Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/dBTzaYkMkyosgPavJUet2zmuLoc.roa
File: dBTzaYkMkyosgPavJUet2zmuLoc.roa (raw, json)
Hash identifier: l0rWOwCJXXuqqSURKsWhYmolTyHB6mxokqoFVuwDuyk=
Subject key identifier: 74:14:F3:69:89:0C:93:2A:2C:80:F6:AF:25:47:AD:DB:39:AE:2E:87
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 0E36F528
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/dBTzaYkMkyosgPavJUet2zmuLoc.roa
Signing time: Wed 20 Apr 2022 06:37:51 +0000
ROA not before: Wed 20 Apr 2022 06:37:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39575
IP address blocks: 213.128.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238482728 (0xe36f528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Apr 20 06:37:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7414f369890c932a2c80f6af2547addb39ae2e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:58:d7:45:11:c4:2e:ae:cc:e7:31:46:e5:92:
85:1b:21:3c:fe:21:54:e1:11:00:9a:cd:e4:10:fc:
3b:77:19:b8:b8:4f:b8:a6:aa:fe:a0:9e:bc:4f:93:
e1:cb:ef:74:20:bf:b1:9a:76:8f:f4:45:23:33:15:
f7:b6:4d:a7:ea:88:e0:90:2e:fa:52:17:84:2a:33:
bd:37:7d:56:6e:94:ef:d8:6c:cf:83:0c:f3:6b:f2:
0b:2a:f5:03:28:f3:2b:58:e5:a6:1f:87:1f:9e:f4:
91:50:cd:19:74:c0:14:7e:bd:03:db:94:e0:28:50:
63:e0:e7:7f:d9:55:99:00:50:97:ff:fa:47:fd:aa:
3c:0d:18:29:3c:3b:1a:bb:38:38:2a:fd:11:21:75:
c8:5d:32:34:20:8d:23:08:c4:c9:ba:46:0d:77:db:
73:22:69:51:6b:6b:d7:03:34:f4:ee:d9:0d:3e:b1:
1f:db:cf:de:cb:8f:d9:8e:41:30:e5:5d:67:02:fe:
89:7f:d8:c9:a1:b0:59:14:85:2d:28:41:99:8c:2c:
e1:85:3e:82:35:2b:b6:89:0a:9d:fc:15:b0:7f:25:
88:10:c3:9a:86:b6:ac:f9:45:06:f3:4e:f7:05:6c:
88:94:5d:59:fe:69:f6:91:76:ec:72:15:6e:f9:4f:
57:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:14:F3:69:89:0C:93:2A:2C:80:F6:AF:25:47:AD:DB:39:AE:2E:87
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/dBTzaYkMkyosgPavJUet2zmuLoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.128.209.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:38:12:a5:69:b8:81:e7:6c:36:42:59:34:8f:a0:c2:d7:f0:
69:f1:fc:75:ba:e6:08:65:f2:d3:68:44:d3:3a:4f:af:98:01:
6a:c0:76:10:e0:38:8f:39:6a:43:d5:89:e0:4e:6b:1d:9c:5d:
b9:5f:10:2d:a8:99:7b:04:9c:ca:14:de:7e:8c:fc:88:a2:2c:
ff:a3:1f:73:29:b9:86:af:e0:98:af:a6:cd:eb:72:eb:9f:f7:
24:21:39:59:6e:02:1c:f1:75:f4:83:ef:27:e5:34:4c:25:94:
46:f6:da:b9:38:88:da:f4:5e:69:5f:4d:cd:dd:e6:3c:f6:e7:
ce:66:9e:d5:b7:50:8d:dd:a9:c9:0e:ad:5e:6f:a4:5f:80:dd:
53:51:4c:bd:ee:c3:d8:0d:0d:17:71:cc:72:d4:12:76:c3:79:
2f:07:65:a1:64:37:1b:7b:b8:f4:4e:61:ac:c9:7b:e0:3d:eb:
83:2c:4a:e1:f3:bc:22:76:7d:ee:33:fc:c3:0d:70:3e:3b:df:
3b:c7:45:42:c0:03:bf:15:04:d3:c2:d1:ae:37:eb:20:95:c6:
b7:9e:da:c9:87:8d:96:7e:1e:a6:e7:10:08:43:d1:28:cb:c6:
7c:43:04:59:49:37:83:0d:7a:02:85:26:6f:01:f1:02:e8:eb:
e3:db:c6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:28 2024 by rpki-client on console-ams.rpki-client.org