Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e66a35-f6b2-4e3b-a43a-18e8b9814695/1/35X3HF6fjvR3_gyNsgFYsyMsFT0.roa
File: 35X3HF6fjvR3_gyNsgFYsyMsFT0.roa (raw, json)
Hash identifier: A43Da30xtUJU57ffIC4oUECsh16URLC8XGS77yFWFQA=
Subject key identifier: DF:95:F7:1C:5E:9F:8E:F4:77:FE:0C:8D:B2:01:58:B3:23:2C:15:3D
Certificate issuer: /CN=76bb96839516f6fb3506c62064d63d62879a5277
Certificate serial: 0168E55C
Authority key identifier: 76:BB:96:83:95:16:F6:FB:35:06:C6:20:64:D6:3D:62:87:9A:52:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/druWg5UW9vs1BsYgZNY9YoeaUnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e66a35-f6b2-4e3b-a43a-18e8b9814695/1/35X3HF6fjvR3_gyNsgFYsyMsFT0.roa
Signing time: Sat 01 Jan 2022 05:04:38 +0000
ROA not before: Sat 01 Jan 2022 05:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210983
IP address blocks: 213.232.205.0/24 maxlen: 24
2a11:1d00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23651676 (0x168e55c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76bb96839516f6fb3506c62064d63d62879a5277
Validity
Not Before: Jan 1 05:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df95f71c5e9f8ef477fe0c8db20158b3232c153d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e5:40:79:b7:14:44:4f:ac:5a:9a:e4:6c:dd:
b1:43:bb:66:e0:da:20:f8:d0:7f:2b:42:1d:45:28:
6c:c8:46:ae:d3:da:07:b9:26:4b:a0:62:3e:5c:e5:
f1:66:7d:d0:b0:25:54:c7:52:43:d0:c2:9f:7b:8b:
2a:bd:9f:a5:57:0c:d4:e5:a7:61:ee:47:19:0e:07:
a4:60:2a:fc:8b:03:30:85:45:be:ab:2d:32:93:3a:
e3:e3:c1:8c:94:74:0c:1d:f9:08:aa:13:ae:4a:05:
56:a0:a4:c1:74:90:26:66:eb:8a:65:c3:57:1f:11:
87:b4:8a:4e:9e:b4:36:21:3c:e1:50:71:bd:94:9d:
91:2f:b9:06:4d:f2:c7:51:e6:78:72:7b:1d:a9:16:
60:81:fc:4d:30:1c:0e:5e:0d:65:18:5a:ff:2c:ea:
bf:6c:1d:76:64:da:cc:15:79:b0:e1:a2:7f:9f:5a:
45:a0:72:44:0e:4e:49:b5:59:88:2e:62:21:11:da:
53:78:f4:ba:f9:d2:30:b5:fd:f4:1e:7d:73:c2:90:
bf:4c:67:e8:70:b5:9a:66:a0:17:e1:75:16:fd:7a:
0d:e9:f5:dd:06:57:2b:73:2f:84:9f:d2:0a:f4:c8:
28:1e:0a:b4:2e:09:f4:e3:7e:f4:e1:e3:c5:cb:bf:
69:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:95:F7:1C:5E:9F:8E:F4:77:FE:0C:8D:B2:01:58:B3:23:2C:15:3D
X509v3 Authority Key Identifier:
keyid:76:BB:96:83:95:16:F6:FB:35:06:C6:20:64:D6:3D:62:87:9A:52:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/druWg5UW9vs1BsYgZNY9YoeaUnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e66a35-f6b2-4e3b-a43a-18e8b9814695/1/35X3HF6fjvR3_gyNsgFYsyMsFT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e66a35-f6b2-4e3b-a43a-18e8b9814695/1/druWg5UW9vs1BsYgZNY9YoeaUnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.205.0/24
IPv6:
2a11:1d00::/29
Signature Algorithm: sha256WithRSAEncryption
25:70:33:6e:d0:4b:51:3c:09:5d:82:50:65:5f:cb:57:62:0c:
46:2b:27:0d:35:60:cf:32:ab:18:96:3f:1b:0c:ad:ff:0e:68:
8d:58:09:52:81:d9:d8:d6:bc:31:b8:14:66:96:3f:cb:18:48:
36:47:46:96:5c:c5:a2:04:3c:5f:c2:f9:2a:67:e0:64:4d:b7:
0f:89:60:6e:b1:d7:4b:4a:4b:f6:0b:77:b9:ae:c8:8b:08:e7:
9f:82:fe:0c:2f:7f:55:c5:a7:84:49:a7:cb:7f:68:44:ca:62:
91:d1:27:8d:68:a8:27:2b:ee:c9:c5:27:fe:ab:c4:47:4f:09:
cf:28:fc:eb:60:1d:49:47:c7:b5:98:26:17:f0:53:ce:22:1d:
fa:39:d4:40:3f:47:07:ae:35:82:a9:80:90:e8:6d:29:9f:0f:
08:bf:96:d5:c3:f0:fc:14:f7:30:c5:dd:ed:0b:b6:e7:db:ef:
2b:21:41:61:98:c4:5c:e3:a7:8b:44:5d:96:db:f7:08:3f:6a:
b8:b3:f2:20:0a:05:12:c8:06:7a:12:5c:62:db:f9:97:af:44:
a0:11:ca:1e:82:09:67:d4:3f:93:e7:cc:bf:ae:bc:98:63:8d:
eb:9a:a4:e3:7f:9d:ee:db:94:bf:f6:91:5f:c5:ca:bb:20:a0:
5f:4f:a2:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:56 2024 by rpki-client on console-ams.rpki-client.org