Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/t9Gvu4fQQmiznT7rZ3Q4xS4_VJ4.roa
File: t9Gvu4fQQmiznT7rZ3Q4xS4_VJ4.roa (raw, json)
Hash identifier: 7EBchcnhV2t5ctuh/Q+wSQz1kh59/lM/SkwaBSPTUrc=
Subject key identifier: B7:D1:AF:BB:87:D0:42:68:B3:9D:3E:EB:67:74:38:C5:2E:3F:54:9E
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 03766D7F
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/t9Gvu4fQQmiznT7rZ3Q4xS4_VJ4.roa
Signing time: Thu 28 Apr 2022 17:54:07 +0000
ROA not before: Thu 28 Apr 2022 17:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8888
IP address blocks: 212.81.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58092927 (0x3766d7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Apr 28 17:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7d1afbb87d04268b39d3eeb677438c52e3f549e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4b:53:ba:cc:8c:ac:b0:13:ae:63:8a:65:c6:
08:92:ea:1f:cf:ca:f8:5c:63:28:9f:ef:3a:ab:16:
3e:76:7b:88:c8:7d:68:8d:6b:7f:ab:12:0b:c2:84:
d7:17:26:64:06:f6:de:8f:07:b8:ec:d4:c3:05:39:
44:fc:32:1d:95:68:0c:96:cd:c2:e9:93:02:41:b0:
d2:d4:17:e4:37:fa:67:4b:70:a1:e2:d6:e4:dd:c8:
cf:9f:36:d1:e6:2a:cd:06:af:72:e6:e9:72:9a:52:
06:30:72:6f:c9:15:ba:83:86:a4:be:82:93:90:fc:
73:7d:01:88:42:6c:ce:30:e5:bb:7a:37:f8:22:6e:
75:b5:10:84:2a:54:aa:b9:e1:3e:27:98:e1:05:e7:
87:0d:c4:4d:a5:01:8f:3f:9d:20:af:2a:9a:5d:fb:
42:a9:23:f0:55:aa:dc:5b:e0:81:a2:47:ee:83:d1:
5e:d6:5e:fb:42:c7:f7:04:b5:25:02:e8:0a:8f:67:
f1:37:b3:86:08:1a:49:5e:85:56:20:7e:9a:3b:66:
a3:81:bf:98:20:ee:3a:ed:09:b6:f5:08:0e:f3:b9:
24:6a:32:ca:69:3e:b6:3d:87:74:ce:6c:0e:64:a4:
43:bc:e1:b4:42:23:13:5f:5e:8c:31:3e:cf:6d:e4:
f4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D1:AF:BB:87:D0:42:68:B3:9D:3E:EB:67:74:38:C5:2E:3F:54:9E
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/t9Gvu4fQQmiznT7rZ3Q4xS4_VJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.81.44.0/22
Signature Algorithm: sha256WithRSAEncryption
39:e2:43:42:9e:7a:44:46:7f:fe:b7:23:79:d1:94:83:c8:4b:
b7:e4:ac:bf:5d:9d:10:30:91:15:c4:a1:2e:1b:8b:b9:1b:76:
b2:a7:2d:76:3a:4b:96:f4:51:c3:00:63:29:7f:7b:9a:ee:79:
fd:cb:08:28:57:99:56:71:dd:d9:bb:2c:d1:f0:3a:cc:3d:3b:
9d:a3:10:d0:bd:e7:a5:cf:77:e6:46:a3:2b:b4:b4:a5:5b:06:
71:43:f5:98:3a:d6:60:df:54:1f:00:98:ab:3c:8e:92:ef:7b:
c2:67:2c:ae:aa:61:e2:0a:99:18:95:88:ec:ac:87:5f:97:52:
0d:f9:09:3e:b1:2d:84:bb:56:65:d2:fb:1a:54:3a:9f:f4:2f:
0e:af:f8:2d:19:ff:56:80:8b:19:ee:04:6d:48:ab:22:39:9e:
71:52:b2:66:2e:aa:d2:2c:9b:16:73:60:1f:27:8e:50:2d:d8:
5f:5b:18:4b:68:5b:f5:f0:80:54:2c:13:c8:1e:b2:34:d4:5c:
20:97:d2:ed:7a:14:58:16:d7:01:77:dd:6d:de:e9:18:49:1d:
84:54:ec:1d:b3:15:e0:42:e3:19:3d:94:fa:6a:28:bd:92:9d:
19:83:43:57:8e:94:b7:46:8b:f6:1f:64:9e:12:d3:6c:a2:fd:
17:34:a6:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:04 2024 by rpki-client on console-fra.rpki-client.org