Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/CNzh4kmHAbOFnqdFTyoj_tRsX4Q.roa
File: CNzh4kmHAbOFnqdFTyoj_tRsX4Q.roa (raw, json)
Hash identifier: DRjfDnclc/AXS2QBGXzDgzFEbpc/36IT+3fNXd0LzvM=
Subject key identifier: 08:DC:E1:E2:49:87:01:B3:85:9E:A7:45:4F:2A:23:FE:D4:6C:5F:84
Certificate issuer: /CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Certificate serial: 0182F80079E76E55A94506E00BF99D9F59E0
Authority key identifier: 82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/CNzh4kmHAbOFnqdFTyoj_tRsX4Q.roa
Signing time: Thu 01 Sep 2022 07:42:36 +0000
ROA not before: Thu 01 Sep 2022 07:42:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207551
IP address blocks: 212.6.53.0/24 maxlen: 24
2a10:2080::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:00:79:e7:6e:55:a9:45:06:e0:0b:f9:9d:9f:59:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Validity
Not Before: Sep 1 07:42:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08dce1e2498701b3859ea7454f2a23fed46c5f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:a4:02:50:85:f6:da:d1:7c:12:75:89:3b:
56:a0:c8:95:20:13:67:0b:23:a1:82:9d:df:99:79:
b0:82:34:f6:8f:d4:b7:f8:35:c7:3f:3b:19:90:b4:
d7:5f:e5:0e:ff:e4:84:e1:26:e1:3c:bd:0b:3d:5c:
5b:99:61:3a:d7:11:65:bb:64:81:f2:7a:c4:c6:4c:
09:8a:54:f4:4e:a4:57:75:89:d0:15:d3:17:0a:68:
10:f1:1e:4a:48:35:56:94:53:64:4d:32:70:95:55:
da:32:6d:31:ea:39:b3:cb:6d:0e:75:03:f2:46:c7:
f0:92:ca:94:c8:7f:b2:a2:4d:99:9b:97:94:b8:9c:
35:11:d5:8f:6a:e2:02:f3:c5:85:16:85:eb:0f:ae:
01:af:be:b1:f1:02:75:bf:90:50:68:54:5c:a9:fa:
e9:d6:88:fd:e1:a3:17:d0:e7:83:f2:04:c3:de:e8:
b7:24:8a:f1:3d:2a:37:35:6b:ee:00:fd:cf:62:ce:
25:7e:84:27:ea:89:9c:68:bf:52:03:62:0f:c3:5d:
5f:19:3a:61:c5:7a:64:bd:03:59:0c:a0:0d:e6:1a:
f9:ea:2a:68:7c:47:96:84:a0:23:dd:0c:18:2f:3e:
4a:90:46:ea:ad:b7:5e:c7:76:6f:fd:20:d9:b7:af:
64:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:DC:E1:E2:49:87:01:B3:85:9E:A7:45:4F:2A:23:FE:D4:6C:5F:84
X509v3 Authority Key Identifier:
keyid:82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/CNzh4kmHAbOFnqdFTyoj_tRsX4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.53.0/24
IPv6:
2a10:2080::/29
Signature Algorithm: sha256WithRSAEncryption
0a:a3:04:a5:50:80:a0:e6:6b:a5:ab:6e:5b:a1:61:42:71:23:
f7:b3:e8:cd:06:6d:cd:4a:1b:42:46:5a:90:08:29:bd:a3:b2:
a8:a8:37:b3:d8:e0:46:cd:28:20:b5:19:8c:1f:0f:a7:9c:67:
54:13:9a:f6:a0:f3:86:bd:a8:c2:1a:a7:9d:13:07:5b:34:c5:
21:32:34:72:80:9b:2e:02:9e:29:94:dc:75:6b:d2:f2:a3:17:
77:85:a7:6e:f7:69:3d:9c:35:0d:48:a9:06:85:6f:7e:81:d7:
12:52:e5:71:bc:ca:e9:32:7a:a4:b8:a0:0c:f6:09:41:c2:71:
75:f3:73:97:94:e4:e3:9f:2a:c5:24:91:ec:4e:e6:06:92:3c:
16:89:bc:cf:d9:9d:39:bd:ac:45:1d:36:52:27:4c:7f:13:ae:
e9:e3:db:3c:6f:cc:42:11:77:03:fa:e4:59:23:3c:2e:63:7c:
9e:bb:ee:fa:47:53:bd:58:63:9c:84:67:39:46:77:99:9e:30:
5c:6e:f9:f4:d3:0a:ed:0e:eb:9c:46:6f:11:05:7e:92:65:98:
b0:1c:11:68:3a:5d:fd:d3:9b:42:1d:9f:ee:23:b2:6d:d3:a0:
50:83:d7:ca:90:26:38:c4:a0:ff:41:10:58:94:0b:4d:88:c5:
f1:63:ac:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:33 2024 by rpki-client on console-ams.rpki-client.org