Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/tnAN5vK9vloO_Sw-fcp51Pk6GK0.roa
File: tnAN5vK9vloO_Sw-fcp51Pk6GK0.roa (raw, json)
Hash identifier: VokTno+aVBN7sS3O5G5YjtOye2KUS9tJM8dOSTmEu+8=
Subject key identifier: B6:70:0D:E6:F2:BD:BE:5A:0E:FD:2C:3E:7D:CA:79:D4:F9:3A:18:AD
Certificate issuer: /CN=92bd25b6b9f3cfe0785ffd4e5e5402833b4a4f8d
Certificate serial: 0B6CA0D8
Authority key identifier: 92:BD:25:B6:B9:F3:CF:E0:78:5F:FD:4E:5E:54:02:83:3B:4A:4F:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr0ltrnzz-B4X_1OXlQCgztKT40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/tnAN5vK9vloO_Sw-fcp51Pk6GK0.roa
Signing time: Mon 20 Jun 2022 09:32:44 +0000
ROA not before: Mon 20 Jun 2022 09:32:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209965
IP address blocks: 212.81.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191668440 (0xb6ca0d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bd25b6b9f3cfe0785ffd4e5e5402833b4a4f8d
Validity
Not Before: Jun 20 09:32:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6700de6f2bdbe5a0efd2c3e7dca79d4f93a18ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ef:9b:8a:56:de:57:47:30:29:0f:9a:31:ae:
47:12:31:ea:70:50:4f:d5:d6:88:5c:1b:8d:a0:02:
d5:4c:09:b8:85:83:1a:2c:48:8b:85:1d:22:1c:a4:
ae:fb:cd:55:20:f2:8c:ce:1c:89:b0:7e:d1:62:cd:
d9:80:cf:61:75:82:22:23:1c:54:95:84:cd:68:ed:
3c:9b:e0:b2:eb:64:1b:b3:d6:fe:06:52:0f:4e:92:
49:dc:7d:eb:37:c4:cb:e6:cb:ef:f6:82:1b:1f:3f:
7d:0b:7d:d1:6f:29:1d:1c:db:67:c8:65:9b:29:21:
e3:e7:2c:9c:20:fb:e7:f9:17:c1:73:c8:6d:33:f5:
f8:cb:ff:1e:2c:5d:01:ce:6a:e8:6b:d5:fc:b6:b1:
85:f2:3c:ab:5e:03:a6:a1:16:d9:90:f1:c7:15:25:
c5:d4:fd:c0:19:7d:19:d3:49:6a:3a:23:7e:11:e4:
ba:02:d5:42:ec:72:89:04:e5:eb:ab:6c:bd:3b:3b:
a1:32:56:2d:46:0e:a0:69:d4:34:eb:c8:9c:3d:e7:
07:94:11:d5:16:72:d7:36:f4:b2:fd:ad:84:74:aa:
1c:ef:0b:f0:41:92:90:9d:ff:31:eb:40:d7:0e:c2:
14:36:81:dd:8f:9e:1c:fc:fe:22:98:67:e2:5e:06:
6f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:70:0D:E6:F2:BD:BE:5A:0E:FD:2C:3E:7D:CA:79:D4:F9:3A:18:AD
X509v3 Authority Key Identifier:
keyid:92:BD:25:B6:B9:F3:CF:E0:78:5F:FD:4E:5E:54:02:83:3B:4A:4F:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr0ltrnzz-B4X_1OXlQCgztKT40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/tnAN5vK9vloO_Sw-fcp51Pk6GK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/02c68b-cedf-4317-82b8-2cd8c9139030/1/kr0ltrnzz-B4X_1OXlQCgztKT40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.81.48.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:c1:d6:46:65:8a:4f:56:fa:36:58:30:7a:f4:50:79:07:0f:
d0:3d:df:9f:20:bb:ac:7a:d5:49:20:8b:f3:6f:06:84:d7:f3:
ee:51:86:17:9d:2f:14:e6:e4:43:f7:19:d5:5b:8b:ef:68:94:
95:5b:2d:35:4b:d4:26:71:09:b5:7c:bb:3d:13:b9:bc:e5:77:
36:bc:15:1b:bf:75:45:01:9d:51:d4:18:d7:dc:c0:95:45:86:
9f:5c:96:7d:f6:c4:a4:1c:4f:a5:7e:62:a6:fd:f5:c8:ce:db:
22:4e:0e:5f:dd:8a:a0:97:14:b6:52:28:3f:8c:14:c0:1d:5c:
58:e2:54:47:70:bc:03:02:42:4f:30:cf:dc:b2:fb:54:38:a2:
fe:97:29:1e:65:8b:3a:e1:b7:53:82:82:0b:23:86:de:83:6f:
df:19:05:53:1e:78:44:9a:8a:21:dc:b0:94:ee:17:42:3f:e4:
28:d0:78:fd:8d:c5:dc:15:82:5d:37:7e:47:bc:c7:7c:96:d0:
31:20:db:74:74:34:0d:5b:93:33:c9:63:5f:ae:26:61:77:27:
98:71:48:b1:23:61:ac:97:3b:ab:93:8f:82:62:2a:09:8b:18:
8a:21:f6:fe:6b:97:ed:b2:1b:19:51:0b:00:42:75:3b:39:0a:
bd:7b:9e:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:03 2025 by rpki-client