Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/Jsw0tspbTXVSazMLKw5CL7Hkark.roa
File: Jsw0tspbTXVSazMLKw5CL7Hkark.roa (raw, json)
Hash identifier: 0gbuWBKtvDx7w/X5FOtUzeYwzVbdXGHcUpT/UsRwMys=
Subject key identifier: 26:CC:34:B6:CA:5B:4D:75:52:6B:33:0B:2B:0E:42:2F:B1:E4:6A:B9
Certificate issuer: /CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Certificate serial: 07E4A459
Authority key identifier: 66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/Jsw0tspbTXVSazMLKw5CL7Hkark.roa
Signing time: Sat 01 Jan 2022 02:52:25 +0000
ROA not before: Sat 01 Jan 2022 02:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42216
IP address blocks: 212.64.222.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132424793 (0x7e4a459)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Validity
Not Before: Jan 1 02:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26cc34b6ca5b4d75526b330b2b0e422fb1e46ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:77:8a:42:69:52:28:87:e3:13:a9:c2:46:31:
84:42:fd:86:b7:b5:c8:09:c5:24:b8:bd:da:72:7a:
3a:c2:8b:f3:45:a4:b1:7c:78:67:22:3b:7a:7d:e2:
5c:78:c0:94:6b:17:19:b6:4f:f4:e9:12:33:e7:12:
f5:dd:0e:39:a3:13:d2:91:8d:c3:20:01:00:f8:41:
1f:9c:b2:2d:e8:b4:19:86:48:1c:a5:30:df:81:7e:
c6:5a:d7:3c:72:fe:47:30:de:3e:fd:1f:6b:57:98:
e5:35:aa:28:94:a4:2d:be:2b:5b:06:25:c2:46:01:
00:fd:a5:76:17:39:9a:39:ab:43:2e:de:02:d1:be:
40:57:ab:0a:6a:4f:51:c0:c0:39:ce:0c:38:5c:7e:
c1:a5:c9:8c:b3:39:71:8b:8b:f8:20:4f:80:88:3c:
4e:00:7d:3d:0f:05:ae:1a:23:9a:4c:54:5d:c2:e1:
e7:f5:8d:6c:9a:91:ea:80:66:cb:69:54:af:c0:a3:
30:7f:e3:d6:97:b5:31:33:2a:86:84:13:e0:ed:0d:
c0:28:3f:c8:af:dc:9d:59:90:30:41:23:d9:01:7f:
30:f0:02:a6:c6:aa:20:00:7f:df:6e:b5:a3:81:bc:
32:e5:58:d4:23:f8:72:9e:a5:89:1c:8a:32:e6:73:
03:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:CC:34:B6:CA:5B:4D:75:52:6B:33:0B:2B:0E:42:2F:B1:E4:6A:B9
X509v3 Authority Key Identifier:
keyid:66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/Jsw0tspbTXVSazMLKw5CL7Hkark.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/ZkD4nOImRblyl9eANybcL7Dl9Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.222.0/24
Signature Algorithm: sha256WithRSAEncryption
32:a2:ae:e1:93:98:ae:9e:fe:c1:c0:0e:30:05:41:98:8e:02:
99:f4:5b:53:02:b5:10:05:19:9c:c3:63:ba:7d:70:8f:16:36:
7d:be:8a:f4:af:1a:ec:14:66:48:2a:67:7d:be:c3:d6:4d:92:
bd:20:66:0a:f3:13:34:ad:65:bf:e5:fe:d1:f6:c1:53:a9:cf:
ab:4f:84:8b:52:99:9c:ec:50:8f:41:17:9e:90:e7:12:c8:64:
f7:b6:65:17:34:95:7e:b9:ad:62:40:dc:eb:5c:75:16:e2:79:
25:ad:d7:dc:66:11:4a:5a:4a:a3:09:55:a0:37:1f:f5:84:7c:
fe:0f:a4:ee:d8:d5:72:21:07:f1:38:5a:e0:ab:0d:f2:56:0c:
29:43:1a:1c:69:e6:0a:2d:f6:cc:bb:08:eb:fc:77:ef:51:37:
21:76:2b:65:dc:9f:77:8c:c9:6c:8b:eb:e8:4b:bf:5e:d0:40:
2d:fa:6f:9e:c7:58:d0:55:37:2e:94:a0:04:be:ee:a0:2a:37:
4a:f9:2e:62:7f:b8:ce:d6:72:3f:94:e6:0f:32:d2:9b:0e:2d:
ea:51:3f:e1:d3:93:33:f1:62:fe:91:17:b9:5c:32:5c:6b:96:
a3:53:9f:80:9b:01:b8:ee:b9:a8:a3:8c:12:c6:ef:e6:f1:bb:
57:27:f9:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:48 2024 by rpki-client on console-fra.rpki-client.org