Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/3SRR4TL4fhlDSgyE77c3DYpCEp0.roa
File: 3SRR4TL4fhlDSgyE77c3DYpCEp0.roa (raw, json)
Hash identifier: STm9uJ0xgit3GFycGJgudKbzLbLt5DSybjNWvTf68Hk=
Subject key identifier: DD:24:51:E1:32:F8:7E:19:43:4A:0C:84:EF:B7:37:0D:8A:42:12:9D
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 0183C1E11253A3589275F2210774BF0F63E4
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/3SRR4TL4fhlDSgyE77c3DYpCEp0.roa
Signing time: Mon 10 Oct 2022 12:31:36 +0000
ROA not before: Mon 10 Oct 2022 12:31:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6976
IP address blocks: 134.255.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c1:e1:12:53:a3:58:92:75:f2:21:07:74:bf:0f:63:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Oct 10 12:31:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd2451e132f87e19434a0c84efb7370d8a42129d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8e:cd:0d:32:38:ef:46:12:2b:95:2e:ff:0e:
32:49:f4:c8:de:ce:6d:c3:f2:f5:b7:7a:64:88:fc:
4e:1e:0b:72:26:74:9f:d0:ba:ad:b6:71:8a:7f:03:
70:03:26:85:d4:99:01:2c:9d:1b:0e:91:5d:24:c4:
1d:44:6a:86:66:4a:b2:fb:75:eb:c9:16:84:a6:49:
4b:54:5e:97:d6:89:b4:8a:1f:c6:14:39:bc:7e:57:
1c:52:2e:36:36:07:c8:43:3a:b6:a2:9c:09:6f:c8:
04:60:0d:cb:77:fb:51:eb:d0:03:88:b8:77:60:96:
cc:ac:c3:78:cd:d0:5d:56:42:ed:76:2f:24:eb:9a:
6f:90:b6:f9:aa:37:ca:b4:7f:4a:9f:82:26:b6:3a:
83:81:6f:14:37:89:49:e5:63:5d:c4:96:8d:6c:59:
52:30:97:40:66:29:d0:41:80:58:ac:84:e3:ae:db:
38:79:90:ce:2a:93:ee:31:95:bf:e2:29:cd:fa:97:
01:58:35:1e:04:cd:bd:ae:31:62:ba:fc:13:76:2d:
40:92:ee:f4:e8:d9:3c:6e:08:e1:cb:fc:b7:38:72:
d3:5c:a6:e9:cd:b9:3f:01:8f:3f:7b:2b:22:d9:34:
dd:60:b6:9b:aa:b1:b5:41:7f:88:ea:0b:25:6c:ef:
39:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:24:51:E1:32:F8:7E:19:43:4A:0C:84:EF:B7:37:0D:8A:42:12:9D
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/3SRR4TL4fhlDSgyE77c3DYpCEp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.255.207.0/24
Signature Algorithm: sha256WithRSAEncryption
59:37:99:b5:37:5e:2c:82:0f:c2:d9:9a:85:81:cc:37:cf:0c:
a4:fa:3c:c0:54:7c:02:15:80:74:93:62:3c:03:9c:15:6d:24:
20:8b:c9:72:6b:e8:80:d9:58:cf:97:92:70:4a:a4:52:44:cf:
99:ba:ce:95:87:e1:05:54:66:9f:1f:b5:b4:3c:de:27:60:34:
3f:a9:05:b7:04:6f:51:ff:4f:d7:6f:c7:b0:99:47:af:2a:09:
af:6f:d0:c4:73:d4:0a:ee:f9:e2:72:f6:5b:3c:cb:00:6e:50:
6d:ed:96:01:e7:14:df:0b:ff:cc:4c:c3:ab:99:c5:3c:2c:e1:
a1:04:77:b5:f0:5d:28:32:98:41:a9:52:5b:14:58:ea:59:73:
2d:48:c3:28:8d:d6:dd:b7:39:2d:f8:0a:27:65:1f:5f:7e:23:
54:af:c0:b6:10:6c:d4:8f:5c:bc:03:d3:cc:1f:a9:0c:ce:1a:
61:76:00:bc:16:92:73:bf:14:9c:65:37:e2:cb:8c:0b:0b:e0:
19:5c:8b:0e:c4:cb:36:42:df:52:b1:4e:4d:2e:15:d7:23:13:
43:83:c1:43:ba:63:5a:cd:a0:47:05:40:a8:c6:f2:b5:47:e2:
40:85:ac:15:f0:01:07:9b:58:9c:09:e4:48:19:41:b6:62:83:
17:5d:7f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:42 2024 by rpki-client on console-fra.rpki-client.org