Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/9cd1d7-34e7-47c1-8484-c191410dc889/1/1gdNzWCxMACvFcsypQE-vvZ5RCY.roa
File: 1gdNzWCxMACvFcsypQE-vvZ5RCY.roa (raw, json)
Hash identifier: LBMn84D8z8O3fF88zLveAaW5ovFkol5U1gC2J5GORlo=
Subject key identifier: D6:07:4D:CD:60:B1:30:00:AF:15:CB:32:A5:01:3E:BE:F6:79:44:26
Certificate issuer: /CN=74d9c073b4f70697e2175c1a955f6ca8c3a6246b
Certificate serial: E7A547
Authority key identifier: 74:D9:C0:73:B4:F7:06:97:E2:17:5C:1A:95:5F:6C:A8:C3:A6:24:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNnAc7T3BpfiF1walV9sqMOmJGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/9cd1d7-34e7-47c1-8484-c191410dc889/1/1gdNzWCxMACvFcsypQE-vvZ5RCY.roa
Signing time: Sat 01 Jan 2022 05:03:04 +0000
ROA not before: Sat 01 Jan 2022 05:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212190
IP address blocks: 213.232.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15181127 (0xe7a547)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d9c073b4f70697e2175c1a955f6ca8c3a6246b
Validity
Not Before: Jan 1 05:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6074dcd60b13000af15cb32a5013ebef6794426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fb:90:75:dc:a7:5a:dd:db:49:d1:82:45:81:
a3:06:80:d1:f9:4b:0c:ad:1c:63:b2:4e:51:20:5c:
67:fb:0d:8a:96:22:7b:16:1a:fa:4f:6e:65:67:4b:
cb:8f:10:be:ab:ec:a4:f8:74:1c:59:a8:6a:d6:0c:
17:72:45:c2:88:ea:a4:5b:3a:e4:75:74:ca:f0:5e:
5b:08:ef:fb:e7:8c:8b:94:22:c0:11:9b:00:dd:49:
73:ea:57:f7:e2:c8:8d:66:57:c4:9e:10:72:ef:a4:
fa:b2:3d:fa:ed:c9:fb:e7:7b:0f:9f:1d:87:30:61:
55:da:8f:d8:cb:9d:cb:06:6f:c0:0c:3a:bb:52:ae:
1f:1e:a6:b0:d1:33:01:ba:6c:a6:8a:35:41:e4:14:
9b:fc:f6:67:07:30:d2:4e:f9:9e:28:5d:7c:13:13:
17:2a:e8:31:c9:7d:b3:61:39:5f:3a:c7:ac:89:e2:
98:83:a7:6a:e8:1e:35:33:fc:6a:6d:bb:94:19:68:
d7:94:bb:a4:6d:15:9e:2b:7d:a3:91:84:f4:14:fd:
ee:44:51:de:13:58:12:d8:f8:aa:35:97:70:75:67:
0e:ca:1d:4c:9f:c4:8b:d8:71:67:79:0e:4a:e1:4c:
6c:78:28:8a:43:e3:26:ab:b3:7b:7f:a4:b1:96:27:
41:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:07:4D:CD:60:B1:30:00:AF:15:CB:32:A5:01:3E:BE:F6:79:44:26
X509v3 Authority Key Identifier:
keyid:74:D9:C0:73:B4:F7:06:97:E2:17:5C:1A:95:5F:6C:A8:C3:A6:24:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNnAc7T3BpfiF1walV9sqMOmJGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/9cd1d7-34e7-47c1-8484-c191410dc889/1/1gdNzWCxMACvFcsypQE-vvZ5RCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/9cd1d7-34e7-47c1-8484-c191410dc889/1/dNnAc7T3BpfiF1walV9sqMOmJGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.217.0/24
Signature Algorithm: sha256WithRSAEncryption
70:4b:88:3b:d3:9b:21:f5:ef:cf:b7:74:c9:cb:64:19:25:9d:
3e:ee:49:54:23:aa:62:69:c4:7b:ca:94:84:aa:ef:44:27:ca:
d7:58:81:a1:fb:ac:f1:60:9e:a0:6d:b9:23:d3:84:ad:11:e9:
b3:e9:5c:dd:b6:8b:98:dc:e6:63:f4:2b:a0:10:8a:37:76:d2:
06:9b:9b:aa:78:0a:45:7d:d9:17:b4:c4:e2:da:9d:b0:a8:f8:
cf:b5:74:c8:52:24:59:99:4a:93:46:ce:59:97:4d:44:e4:09:
5b:0e:06:ec:c9:2e:8b:08:4f:f7:2f:3a:88:2a:de:4b:2b:02:
f9:ca:0f:49:fe:c5:34:80:a3:dd:1c:4b:00:24:e6:bf:03:ef:
7f:82:7d:be:32:16:65:52:c9:b2:c0:71:44:97:b1:30:e7:0c:
d2:08:52:3f:09:b3:93:6b:68:1d:30:76:f2:22:52:a2:79:de:
c2:f0:6c:f4:cf:55:54:ae:70:50:e8:7e:60:27:f9:31:43:d6:
71:2e:27:bc:48:9e:96:fa:c7:c0:86:10:76:f7:8f:9f:7a:10:
aa:fc:3d:d8:c1:a7:41:d9:6a:38:ac:56:de:46:21:5d:1d:16:
cf:7f:98:d9:4f:72:6d:08:14:f8:14:15:51:61:b0:78:63:2b:
cc:9b:23:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:44 2024 by rpki-client on console-fra.rpki-client.org