Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/zObsOeny9fmyVjTSPJS2KgTLMIE.roa
File: zObsOeny9fmyVjTSPJS2KgTLMIE.roa (raw, json)
Hash identifier: dJWLuii+G9Q7am1mzGgvk0Cr/MXt6+CkYUD7X9enkLA=
Subject key identifier: CC:E6:EC:39:E9:F2:F5:F9:B2:56:34:D2:3C:94:B6:2A:04:CB:30:81
Certificate issuer: /CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Certificate serial: 08F7A96B
Authority key identifier: EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/zObsOeny9fmyVjTSPJS2KgTLMIE.roa
Signing time: Sat 01 Jan 2022 08:05:26 +0000
ROA not before: Sat 01 Jan 2022 08:05:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212184
IP address blocks: 212.21.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150448491 (0x8f7a96b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebec9030c70a3d4192d59c28dcc8d547694340b3
Validity
Not Before: Jan 1 08:05:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cce6ec39e9f2f5f9b25634d23c94b62a04cb3081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:da:ec:07:2c:ca:9a:09:20:50:57:85:f4:6f:
ee:46:c4:aa:58:d0:ea:3b:7d:2f:15:5e:75:56:3e:
5f:97:1f:cb:ce:68:be:49:4c:6f:df:3a:0f:52:2b:
80:84:8c:c7:da:e0:47:15:5c:ac:6b:c4:04:3c:36:
ed:67:1d:76:e1:4a:06:22:bb:8e:fc:c7:e8:14:3e:
d6:42:ea:99:da:1e:07:1c:b9:69:40:91:21:7d:81:
8c:21:60:f4:ce:64:91:2a:dc:89:2a:9c:eb:44:2c:
7b:e1:73:bd:ff:51:08:04:98:b1:0d:60:68:65:1a:
62:ac:15:05:bf:cb:f1:f4:c3:37:af:40:8d:8b:d1:
e4:13:8a:0e:b2:51:65:42:a3:70:4c:c1:e9:dc:63:
09:75:bd:89:42:f5:b6:87:a1:a0:9e:97:de:51:fe:
e9:ed:31:03:af:ae:c2:dc:77:ce:bf:05:42:0b:17:
e5:c1:b0:da:db:c6:2b:16:f6:26:d8:7e:08:dc:5a:
d1:36:52:85:fc:82:2e:bf:d2:ee:e3:67:7b:22:e3:
a2:16:8a:62:8f:41:1e:85:b2:02:dd:9e:92:6b:d7:
75:52:6e:81:0c:2b:b4:5e:1c:b4:e7:82:1f:9c:3b:
cc:f7:f3:e9:b5:af:7c:eb:77:7f:0e:6c:76:71:e6:
b8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E6:EC:39:E9:F2:F5:F9:B2:56:34:D2:3C:94:B6:2A:04:CB:30:81
X509v3 Authority Key Identifier:
keyid:EB:EC:90:30:C7:0A:3D:41:92:D5:9C:28:DC:C8:D5:47:69:43:40:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/zObsOeny9fmyVjTSPJS2KgTLMIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/372b87-95f4-4c98-a6f4-4a6f8683265c/1/6-yQMMcKPUGS1Zwo3MjVR2lDQLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.21.135.0/24
Signature Algorithm: sha256WithRSAEncryption
99:3d:a4:84:5e:6e:e2:8e:0c:a3:14:2a:82:40:78:a7:fa:a7:
ab:33:09:5e:88:da:ee:b6:e2:ce:62:2c:b2:14:b5:39:e7:c1:
71:2c:fe:23:a5:e5:57:62:ff:70:e2:63:87:5e:e4:29:f9:f4:
61:12:13:77:26:91:cd:d3:c0:e6:1f:a2:83:4c:e4:bd:e6:50:
f1:b4:fd:12:7a:be:64:e3:97:d2:ce:05:c1:25:8c:d1:a0:d8:
04:3b:99:d7:6f:7d:bc:45:dc:0e:32:2d:07:61:b9:08:60:21:
80:3b:f5:4b:51:a1:e5:73:d4:80:89:b5:2d:50:38:e7:41:60:
b4:a2:9d:b9:b2:b8:88:f2:42:98:e8:75:bc:9d:ad:6e:db:9f:
a4:8f:47:a4:54:e4:b0:7c:76:25:c9:ab:1b:5e:0a:cb:06:3d:
10:49:0e:4b:11:e6:ad:f3:6d:c2:32:f4:70:78:71:6a:4a:92:
f0:bd:e3:f6:cd:7f:42:cb:4c:29:3e:27:9e:c3:ba:57:95:d4:
be:e9:39:80:77:f1:c5:02:9c:d5:c7:ec:8e:18:12:0e:60:3c:
ac:37:46:f2:6b:a3:f7:ac:ba:4f:bd:68:50:0a:ae:5d:57:ed:
10:9c:93:c9:21:82:be:84:99:3d:f9:2b:eb:b8:85:61:a3:6b:
20:96:f4:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:44 2023 by rpki-client on console-fra.rpki-client.org