Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/pnTD_UqDFk8PhV5yIWHXHHGt8Ng.roa
File: pnTD_UqDFk8PhV5yIWHXHHGt8Ng.roa (raw, json)
Hash identifier: l5br0eF685Zl4b++3FVzgSAGQCuI2delD7TM3mAgC+Y=
Subject key identifier: A6:74:C3:FD:4A:83:16:4F:0F:85:5E:72:21:61:D7:1C:71:AD:F0:D8
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 02CCD883
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/pnTD_UqDFk8PhV5yIWHXHHGt8Ng.roa
Signing time: Sun 13 Feb 2022 21:10:17 +0000
ROA not before: Sun 13 Feb 2022 21:10:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9312
IP address blocks: 212.81.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46979203 (0x2ccd883)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Feb 13 21:10:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a674c3fd4a83164f0f855e722161d71c71adf0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c6:90:ea:67:7e:b6:95:70:5f:59:bc:88:0b:
7a:70:4e:9b:71:46:43:10:73:14:da:db:ff:e3:bd:
23:ba:3a:e7:cd:22:df:e3:31:73:76:34:e8:7c:03:
eb:5b:32:b8:90:2b:f7:31:48:cb:d4:b9:83:a1:7f:
ec:1d:79:ab:6e:18:c4:77:cb:9e:88:14:c1:ff:e5:
98:5f:c0:da:43:20:f6:b6:1e:b1:b7:42:43:aa:39:
19:9e:c3:35:4e:27:74:f9:3d:f2:50:58:e0:eb:f7:
e4:c3:04:ea:4a:14:70:ea:c0:8c:55:90:53:31:5f:
11:30:23:7e:2f:e4:ea:f4:58:a3:94:7d:14:31:61:
44:d9:bd:8a:70:93:a6:19:94:25:3a:f3:f0:ad:d9:
8c:21:ad:64:4b:a8:8f:4d:35:6b:d7:65:0e:b5:eb:
ef:c9:ab:18:89:af:c0:5f:e8:d3:e9:87:36:8c:a0:
06:97:55:c4:38:3a:41:8f:88:ce:31:3b:ca:f6:cf:
a3:49:bb:73:6e:ec:38:e4:ac:29:2b:35:93:c3:06:
51:6e:bf:be:50:b5:c2:42:95:82:b2:f2:b1:1a:5f:
39:6e:ce:53:a4:c1:7e:07:df:6a:03:50:fd:00:23:
08:b4:53:87:eb:a8:ec:ff:73:4a:1a:c3:b7:43:b8:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:74:C3:FD:4A:83:16:4F:0F:85:5E:72:21:61:D7:1C:71:AD:F0:D8
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/pnTD_UqDFk8PhV5yIWHXHHGt8Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.81.44.0/22
Signature Algorithm: sha256WithRSAEncryption
75:1b:69:2b:56:00:2b:9f:ac:c1:b8:7c:58:f1:99:44:84:4e:
c1:9d:c2:c6:e5:29:eb:a6:3a:9f:16:b8:70:bb:60:05:e6:0f:
ec:fb:29:18:33:56:cd:5c:fa:a4:07:b4:79:fd:8b:fb:5d:9d:
7f:ad:c9:14:79:b0:da:8a:fc:28:59:f0:cc:80:64:b9:c4:6e:
68:d3:11:78:4c:86:3e:6c:e9:33:26:0c:f8:0d:59:a0:27:81:
92:32:a8:d5:48:c6:e2:66:78:e5:10:ea:c0:40:c2:6a:41:26:
ba:fc:b0:97:4e:db:e6:bd:ca:56:15:88:27:93:10:e6:5f:89:
0b:0d:4b:24:e8:d4:eb:7c:82:c2:c8:d7:33:c7:45:cd:5f:c7:
01:7b:64:eb:12:13:50:35:41:1f:e1:f4:7e:4a:33:29:c1:82:
18:3d:6d:f7:33:02:ab:57:90:41:e4:f4:0f:32:44:d1:a1:61:
dd:f4:1c:98:e2:17:2c:8e:95:db:14:82:34:cc:b1:c2:10:cf:
5d:bc:85:88:20:d6:ad:88:9a:91:d2:d9:14:5a:79:6d:dd:2c:
13:7a:50:74:04:94:f8:c4:e7:5b:ed:66:79:af:e8:60:39:c3:
31:cb:ee:45:e1:70:2f:dd:11:13:0c:84:63:a0:42:6f:fc:5d:
d5:e0:33:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:04 2024 by rpki-client on console-fra.rpki-client.org