Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/BjopZhmmayr9NSdkt0TZnX81hlE.roa
File: BjopZhmmayr9NSdkt0TZnX81hlE.roa (raw, json)
Hash identifier: FuE6DjP1ZsJn6Kv5jGPPX8slfKDN0x1MMH9lpZOgt3U=
Subject key identifier: 06:3A:29:66:19:A6:6B:2A:FD:35:27:64:B7:44:D9:9D:7F:35:86:51
Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial: 06D012EB
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/BjopZhmmayr9NSdkt0TZnX81hlE.roa
Signing time: Sat 01 Jan 2022 03:59:26 +0000
ROA not before: Sat 01 Jan 2022 03:59:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60123
IP address blocks: 213.240.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114299627 (0x6d012eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Validity
Not Before: Jan 1 03:59:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=063a296619a66b2afd352764b744d99d7f358651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c2:b7:51:f1:14:ad:48:52:91:48:c3:b6:83:
71:b0:ca:cc:06:30:fe:ed:d9:32:90:3e:7b:b7:b9:
aa:9d:6f:0b:e2:fb:26:dc:bd:aa:41:a1:7f:31:97:
1a:50:7c:45:0a:5e:9f:a9:c6:ea:bc:00:f8:ad:01:
76:30:9c:3d:e1:e4:8f:1f:b2:56:97:d5:f2:0a:c1:
15:ea:73:b3:5a:09:33:74:86:ed:7b:05:0b:09:c3:
2a:22:6a:98:8d:38:9b:92:60:fa:0f:7a:b6:c6:e7:
ff:09:8f:bc:75:e2:1f:41:9f:0c:e9:da:7e:6a:e7:
3a:27:e9:09:91:a7:af:2c:4c:be:e0:8e:ad:31:e4:
77:4a:50:29:33:4c:ad:98:c6:52:b9:81:a6:2f:ca:
41:44:52:47:b4:bc:74:b1:53:21:8b:49:5f:3c:f3:
b4:7d:3d:9e:25:9d:1f:f6:c2:2e:ff:67:5f:2d:6f:
0b:71:2c:28:cb:2a:df:27:9a:62:9a:d2:14:0c:9c:
09:8f:01:39:7d:76:00:c2:5c:ce:01:63:f2:81:7f:
a5:10:52:d0:0f:90:e1:ae:0f:20:c9:1d:ee:8e:d7:
7e:98:88:77:06:6d:42:1f:b6:0b:e3:66:f1:bb:dd:
f7:66:4b:ff:fe:0d:23:6c:f6:e4:c5:88:d4:13:90:
41:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3A:29:66:19:A6:6B:2A:FD:35:27:64:B7:44:D9:9D:7F:35:86:51
X509v3 Authority Key Identifier:
keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/BjopZhmmayr9NSdkt0TZnX81hlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.240.148.0/24
Signature Algorithm: sha256WithRSAEncryption
75:d1:4c:a5:2a:67:80:de:fe:e6:d8:2b:06:32:8f:ce:79:73:
40:0b:bc:ba:ca:52:d4:21:9b:d6:f5:0a:65:a5:cd:3e:a3:de:
c8:b8:3e:39:b7:82:8f:35:4b:c5:e3:99:63:7c:9d:86:21:e4:
6d:6f:c5:96:81:6a:5e:0d:2b:a3:7d:e4:7f:af:a2:cc:90:1b:
d2:a2:c9:5d:b7:17:ca:6c:56:39:18:19:99:f0:e1:98:c3:ec:
db:d4:fc:34:c5:46:64:ae:1b:d1:63:44:af:6d:c3:f6:dc:1c:
a9:4e:49:8d:be:1d:c8:49:22:d1:a7:4f:22:57:7f:52:2c:d1:
c6:88:bf:21:fc:b6:97:68:f7:42:55:02:30:f7:30:73:cd:ad:
b4:93:e9:00:36:16:c7:01:2b:c8:ee:1c:b7:dc:63:68:7d:76:
a4:92:78:a7:3b:b3:00:35:c4:92:57:5f:fa:79:63:9e:5e:3c:
63:bb:59:3e:42:56:d5:5f:aa:04:2d:6e:ca:46:92:90:62:75:
7a:25:7e:f4:91:23:9c:a7:6b:24:a5:1d:cf:44:af:8f:26:1d:
52:a3:af:1b:53:cf:96:8b:e2:54:f2:23:ee:7c:ea:e7:56:e9:
e8:fd:81:40:25:a6:53:23:69:57:41:2c:65:9b:66:de:d4:e1:
96:63:bf:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:06 2024 by rpki-client on console-ams.rpki-client.org