Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/4RTjDdPt6g94CwYVUwZVkBMswT4.roa
File: 4RTjDdPt6g94CwYVUwZVkBMswT4.roa (raw, json)
Hash identifier: 4knvdBK8TGpwGFhXs5G7onAsQrJjejr4H1viaBVqLyw=
Subject key identifier: E1:14:E3:0D:D3:ED:EA:0F:78:0B:06:15:53:06:55:90:13:2C:C1:3E
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17EE3ED0
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/4RTjDdPt6g94CwYVUwZVkBMswT4.roa
Signing time: Sat 01 Jan 2022 03:59:57 +0000
ROA not before: Sat 01 Jan 2022 03:59:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39135
IP address blocks: 212.5.130.0/24 maxlen: 24
212.5.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401489616 (0x17ee3ed0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e114e30dd3edea0f780b061553065590132cc13e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:36:ee:18:b8:d3:01:ff:b6:fb:6d:cf:ad:48:
a5:34:f7:f3:c8:b5:41:de:65:c3:95:d3:ee:93:f8:
7e:57:3a:00:4a:20:58:b2:74:e4:d0:4c:1e:05:71:
c9:e3:ff:94:04:06:0d:db:a6:50:50:29:08:3f:44:
77:b9:1d:eb:51:48:a6:06:c9:e4:75:81:2d:82:1f:
14:f0:ce:17:7c:57:b7:d4:31:a4:15:5b:5f:6e:cc:
dc:3d:85:53:88:82:f2:30:0e:f2:a8:4a:f4:e7:c3:
0a:bd:b9:d0:82:0c:77:cc:e7:06:84:22:2f:13:66:
9d:7c:c8:98:9a:f0:c7:d6:e1:8d:92:06:05:20:a6:
61:1e:6d:c4:de:6a:94:6c:b5:23:94:16:9b:4c:89:
41:57:47:a9:43:97:e7:cb:a2:90:68:5b:d0:70:33:
d9:6d:a6:80:fa:91:1f:93:a8:e8:ab:a0:89:65:d3:
7a:0d:19:d1:31:35:0f:d5:1d:ae:01:e0:8f:ad:f7:
c3:5f:df:6d:9a:1b:68:5e:9e:e1:db:6d:46:7b:a3:
89:4d:67:af:8a:49:8f:53:48:c5:c5:59:4c:99:56:
a6:34:dc:da:9d:93:2e:4f:99:91:7c:14:6a:ea:48:
99:01:70:18:fe:47:04:8a:19:25:1c:5c:6b:3e:bb:
4b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:14:E3:0D:D3:ED:EA:0F:78:0B:06:15:53:06:55:90:13:2C:C1:3E
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/4RTjDdPt6g94CwYVUwZVkBMswT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.5.129.0-212.5.130.255
Signature Algorithm: sha256WithRSAEncryption
2a:44:b0:9f:04:cb:b1:1e:12:c3:64:d8:09:39:89:d9:89:13:
5b:29:7d:e8:53:1a:7e:f0:50:c0:8f:62:21:ec:b4:23:39:57:
25:d4:cd:68:3f:8d:7e:e7:b2:f0:c8:1f:12:98:8c:ea:7f:a5:
c6:5d:23:cd:65:88:c9:bc:bf:be:a0:48:42:2b:fc:8a:ff:a5:
9b:fd:d2:ce:50:0e:d4:ab:9e:15:28:87:09:ec:c1:a7:19:ee:
11:d5:a1:87:d0:70:f1:89:f0:d8:ca:bd:2c:71:04:e9:6b:38:
e3:86:8c:1c:dc:ed:52:d9:8f:c1:93:c4:f2:47:3a:eb:87:42:
75:e7:1d:9a:fb:4e:a5:d7:c7:e0:4b:61:06:bb:9b:28:90:14:
85:e4:a7:f2:6a:b9:e0:a1:9e:9a:4d:fd:91:b0:e2:48:af:c0:
41:45:0b:fb:a2:16:d4:ee:e5:14:4a:44:30:e5:90:d7:c7:c2:
52:0e:ed:88:87:f4:56:8a:ab:17:b6:ab:a7:e4:86:17:46:5b:
86:be:97:b2:48:ab:1f:8d:88:44:2d:11:c5:78:7d:0b:51:c6:
a7:ff:d2:35:54:db:6d:54:ee:5e:95:d1:ef:33:43:a4:75:d9:
cf:f6:bc:60:04:16:f3:a3:9e:d5:2b:55:c4:dc:44:1b:4e:4f:
e4:b9:0b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org