Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/5mja8IEiJmwmIPk98d_4i9ShPvw.roa
File: 5mja8IEiJmwmIPk98d_4i9ShPvw.roa (raw, json)
Hash identifier: GixkedmH99Q7n/puBfTmGdryGDHZxuCBhBH4+Idaz4E=
Subject key identifier: E6:68:DA:F0:81:22:26:6C:26:20:F9:3D:F1:DF:F8:8B:D4:A1:3E:FC
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 1AF6D154
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/5mja8IEiJmwmIPk98d_4i9ShPvw.roa
Signing time: Sat 01 Jan 2022 13:05:39 +0000
ROA not before: Sat 01 Jan 2022 13:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8839
IP address blocks: 213.245.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452383060 (0x1af6d154)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 13:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e668daf08122266c2620f93df1dff88bd4a13efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:05:cd:f2:67:f6:df:68:14:7c:48:b4:ab:40:
00:0f:de:0f:ab:ed:fc:47:d2:ac:11:57:44:9e:ac:
ef:fe:fa:cc:6b:1d:4d:df:d1:e1:08:92:f6:a9:b6:
dd:96:b8:a3:a2:ab:41:8f:31:bc:67:8c:df:2a:37:
ca:cb:7f:b5:b3:8d:da:7f:65:93:1a:a5:18:f0:67:
ff:1b:dc:cf:6a:40:45:7b:e4:ed:ca:04:28:92:a8:
2c:2f:48:47:0d:23:19:be:2f:35:13:b9:a7:da:f8:
88:92:37:df:ca:50:e2:bf:2a:db:a1:10:b0:21:da:
cd:bf:01:19:bd:75:b7:b8:70:0f:5f:e6:7a:4b:b4:
36:8b:43:a1:46:d2:ef:c9:3b:a2:61:0b:ae:b0:81:
47:9e:ca:e1:96:d3:ad:5e:6e:79:07:56:c6:5a:12:
7d:86:14:f1:e2:38:b6:3e:db:2e:ee:8c:e1:f4:cf:
32:3d:21:66:bf:f3:f2:5f:4e:b2:2a:38:02:5e:41:
07:ee:1c:cc:1b:13:f8:8a:83:06:a6:50:cd:ee:5e:
a1:77:95:cb:0f:ac:1a:4e:2b:ed:00:a3:e1:4c:22:
29:7b:75:eb:d8:df:c2:d6:aa:55:97:e9:82:72:02:
9b:8b:67:d3:46:9e:27:13:f2:f7:d3:e7:50:ab:71:
22:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:68:DA:F0:81:22:26:6C:26:20:F9:3D:F1:DF:F8:8B:D4:A1:3E:FC
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/5mja8IEiJmwmIPk98d_4i9ShPvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.245.2.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a2:e5:4b:aa:35:5c:54:7a:c2:a6:e7:c0:9b:d7:29:ce:96:
60:84:4b:e5:a0:a2:ea:92:a4:5f:d7:33:c2:51:ea:08:5f:2c:
84:7f:60:c1:61:23:c8:40:f5:e0:d6:69:64:d9:c6:04:5a:5c:
d9:fb:18:3a:73:fc:29:ad:0c:b9:15:c1:88:c2:0a:8e:c4:3c:
0d:6e:3b:3e:06:c4:3b:83:02:2c:9c:3e:c1:6c:17:f5:6e:5b:
ee:73:9a:e9:47:3f:4c:26:b0:b6:01:8c:61:50:f1:cc:86:90:
46:4d:96:d8:7a:dc:c8:03:07:77:fb:46:97:8b:73:56:d3:47:
8d:28:05:01:be:b8:0a:c9:0c:ab:7d:4c:b5:b6:14:db:31:e4:
5a:c2:77:4d:f4:35:5f:e5:36:f2:44:2f:aa:3e:d1:9a:97:0c:
29:dd:fa:26:43:11:52:fb:38:1e:7d:ea:ea:cb:10:02:5f:5d:
2d:30:88:8a:20:ae:6f:18:53:6d:b5:26:5f:ce:fa:d7:45:8d:
f2:12:4c:43:8b:f2:4f:26:d5:e4:6f:2a:a6:d1:9c:32:87:80:
2a:09:7a:3e:16:8a:ad:15:8d:2d:e0:45:6d:72:ac:08:0d:22:
a2:4d:ee:31:16:aa:6c:fa:34:f8:b0:ff:a2:b5:95:fb:77:f9:
62:2d:15:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org