Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/ZHB4280ivuc5YHCfS7U8A429tL0.roa
File: ZHB4280ivuc5YHCfS7U8A429tL0.roa (raw, json)
Hash identifier: uy5E3Sg91Y8pSMgu+xvHYMMUT9250lCjI+R4yDV7tvM=
Subject key identifier: 64:70:78:DB:CD:22:BE:E7:39:60:70:9F:4B:B5:3C:03:8D:BD:B4:BD
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 16F53F66
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/ZHB4280ivuc5YHCfS7U8A429tL0.roa
Signing time: Thu 21 Apr 2022 14:19:36 +0000
ROA not before: Thu 21 Apr 2022 14:19:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 212.68.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 385171302 (0x16f53f66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Apr 21 14:19:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=647078dbcd22bee73960709f4bb53c038dbdb4bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4d:72:9d:30:f5:12:fb:08:ef:41:5d:e6:00:
cc:06:c5:b8:41:37:c6:8d:92:20:73:95:db:d0:49:
c5:65:07:cc:fd:af:c2:39:00:97:de:4d:f1:8c:76:
32:cf:04:87:24:22:26:eb:54:7f:9f:7e:8c:60:e5:
9b:ae:80:48:58:1d:93:d1:2f:ad:87:ae:52:68:85:
52:8a:45:54:33:fe:14:a5:52:d9:72:af:09:7a:72:
fd:4b:91:26:71:d7:51:f9:0f:dd:a1:30:95:94:2e:
f3:d6:05:f7:0e:c6:6c:e2:a2:fd:b4:30:0c:f1:9a:
37:e7:0c:5c:cb:09:d4:87:0d:54:f1:cb:ef:7d:6b:
f5:cd:76:c5:d5:c8:aa:c0:8e:a7:44:c6:cc:bb:0e:
5d:07:02:28:95:f2:30:59:59:5a:ee:86:60:ac:22:
30:54:63:d1:83:d6:c5:93:19:0c:f1:05:cb:28:45:
9e:19:ba:0e:94:be:72:df:b8:79:fa:4a:37:97:5a:
bc:1c:c8:c6:bc:24:fe:65:98:44:b2:03:71:f6:6a:
e1:f0:f8:13:c6:33:49:5d:8c:7d:b2:2f:97:96:fc:
e7:0a:0a:e6:0c:df:04:d1:ad:cd:39:3f:34:11:c1:
b8:7b:c6:4c:b4:70:71:6a:27:94:ef:05:bf:9a:32:
b6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:70:78:DB:CD:22:BE:E7:39:60:70:9F:4B:B5:3C:03:8D:BD:B4:BD
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/ZHB4280ivuc5YHCfS7U8A429tL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.168.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:49:18:3c:d9:a6:ba:2d:77:1b:fa:fd:f6:f8:59:82:c4:58:
7f:e6:cf:cd:fd:38:ed:c2:f2:64:bb:9c:be:1d:f7:67:78:e0:
74:1d:d6:2c:9f:76:2c:31:e1:ea:0a:13:f4:d7:67:ef:e9:d1:
7c:c5:97:c4:0d:65:88:58:73:16:d0:4c:b0:6d:91:dc:09:d6:
3c:89:0a:8d:ae:3a:8a:68:40:50:fa:08:5a:83:e5:71:bf:bd:
45:5a:46:60:d5:ea:91:c7:7f:ad:22:02:11:f8:37:17:14:24:
83:ff:c3:a7:ac:66:69:d3:7b:24:f8:7c:94:e5:f5:6e:44:7b:
f8:28:b9:d4:83:ac:76:ee:e1:fc:35:04:07:0c:84:bd:f3:58:
32:b5:04:63:18:d5:67:bb:a8:40:8f:b0:4e:e4:47:20:fe:2a:
0b:bd:5e:7a:8e:cd:f2:6b:bb:0f:42:43:39:ed:0e:e6:86:78:
f5:34:2b:cd:b0:13:a6:97:2f:4e:18:11:18:ad:5b:4f:fd:d9:
bd:ba:f4:2d:9b:b5:13:11:24:d7:7f:aa:ab:49:5f:7c:cc:c8:
65:1e:40:dc:ae:86:c1:05:d4:b8:23:6c:2b:c4:ff:48:21:c7:
fa:ce:1f:53:99:e6:f6:0d:7a:f4:64:94:df:2d:f0:af:24:ed:
90:2c:67:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:19 2023 by rpki-client on console.sobornost.net