Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/ZWjMm64Ld5K99FRHNZSDsO9xEb8.roa
File: ZWjMm64Ld5K99FRHNZSDsO9xEb8.roa (raw, json)
Hash identifier: xk459p/7VWn7sXUm712B5BdWDaorpZLtNJwJMKoy7GY=
Subject key identifier: 65:68:CC:9B:AE:0B:77:92:BD:F4:54:47:35:94:83:B0:EF:71:11:BF
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 0982FFF5
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/ZWjMm64Ld5K99FRHNZSDsO9xEb8.roa
Signing time: Sat 01 Jan 2022 13:05:09 +0000
ROA not before: Sat 01 Jan 2022 13:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211239
IP address blocks: 213.169.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159580149 (0x982fff5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 1 13:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6568cc9bae0b7792bdf45447359483b0ef7111bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:25:94:b9:bf:0e:42:4c:a0:8c:b4:f0:d6:a4:
e5:71:bc:d2:01:fb:1b:e2:56:b8:6d:3c:5c:0c:e9:
1f:4c:fa:8f:c5:d8:0b:f0:11:ae:2a:57:80:74:67:
ca:fd:b1:06:6f:f2:b3:19:24:5c:a8:b5:00:68:b5:
ed:28:6c:b5:c3:a0:2e:1c:62:8e:e4:2a:f5:f2:ff:
cf:f1:46:c3:77:f0:66:24:0b:65:37:bf:ea:74:88:
80:f0:fa:a8:c7:0a:ea:6a:76:07:57:5d:af:4d:54:
3e:1e:84:46:f1:8f:9e:b1:4e:53:06:46:c6:a6:c6:
e7:13:8f:ba:72:6c:cf:bb:b2:73:4b:01:74:26:2b:
2f:e4:6d:6f:7c:72:b1:e1:d9:3d:73:a5:82:76:4b:
b1:e1:d6:35:a6:ac:44:8f:5d:26:11:c9:e4:4f:07:
a2:02:fa:92:f6:68:29:cc:5a:ad:8b:b1:a1:d7:b1:
6e:aa:9c:5f:20:42:d6:3d:eb:50:6e:33:76:58:7a:
9f:9d:20:25:35:ef:6a:fc:65:46:17:68:5c:11:76:
7d:62:50:88:c0:4f:55:94:7b:0e:88:50:88:5e:ed:
1a:44:47:bf:cf:77:60:ac:f2:3e:b0:cc:0b:34:f6:
69:c2:88:45:73:22:4a:ad:43:b2:8b:12:48:c0:86:
dd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:68:CC:9B:AE:0B:77:92:BD:F4:54:47:35:94:83:B0:EF:71:11:BF
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/ZWjMm64Ld5K99FRHNZSDsO9xEb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.169.156.0/24
Signature Algorithm: sha256WithRSAEncryption
66:1e:03:c7:c5:18:c2:34:cc:14:68:3d:44:28:62:92:6e:4d:
9c:a6:b4:21:cc:81:74:42:ea:42:45:db:bf:da:be:91:9b:74:
ee:5c:06:12:3f:f5:97:e0:6f:b0:0a:61:26:be:c8:d0:e7:dc:
65:f4:fc:20:e2:9c:b9:b7:c0:79:d4:a3:8c:1d:44:ae:b1:8c:
4c:77:99:b0:86:10:a9:5f:55:23:11:ec:35:e2:00:f3:7b:ba:
18:2b:d2:34:20:36:5f:9c:02:9a:6a:bd:22:0a:1b:8c:1e:74:
d6:57:67:1c:b1:d1:6e:74:9d:df:f2:bf:9c:8c:97:03:dc:ad:
77:bc:36:07:c0:c2:14:3b:17:af:b3:90:be:ba:bb:a9:79:33:
35:d3:c4:f0:43:21:38:1d:27:d7:e9:9b:86:6e:5d:d6:b7:5a:
93:11:fc:8c:a3:c6:4e:1b:24:2a:f1:e7:37:a3:14:00:76:d5:
d3:fb:90:5f:c0:55:b8:a2:f9:72:bb:54:5e:38:a4:69:ab:69:
db:30:96:de:1b:27:c4:46:66:25:82:3a:82:b7:4e:b3:00:1e:
c5:85:da:4b:f1:4c:7c:df:20:22:56:a5:a6:0f:cf:de:47:3a:
80:e3:b0:a3:b7:4e:7f:0d:dd:fc:b5:fd:ad:6d:d5:e5:ad:28:
93:54:e8:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:54 2024 by rpki-client on console-ams.rpki-client.org