Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/2nitrNHJ6Z6WQRg8xFsLi1PRdu0.roa
File: 2nitrNHJ6Z6WQRg8xFsLi1PRdu0.roa (raw, json)
Hash identifier: s+EefprOBcmT6/pVD/fbcTCf3yBe7TWEKb5IqtSzYbk=
Subject key identifier: DA:78:AD:AC:D1:C9:E9:9E:96:41:18:3C:C4:5B:0B:8B:53:D1:76:ED
Certificate issuer: /CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Certificate serial: 14300012
Authority key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/2nitrNHJ6Z6WQRg8xFsLi1PRdu0.roa
Signing time: Thu 09 Jun 2022 15:40:02 +0000
ROA not before: Thu 09 Jun 2022 15:40:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15829
IP address blocks: 213.180.224.0/24 maxlen: 24
213.180.232.0/22 maxlen: 22
213.180.227.0/24 maxlen: 24
213.180.236.0/22 maxlen: 22
213.180.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338690066 (0x14300012)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Validity
Not Before: Jun 9 15:40:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da78adacd1c9e99e9641183cc45b0b8b53d176ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ce:39:f6:e4:9b:77:82:75:e1:8f:9b:79:60:
5b:2e:3f:18:b2:06:1b:df:ac:c8:8d:38:16:59:e8:
85:2d:40:b3:ce:26:58:07:b6:91:f5:58:c7:b7:21:
49:c6:27:0a:49:67:d3:32:4b:10:06:05:72:26:43:
d2:4c:6d:c4:71:9c:8d:35:9f:14:b0:d5:dc:a2:84:
a0:71:47:0c:dd:58:74:cc:8f:f2:72:92:bd:65:77:
26:da:7f:55:e9:bf:cf:2b:61:d1:de:c3:4a:69:a5:
fd:af:2b:fb:dd:5b:4a:6b:2b:91:e1:30:1c:09:6a:
f7:76:e9:4a:5a:36:0b:c5:30:3e:28:77:f3:4e:f9:
46:dd:0e:e7:f4:ea:26:99:f4:22:14:b7:36:80:dc:
3b:15:d6:6a:af:36:07:cc:35:b9:20:a7:11:84:ad:
c1:e2:cb:51:16:9e:f6:0e:13:6f:54:f6:d6:95:43:
8e:4a:d9:dd:cf:6f:0f:5e:f1:28:94:78:c9:3c:ea:
86:cd:48:e6:1d:b7:cc:08:0d:d2:e6:69:ee:a2:a5:
be:e8:de:8b:67:ad:51:da:54:9d:68:48:f8:49:bf:
bc:44:ff:eb:d5:30:87:c1:11:5d:2e:26:65:87:c3:
2f:40:5c:08:ef:c1:be:40:d3:f5:c3:15:e0:66:bd:
f9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:78:AD:AC:D1:C9:E9:9E:96:41:18:3C:C4:5B:0B:8B:53:D1:76:ED
X509v3 Authority Key Identifier:
keyid:47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/2nitrNHJ6Z6WQRg8xFsLi1PRdu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.180.224.0/24
213.180.227.0/24
213.180.232.0/21
213.180.248.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:e4:4e:7d:d7:e7:73:14:01:da:84:ff:3c:50:3e:29:f7:4a:
81:52:c3:02:47:be:83:26:00:3d:1c:5a:fd:e9:eb:b1:11:e2:
f4:f6:72:77:4d:78:3f:b5:bc:b8:01:22:d9:da:e1:e3:a7:99:
78:a1:a1:2d:5b:41:c3:25:e8:8a:c3:05:16:5d:0a:29:e4:e1:
31:a7:ab:69:2c:73:1c:93:9d:13:b5:41:2a:d3:90:f6:4a:fb:
13:1b:54:f1:05:5e:85:10:42:19:6c:53:27:3a:dd:85:46:47:
9d:74:fe:e3:ca:d7:35:51:01:b2:f9:38:5f:b2:7f:8f:33:be:
0f:10:00:f0:f4:77:dd:09:d0:57:b0:1f:60:ac:b4:f1:08:10:
e4:2a:ee:1c:e4:42:36:73:f1:be:48:b2:b6:74:86:23:3f:44:
a7:2b:a9:d6:1c:89:25:97:d6:34:88:c0:19:2d:30:60:e7:be:
2a:9c:57:3a:d5:3e:8b:ab:ca:d5:0b:d4:96:1d:56:10:50:5d:
98:18:04:5e:fb:9a:96:ec:a4:93:c3:4c:93:92:39:24:64:87:
f4:c5:28:91:13:a9:1a:59:46:bf:55:7f:06:53:35:15:d2:e4:
71:d8:84:01:33:44:e9:9d:11:31:74:76:c4:cc:f1:b2:20:39:
c5:c6:c8:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:47 2024 by rpki-client on console-fra.rpki-client.org