B9:F3:CF:E0:78:5F:FD:4E:5E:54:02:83:3B:4A:4F:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr0ltrnzz-B4X_1OXlQCgztKT40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/sHadnze__kTjojB5qfbqWOsYNqI.roa
Signing time: Sat 01 Jan 2022 14:57:30 +0000
ROA not before: Sat 01 Jan 2022 14:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50304
IP address blocks: 212.81.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166258884 (0x9e8e8c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bd25b6b9f3cfe0785ffd4e5e5402833b4a4f8d
Validity
Not Before: Jan 1 14:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0769d9f37bffe44e3a23079a9f6ea58eb1836a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7c:bc:b9:35:76:98:5f:bd:f8:72:f2:e5:5a:
7a:39:2c:cf:9d:e9:6c:81:59:20:aa:53:eb:0e:be:
b2:76:b0:30:70:3b:13:e2:b8:a1:7c:c8:20:1f:c4:
0e:e6:50:93:3f:44:b4:ad:cb:80:e7:fb:57:89:4d:
a0:23:2a:e2:bd:d8:01:bf:39:d6:65:e1:76:46:cd:
6b:9b:31:96:12:eb:55:52:36:81:0a:50:47:7d:6f:
6c:c9:98:f4:e0:b5:69:e9:44:72:52:b7:47:37:1f:
f3:5d:e1:0a:c1:a8:a9:7e:bb:bb:bb:69:f5:84:35:
56:34:0e:d8:f4:7a:da:74:69:39:c1:b6:47:38:e2:
88:bd:4c:88:dc:e1:0b:de:9c:fc:16:cb:b1:0a:b4:
bc:38:df:a7:1c:52:24:00:40:17:51:b8:a3:97:1b:
89:91:41:6c:0f:42:4e:3f:a0:aa:52:c1:d7:ec:fb:
29:86:67:3e:49:c3:1f:0e:72:de:22:fa:9e:5f:01:
eb:d8:42:eb:ef:16:f3:1f:68:6f:fa:a0:de:f7:b0:
0c:b4:2e:3a:93:3e:0c:89:14:54:41:7c:c9:50:8b:
06:ee:4b:37:90:b8:dd:b0:65:4c:ac:7f:78:f5:9a:
d7:0d:bb:88:aa:03:3c:71:60:2e:2d:cd:c9:9b:5d:
cd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:76:9D:9F:37:BF:FE:44:E3:A2:30:79:A9:F6:EA:58:EB:18:36:A2
X509v3 Authority Key Identifier:
keyid:92:BD:25:B6:B9:F3:CF:E0:78:5F:FD:4E:5E:54:02:83:3B:4A:4F:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr0ltrnzz-B4X_1OXlQCgztKT40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/sHadnze__kTjojB5qfbqWOsYNqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/kr0ltrnzz-B4X_1OXlQCgztKT40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.81.48.0/22
Signature Algorithm: sha256WithRSAEncryption
53:16:03:37:7a:0d:6c:68:6c:23:7e:54:63:33:69:36:08:f6:
e2:a0:9c:e7:3d:75:91:e1:39:2b:db:0e:d2:e8:2f:ce:20:18:
8a:83:3c:c0:d1:11:e5:92:b4:a9:5d:5d:2b:30:8c:c1:9e:7e:
d2:02:d7:90:27:6e:b5:1f:dd:b5:8a:e5:1d:ae:25:b4:6d:74:
d7:2f:5a:bf:da:05:b6:af:6f:b5:d9:40:ef:1e:0c:20:e4:3a:
80:2f:fd:22:7a:e6:51:b5:43:66:ba:08:e4:83:ba:b2:8c:30:
e9:cb:ce:67:65:4c:42:fe:22:14:4f:6d:dd:f6:ae:a3:b9:d2:
67:ed:15:91:a8:a3:82:b5:57:fd:36:ee:9b:b6:11:48:d1:e2:
bf:b7:e3:ec:ca:38:8e:90:11:47:33:27:c1:9d:91:b3:09:25:
9e:ce:21:58:1a:d4:70:95:b7:98:46:b6:d6:99:dc:61:a2:55:
c4:14:22:24:de:91:1c:ab:21:ef:9e:09:f5:25:33:b1:63:1f:
ac:04:c8:cb:9b:41:e1:76:ca:fe:fc:30:29:31:dc:86:65:44:
0f:d1:91:a0:6f:d6:0f:2e:0d:ec:ef:8d:79:a8:91:87:70:db:
17:59:19:53:5f:8d:85:f4:b9:64:39:07:5b:1b:33:16:d6:3f:
60:0e:2f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:40 2025 by rpki-client