Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/rRyvc3eGxjIzQ_VnlMPt_sivc9c.roa
File: rRyvc3eGxjIzQ_VnlMPt_sivc9c.roa (raw, json)
Hash identifier: C1aW4f5T184vCiQt3b9MQk+U1Ck8VPxrRHCdQc6Dn7g=
Subject key identifier: AD:1C:AF:73:77:86:C6:32:33:43:F5:67:94:C3:ED:FE:C8:AF:73:D7
Certificate issuer: /CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Certificate serial: 07E4BEC5
Authority key identifier: 66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/rRyvc3eGxjIzQ_VnlMPt_sivc9c.roa
Signing time: Sat 01 Jan 2022 02:52:26 +0000
ROA not before: Sat 01 Jan 2022 02:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205953
IP address blocks: 212.64.219.0/24 maxlen: 24
212.64.221.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132431557 (0x7e4bec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6640f89ce22645b97297d7803726dc2fb0e5f4b9
Validity
Not Before: Jan 1 02:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad1caf737786c6323343f56794c3edfec8af73d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:40:54:e1:ee:2f:15:85:28:b3:32:cf:c0:78:
ee:82:0a:5c:dd:c8:c9:9c:1b:51:02:e7:91:6a:20:
3d:1f:82:22:d1:6f:fe:61:5e:23:b9:46:49:12:dc:
29:98:32:1b:2f:7f:47:cf:f8:06:1e:04:15:32:7e:
b7:70:c9:3c:f5:e6:da:46:20:e4:e3:bd:30:96:fd:
54:95:e8:1d:c8:28:23:b6:1b:8f:04:f1:26:55:30:
fc:0e:64:85:dc:de:bc:65:00:f3:d3:b9:e3:7c:f8:
de:9c:87:0c:fb:65:21:29:56:35:69:3d:b4:9d:ad:
53:91:1e:1f:25:af:12:45:c7:9a:af:42:a9:f6:8d:
95:fd:f1:70:2f:d5:a0:38:be:6f:0c:47:b6:63:66:
b3:94:e6:0f:35:df:aa:c4:7f:33:4a:be:3f:b7:e2:
50:48:fa:80:70:2b:35:c6:45:53:a9:d1:d3:13:c9:
02:17:4d:94:96:22:5a:3d:7f:e7:fd:42:7e:b8:9f:
b5:77:5e:c7:d8:31:aa:ca:44:8c:f4:db:e8:54:18:
3d:5e:3c:e5:1e:e9:a0:a9:db:14:6a:25:59:9e:c8:
b8:1b:ae:2a:a3:a0:6c:7a:ac:1c:79:39:f8:fb:75:
26:c3:26:39:12:d2:9e:13:c2:6c:d5:44:a1:c7:24:
f7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1C:AF:73:77:86:C6:32:33:43:F5:67:94:C3:ED:FE:C8:AF:73:D7
X509v3 Authority Key Identifier:
keyid:66:40:F8:9C:E2:26:45:B9:72:97:D7:80:37:26:DC:2F:B0:E5:F4:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZkD4nOImRblyl9eANybcL7Dl9Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/rRyvc3eGxjIzQ_VnlMPt_sivc9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c3ad2e-b52e-441c-89ba-44ab7a9d7dea/1/ZkD4nOImRblyl9eANybcL7Dl9Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.64.219.0/24
212.64.221.0/24
Signature Algorithm: sha256WithRSAEncryption
08:fa:fc:c4:ee:16:4a:48:5b:04:23:85:cb:78:7a:7e:92:e6:
b7:86:e9:10:e7:b2:25:64:ef:56:93:d0:6c:85:61:d8:8f:36:
18:f7:1c:b1:c5:2b:eb:8e:cb:93:da:d7:95:74:ba:c0:5f:55:
91:1d:78:e7:fa:3c:01:34:6b:b8:aa:90:e3:f4:a9:9d:a8:75:
c8:f4:f8:29:3f:bc:b7:0b:6a:0d:70:28:02:07:4d:df:7c:2b:
27:d0:17:fa:11:a2:19:97:77:0e:2e:9b:dd:af:1b:63:4e:c5:
ac:67:62:09:68:88:09:94:a7:59:40:ef:7c:ec:1a:49:34:8b:
75:d7:0a:c3:fd:cb:83:eb:cd:f4:c9:b7:8a:ee:01:eb:f4:9d:
08:16:d7:29:29:18:88:04:fa:72:91:c0:46:47:81:9e:7b:53:
29:3d:f9:39:a3:94:ed:15:57:8b:48:8f:5c:25:de:d8:d1:b2:
8a:ea:12:60:62:86:3f:9b:fe:f4:f0:d1:72:a9:40:f0:7a:2d:
5e:90:13:cf:f8:e8:51:cd:45:43:eb:81:60:95:4e:78:09:a1:
66:05:ea:80:b6:a8:de:a5:34:6e:1f:be:7d:55:ee:10:fc:4c:
08:af:5e:48:ee:9e:0d:e8:5b:1a:56:0a:6d:de:63:99:8a:77:
f2:50:32:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:55 2023 by rpki-client on console-fra.rpki-client.org