Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/I3fIVT-UH86T8tK1Xv2gQ0W_iB4.roa
File: I3fIVT-UH86T8tK1Xv2gQ0W_iB4.roa (raw, json)
Hash identifier: Qj+gZX8IryoioM3wRHgxq4FyuWyl9TLS91VnN3NHgyU=
Subject key identifier: 23:77:C8:55:3F:94:1F:CE:93:F2:D2:B5:5E:FD:A0:43:45:BF:88:1E
Certificate issuer: /CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Certificate serial: 12E455DB
Authority key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/I3fIVT-UH86T8tK1Xv2gQ0W_iB4.roa
Signing time: Fri 14 Jan 2022 15:49:39 +0000
ROA not before: Fri 14 Jan 2022 15:49:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15829
IP address blocks: 213.180.224.0/24 maxlen: 24
213.180.227.0/24 maxlen: 24
213.180.232.0/22 maxlen: 22
213.180.236.0/22 maxlen: 22
213.180.240.0/21 maxlen: 21
213.180.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 316954075 (0x12e455db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Validity
Not Before: Jan 14 15:49:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2377c8553f941fce93f2d2b55efda04345bf881e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:64:54:76:45:d3:72:d9:18:f3:86:f0:88:43:
a0:b5:a2:6c:60:b3:87:63:16:f3:5e:be:be:5c:cf:
f1:d4:70:a1:da:a5:8f:c8:8c:37:0f:b8:78:0d:aa:
e7:86:e9:1c:18:03:ac:44:59:73:1f:97:a3:a9:8c:
26:10:95:35:01:fe:3f:18:75:95:01:f1:eb:92:9c:
6b:b0:a3:c0:d3:c9:86:ca:af:7b:ea:ce:6c:1d:e2:
45:2c:20:79:89:dc:b1:b2:cc:a5:8c:9a:51:a7:09:
19:0d:9a:2d:b5:41:af:24:d1:8b:d9:ad:e5:ba:fa:
90:39:ce:d0:2f:e6:9e:de:45:53:5f:17:64:85:3f:
21:c4:7d:b0:3b:2a:ce:6c:97:77:2f:32:6a:1e:80:
ba:33:b5:7a:28:c1:61:77:1e:10:c5:da:ef:e3:ca:
3f:77:c7:d5:77:04:87:a0:be:bb:1b:5d:c3:35:1b:
be:67:87:aa:0f:65:0c:c9:9a:31:84:b4:f0:c8:bd:
32:92:c0:9d:63:39:ff:de:4f:c1:91:18:b6:55:7e:
c9:4f:57:3e:19:bb:80:59:1b:84:33:ba:ce:2f:d3:
01:dc:49:78:a5:6d:50:9b:5d:04:80:af:de:43:39:
b9:90:95:c5:00:79:8b:b0:b5:45:a6:e6:0b:24:a7:
88:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:77:C8:55:3F:94:1F:CE:93:F2:D2:B5:5E:FD:A0:43:45:BF:88:1E
X509v3 Authority Key Identifier:
keyid:47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/I3fIVT-UH86T8tK1Xv2gQ0W_iB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.180.224.0/24
213.180.227.0/24
213.180.232.0-213.180.251.255
Signature Algorithm: sha256WithRSAEncryption
8c:83:8e:c7:97:9e:d6:c7:8c:d6:2e:d3:cb:4a:67:e8:b9:c8:
6c:e2:1d:94:9a:83:61:5e:39:a7:39:dd:be:13:0f:58:9e:aa:
b6:a4:38:3d:7c:88:61:56:f4:55:71:b7:0e:50:a8:31:c9:61:
f2:5e:20:80:b8:41:9b:e8:89:56:b2:df:37:b8:dd:29:d6:c7:
23:4a:e3:dc:86:8c:7b:78:63:ff:f0:e7:c8:29:21:10:fd:1e:
a9:04:7c:a9:73:50:4f:1a:56:78:f3:cd:bb:81:41:69:1c:3b:
28:05:42:a3:6a:54:ec:a9:c8:9f:4f:e3:96:9e:60:15:53:d5:
8e:a1:5c:bb:96:a7:76:86:4c:f1:21:09:09:f9:f6:9e:dd:54:
6e:81:30:4c:ed:65:8b:af:5d:50:bf:87:78:dd:29:31:b9:34:
2b:52:cd:68:96:b2:6d:e2:48:7a:59:b8:e0:ac:0a:da:0d:c1:
c2:89:e5:57:59:96:d1:99:2c:0b:49:50:69:26:28:f0:e8:c2:
4f:14:87:e9:6f:a1:9f:8d:f8:a7:77:30:28:c4:5e:3c:d5:ac:
27:ac:fa:8d:d6:a8:0c:54:c5:bf:2c:ce:33:38:ae:eb:e6:67:
20:e4:91:eb:34:99:02:9f:1d:1b:dc:13:69:60:d4:dd:0b:84:
c5:0d:ac:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:47 2024 by rpki-client on console-fra.rpki-client.org