Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/n1lioWIRKQ75VIhJ_JZDt953aRk.roa
File: n1lioWIRKQ75VIhJ_JZDt953aRk.roa (raw, json)
Hash identifier: LltTWvpltX6ovijsYqLlaekLpAFcSf9OlB5tugE+YB0=
Subject key identifier: 9F:59:62:A1:62:11:29:0E:F9:54:88:49:FC:96:43:B7:DE:77:69:19
Certificate issuer: /CN=edc7cb00b3d414afa97c482eab5fdc76a1634b3d
Certificate serial: E56E
Authority key identifier: ED:C7:CB:00:B3:D4:14:AF:A9:7C:48:2E:AB:5F:DC:76:A1:63:4B:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7cfLALPUFK-pfEguq1_cdqFjSz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/n1lioWIRKQ75VIhJ_JZDt953aRk.roa
Signing time: Mon 21 Mar 2022 17:45:39 +0000
ROA not before: Mon 21 Mar 2022 17:45:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.23.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58734 (0xe56e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edc7cb00b3d414afa97c482eab5fdc76a1634b3d
Validity
Not Before: Mar 21 17:45:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f5962a16211290ef9548849fc9643b7de776919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:11:20:e4:96:dd:1e:90:1d:3a:a1:42:e6:
f4:3b:ce:dc:5d:a1:36:f8:cb:92:7b:b9:f5:12:b5:
ee:20:4c:07:41:45:98:da:fd:b6:60:c9:bc:28:74:
74:26:48:e4:21:aa:e6:cf:1c:49:f3:21:85:ec:03:
f7:7c:3a:90:dd:c1:36:8c:7f:e9:7b:76:bb:e2:0c:
89:95:a3:b0:73:e4:b5:58:4c:e3:ca:a3:fa:e8:35:
05:43:83:e6:87:ae:76:c6:00:e4:c1:6e:a8:73:16:
ee:a3:98:2f:e2:16:b3:db:4b:25:5c:31:5c:e1:46:
6c:d2:d7:e0:84:fc:c7:6b:e1:c1:03:18:d7:70:48:
c5:dd:7e:a6:f7:13:5d:1f:2b:88:22:e0:5d:eb:f5:
62:4b:c9:94:78:52:1a:20:99:79:47:69:13:9c:3d:
23:23:ff:5c:da:61:b3:2f:8d:36:ec:6f:df:e9:23:
cd:68:97:0d:35:63:c3:f8:b5:0c:5b:99:69:16:d6:
1a:dd:fb:c9:22:fd:1b:e2:7a:2e:e2:13:19:f8:a4:
1b:4c:a4:32:70:b1:fb:4a:0e:87:5b:33:db:80:18:
6c:77:70:c6:de:66:1b:32:53:b6:b1:42:e2:dc:b0:
a1:3e:49:07:d8:3c:df:b3:aa:d6:d5:e2:a5:3e:c9:
3c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:59:62:A1:62:11:29:0E:F9:54:88:49:FC:96:43:B7:DE:77:69:19
X509v3 Authority Key Identifier:
keyid:ED:C7:CB:00:B3:D4:14:AF:A9:7C:48:2E:AB:5F:DC:76:A1:63:4B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7cfLALPUFK-pfEguq1_cdqFjSz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/n1lioWIRKQ75VIhJ_JZDt953aRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/7cfLALPUFK-pfEguq1_cdqFjSz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.206.0/24
Signature Algorithm: sha256WithRSAEncryption
26:53:c9:98:46:4a:c4:c0:0e:ee:2f:fd:79:38:a1:04:aa:58:
12:69:e1:cc:c2:ee:99:8e:2c:a3:d4:67:56:26:0e:7a:62:18:
c2:f0:de:01:b4:11:d2:8f:34:ec:19:ab:5a:83:ea:f3:98:46:
87:68:63:01:a2:f3:12:21:0c:8f:d6:64:bb:6f:5c:84:f3:bd:
a3:ee:ba:db:ad:e2:29:e1:59:c6:af:c1:0d:23:a5:e1:fc:ee:
26:18:99:cd:22:04:be:e8:7f:b9:c3:13:e9:d8:b3:87:97:29:
b8:5f:77:b8:46:a6:6e:22:12:57:8b:ea:37:2d:a9:0b:99:a5:
77:b1:ab:11:67:30:ae:18:85:20:ca:fa:72:cd:4b:ef:86:9c:
b0:6c:b5:af:b2:31:61:1b:fc:11:a6:1b:3a:e1:db:3c:28:e4:
f4:92:03:ef:77:2b:35:06:d3:a1:84:ee:cd:6e:b2:2d:1a:ff:
9a:d4:e9:b5:9c:e6:0d:aa:99:56:e6:8d:6a:b2:fe:0c:d5:08:
47:fd:9b:1c:68:ba:a4:94:c5:3e:f8:93:f6:74:63:19:b5:84:
ed:cf:7f:f1:94:f7:23:71:41:ba:e3:5c:20:b2:f1:1a:c3:55:
4d:3a:99:88:78:3d:54:22:8e:fa:e1:e0:44:1e:a9:ce:69:40:
f7:fd:65:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-ams.rpki-client.org