Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/9Dc6K58oAcNuMzD3nNe2IRxxpsA.roa
File: 9Dc6K58oAcNuMzD3nNe2IRxxpsA.roa (raw, json)
Hash identifier: Qrby+BQzIR7YeZ3aW6H2u3SAU08ErD1BcwnvzkZtOPc=
Subject key identifier: F4:37:3A:2B:9F:28:01:C3:6E:33:30:F7:9C:D7:B6:21:1C:71:A6:C0
Certificate issuer: /CN=dc899c28664ee8194a64048e46c60c6e5f190c53
Certificate serial: 09F12DA5
Authority key identifier: DC:89:9C:28:66:4E:E8:19:4A:64:04:8E:46:C6:0C:6E:5F:19:0C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/9Dc6K58oAcNuMzD3nNe2IRxxpsA.roa
Signing time: Sat 01 Jan 2022 08:56:27 +0000
ROA not before: Sat 01 Jan 2022 08:56:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60492
IP address blocks: 213.167.75.0/24 maxlen: 24
213.167.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166800805 (0x9f12da5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc899c28664ee8194a64048e46c60c6e5f190c53
Validity
Not Before: Jan 1 08:56:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4373a2b9f2801c36e3330f79cd7b6211c71a6c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b6:57:2b:b0:02:ac:3f:d0:6e:fb:a8:b0:c0:
64:2d:06:17:0e:60:40:bc:d7:c7:8e:5b:7e:77:10:
16:11:2b:b6:34:79:65:6c:81:47:17:19:02:fb:07:
bc:6a:8c:55:91:0c:0d:72:2f:46:6c:d2:b2:64:f1:
83:e6:10:f8:8c:16:e2:b0:c4:34:8b:bc:82:0d:2e:
92:06:61:ff:e0:ef:18:85:43:df:fb:2f:fd:5c:99:
2a:6d:3b:4b:a3:42:9a:87:1d:be:d3:45:85:bd:56:
08:28:fd:d8:c8:e4:cb:07:bf:24:84:de:60:59:82:
44:e1:64:79:1b:47:86:be:f8:cf:ea:4a:dd:87:71:
33:d0:8d:07:08:74:31:9b:47:01:1c:7d:b7:87:02:
3f:bd:d3:e1:e0:9b:69:b6:a3:20:9d:e9:77:8f:96:
8f:d6:14:e9:55:06:50:db:c6:ef:46:4a:ae:32:d1:
88:0a:6c:c0:58:1b:3c:b3:36:48:66:7e:56:b8:d9:
ae:47:3e:a5:47:58:90:39:9e:bb:5a:f7:9e:b4:cc:
ab:ee:85:f9:c2:62:19:ee:69:9f:06:53:94:5e:df:
49:fa:49:1e:0f:64:03:04:0a:5e:ce:99:a3:1f:31:
38:a7:d9:13:c3:b2:7d:29:dd:a9:92:9d:f3:c6:b6:
d1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:37:3A:2B:9F:28:01:C3:6E:33:30:F7:9C:D7:B6:21:1C:71:A6:C0
X509v3 Authority Key Identifier:
keyid:DC:89:9C:28:66:4E:E8:19:4A:64:04:8E:46:C6:0C:6E:5F:19:0C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ImcKGZO6BlKZASORsYMbl8ZDFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/9Dc6K58oAcNuMzD3nNe2IRxxpsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/56d6a8-0752-4cbd-8845-52fe10513129/1/3ImcKGZO6BlKZASORsYMbl8ZDFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.167.75.0/24
213.167.81.0/24
Signature Algorithm: sha256WithRSAEncryption
48:52:55:c5:c4:db:8f:75:31:8c:c0:92:56:ed:a8:f0:ba:88:
af:41:38:a0:0f:57:0d:68:47:bd:fc:7e:a4:c3:79:42:6a:15:
3f:ac:fb:90:3c:35:e4:93:f1:16:86:8d:a4:9f:d8:9c:62:eb:
11:e1:50:14:df:be:7c:33:ae:b9:bf:f3:7a:78:40:52:fc:d2:
d9:e2:02:16:af:52:04:63:ca:e3:14:88:1e:13:77:a1:97:b9:
a1:43:f2:a6:c9:6e:b9:94:fa:ab:c8:29:ca:cd:a5:e3:96:6b:
86:35:0e:c1:38:1b:cc:54:a0:76:8c:be:ab:59:6e:13:be:a9:
90:be:99:0b:ce:61:62:42:99:4e:bb:c5:44:10:ec:2b:74:35:
03:d9:ee:24:3e:aa:98:ff:40:69:c3:4f:23:c8:fe:94:d3:6d:
10:6d:fe:3f:a8:a9:ec:6c:c7:a0:31:22:25:d0:cf:a5:7a:fb:
b7:98:1c:7b:a5:b0:99:da:1a:38:58:9e:e5:b6:38:86:85:88:
79:f3:98:0b:c3:69:cb:91:0a:1a:7b:04:1d:90:39:f8:50:d4:
2e:4c:3b:86:5d:27:e7:e1:df:f6:14:01:5c:b4:9d:77:33:ff:
3f:e6:20:d6:7e:e4:37:7c:eb:85:c8:5a:04:62:21:6e:df:9d:
c4:72:02:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:40 2024 by rpki-client on console-ams.rpki-client.org