Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/U0gRlVwIagDtjreqSILRj9FD7H4.roa
File: U0gRlVwIagDtjreqSILRj9FD7H4.roa (raw, json)
Hash identifier: l9GlxBXJV9uy25570/bJ+qVL59f5/CP2PUxusWPvMeE=
Subject key identifier: 53:48:11:95:5C:08:6A:00:ED:8E:B7:AA:48:82:D1:8F:D1:43:EC:7E
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17EA34C0
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/U0gRlVwIagDtjreqSILRj9FD7H4.roa
Signing time: Sat 01 Jan 2022 03:59:55 +0000
ROA not before: Sat 01 Jan 2022 03:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34577
IP address blocks: 213.16.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401224896 (0x17ea34c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=534811955c086a00ed8eb7aa4882d18fd143ec7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bc:25:88:70:6e:ac:0b:83:35:be:74:c5:25:
5e:bb:37:3a:07:6b:08:15:76:8d:e3:00:f3:a3:18:
eb:87:d7:7a:f4:b9:08:c9:73:d8:a6:4f:9c:05:f9:
bf:d8:eb:75:b7:9c:11:ea:d2:a5:c2:7e:9a:4b:0a:
56:9b:66:bf:f0:96:ea:92:0f:2d:af:d2:bf:0d:56:
38:fb:1f:2f:96:94:ec:90:85:b9:11:66:db:92:02:
2f:1b:56:23:dd:4d:09:00:28:91:90:ec:05:38:4c:
25:2b:78:22:0b:d5:91:db:6d:73:7f:48:13:fe:80:
ac:c1:95:58:61:43:9a:f3:9a:cf:48:0e:60:73:6e:
97:9c:4f:a4:13:b7:18:5b:0f:78:13:58:25:d0:28:
8f:22:0b:83:a5:b6:89:9b:eb:c1:48:ff:30:85:ee:
21:49:df:d0:3f:d4:6b:e4:c1:6d:d8:cb:83:f1:72:
50:85:a1:53:41:8f:50:30:92:9f:5b:a5:15:73:1e:
9d:03:56:f9:8f:06:bf:68:e8:79:51:c3:5e:c7:ed:
f4:ea:50:d4:7c:0d:0b:7c:be:a1:90:4c:e3:f8:36:
f0:28:cc:9e:8e:69:5b:87:5e:52:c6:af:65:39:e0:
2d:13:02:4f:3f:46:e4:95:1e:99:da:25:45:a8:dc:
9d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:48:11:95:5C:08:6A:00:ED:8E:B7:AA:48:82:D1:8F:D1:43:EC:7E
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/U0gRlVwIagDtjreqSILRj9FD7H4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.16.56.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:39:aa:6f:4e:11:30:ab:1f:12:46:e2:b9:54:54:93:31:fa:
0e:1b:3a:58:5d:95:4e:5c:83:d3:d0:2a:68:88:12:2d:a3:dc:
3c:f7:6f:99:2a:13:82:aa:63:fa:c6:60:be:0d:69:dd:e7:9e:
f2:f6:08:83:1a:12:c0:c5:56:d5:cb:55:7f:65:bc:08:4d:63:
19:0f:31:d3:e0:f9:f3:a4:7b:2c:80:fc:49:29:10:3c:63:5e:
e0:a1:70:7a:ad:96:c2:a4:21:51:f5:e6:33:13:37:4a:66:65:
33:1a:96:38:c7:7f:e7:c8:58:36:e8:9c:39:25:d3:f0:f9:49:
aa:3c:ba:ed:31:6f:17:3e:cd:5a:c0:1f:ea:fb:80:a6:8e:eb:
f8:d6:a6:b1:3b:d1:28:4b:b9:37:ca:25:ff:b5:6a:b5:71:cb:
c8:8b:9f:05:08:85:ff:a8:9d:9d:d2:ad:d8:39:66:5f:ee:ac:
be:50:a9:2d:8b:07:b6:50:f4:aa:c2:88:62:3e:26:3f:ca:74:
e5:e3:4f:e7:a1:94:ad:43:3d:51:a4:a5:05:27:ed:58:11:63:
5c:bf:e5:60:b9:05:35:9a:65:b6:37:ee:f9:e8:94:de:fa:1b:
42:d3:ab:41:eb:74:a8:3a:16:47:5f:7a:85:17:ee:37:2c:7e:
68:54:7f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org