Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/elhlMk-73rBXzMene7Mb7jky5h0.roa
File: elhlMk-73rBXzMene7Mb7jky5h0.roa (raw, json)
Hash identifier: KqSTSiJ8IwlDo80Q12I7XTFdVW1KDzxLPAxZVZZ1vHE=
Subject key identifier: 7A:58:65:32:4F:BB:DE:B0:57:CC:C7:A7:7B:B3:1B:EE:39:32:E6:1D
Certificate issuer: /CN=abbad3de831da94222c1add104caf4c3247689ac
Certificate serial: 01828C854BD4073F2F1144FABE86C7D06F54
Authority key identifier: AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/elhlMk-73rBXzMene7Mb7jky5h0.roa
Signing time: Thu 11 Aug 2022 10:48:42 +0000
ROA not before: Thu 11 Aug 2022 10:48:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204197
IP address blocks: 212.68.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:85:4b:d4:07:3f:2f:11:44:fa:be:86:c7:d0:6f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abbad3de831da94222c1add104caf4c3247689ac
Validity
Not Before: Aug 11 10:48:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a5865324fbbdeb057ccc7a77bb31bee3932e61d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:dd:f2:27:b4:a5:1b:cb:96:ef:c2:46:4a:4b:
aa:df:15:dd:3b:cb:88:ae:2b:9e:37:4f:51:ae:12:
81:f9:bb:88:2d:75:f7:ef:ed:39:b9:90:c6:dc:a3:
75:6a:e2:21:e3:b7:15:e3:14:2a:5c:77:9c:bb:98:
0d:c0:7a:eb:38:c9:ca:5f:ac:bd:07:79:29:15:f9:
4f:81:6b:9f:4c:29:e2:2d:11:1d:79:4c:8e:15:ae:
68:6e:47:39:53:4c:f6:e0:09:31:68:e0:d8:86:62:
e4:a9:03:2f:51:ea:b6:21:45:18:32:c8:6f:49:16:
bb:e5:21:2d:0e:e0:70:ba:8d:64:91:b9:20:a3:96:
2f:76:8d:73:e0:5c:04:b1:25:49:65:8c:1a:58:51:
4d:e4:0a:b9:bb:5e:3a:4a:97:48:33:89:5f:8b:2e:
6d:90:3e:8c:0a:ec:10:47:5a:f4:6e:2d:ba:cf:82:
5f:e7:46:8e:00:5a:05:79:e2:e9:73:20:f8:38:42:
b2:b9:c7:a2:5b:7b:b6:71:87:90:23:12:33:d6:96:
55:b3:f3:1c:56:9a:81:63:22:42:fb:23:56:34:a3:
85:96:29:5f:4f:36:e7:cc:9f:76:2a:08:10:03:94:
23:c9:6a:0b:f0:e9:b4:d3:ec:58:41:50:7c:ab:8f:
32:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:58:65:32:4F:BB:DE:B0:57:CC:C7:A7:7B:B3:1B:EE:39:32:E6:1D
X509v3 Authority Key Identifier:
keyid:AB:BA:D3:DE:83:1D:A9:42:22:C1:AD:D1:04:CA:F4:C3:24:76:89:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7rT3oMdqUIiwa3RBMr0wyR2iaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/elhlMk-73rBXzMene7Mb7jky5h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8e8149-d53c-4992-bd07-55c434eec96c/1/q7rT3oMdqUIiwa3RBMr0wyR2iaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.68.176.0/22
Signature Algorithm: sha256WithRSAEncryption
54:7d:e9:ac:61:20:df:4b:cc:7b:86:63:d6:32:3d:8b:5b:09:
77:5b:81:ad:66:51:8a:27:cc:eb:82:5a:20:cd:a6:be:67:08:
1e:ac:b4:e1:3d:4b:d8:5b:dc:ca:5a:d2:7e:3d:4f:c8:39:b8:
f3:9f:c8:4d:dd:c4:31:c5:6f:c6:ce:c2:52:9c:6e:2d:dd:d9:
cc:db:79:0d:cb:37:62:e2:ff:f7:15:a9:48:e2:b9:94:7a:e7:
00:1c:91:99:39:a3:af:a0:bb:44:9e:c7:b8:e1:05:0d:28:4d:
2d:b0:11:24:15:a1:74:ba:39:71:74:b7:a0:e9:06:6b:b8:74:
5a:fa:6f:55:83:7b:52:91:da:69:a3:7c:1b:c4:66:00:7f:99:
55:37:a9:b5:f5:65:05:f9:bb:dd:3a:fd:09:95:78:67:d5:12:
63:06:6f:95:1c:a6:cc:d1:a5:ce:fd:5c:51:88:87:0c:05:e0:
a9:e1:f5:6e:1f:22:6b:37:76:a8:61:b9:7f:80:c1:aa:6f:ab:
31:0f:26:41:25:c4:9d:50:a5:47:41:8c:ab:d0:29:11:1c:6e:
91:2e:21:f1:d9:c8:23:22:dc:fc:37:de:ee:a5:b8:50:a0:f3:
50:c9:39:ab:d5:da:54:25:52:75:ad:cb:12:aa:b9:72:dd:2d:
5c:52:3f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:19 2023 by rpki-client on console.sobornost.net