Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/0kXj2my9Chkrzfz7Bf5iJWvjZhU.roa
File: 0kXj2my9Chkrzfz7Bf5iJWvjZhU.roa (raw, json)
Hash identifier: 0VRMjQsFXMwsuaN45/nNwS39VI/bVHxbTxHkcIERF1o=
Subject key identifier: D2:45:E3:DA:6C:BD:0A:19:2B:CD:FC:FB:05:FE:62:25:6B:E3:66:15
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0B60753B
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/0kXj2my9Chkrzfz7Bf5iJWvjZhU.roa
Signing time: Sat 01 Jan 2022 08:58:38 +0000
ROA not before: Sat 01 Jan 2022 08:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49563
IP address blocks: 212.15.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190870843 (0xb60753b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 08:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d245e3da6cbd0a192bcdfcfb05fe62256be36615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f1:be:e5:aa:89:a9:5e:2a:47:9f:eb:9f:c4:
bb:20:31:d5:cb:aa:9e:5f:e2:a9:ba:fa:d9:e7:b2:
0e:48:65:b8:da:3c:7d:98:49:9c:17:46:cc:e4:6c:
cc:11:dd:66:92:62:a3:98:ff:3d:5a:bf:62:51:c3:
a9:d9:b5:ad:73:90:0d:da:5f:5c:c0:06:2a:8b:d4:
57:0d:89:20:f7:b8:5d:3c:e1:f7:3e:38:28:34:13:
50:b7:c1:94:da:ea:7e:57:4e:90:15:8e:db:ab:79:
f4:1c:52:6c:2f:82:42:bd:83:c0:28:be:cc:95:3e:
47:a8:8e:96:15:ee:19:f5:b6:20:52:7b:28:6b:48:
8c:d8:a4:4f:cd:58:2c:c0:46:b2:2c:1f:3a:42:46:
98:2d:44:d9:c4:ff:61:e8:d3:b8:ff:29:cf:69:d8:
1c:aa:79:f6:0c:20:68:5f:fa:f2:ec:b2:37:95:ab:
8b:d2:aa:05:77:2f:9a:09:49:dc:cf:51:1f:66:26:
45:6b:40:ea:76:e0:59:aa:69:91:e9:99:b3:68:87:
73:ab:02:f7:72:8c:a1:ab:c7:de:12:8d:98:14:ba:
46:08:a6:4a:f0:20:70:45:c5:db:78:cd:48:9c:29:
71:07:41:19:a8:70:a1:d9:79:3b:33:e9:54:84:80:
75:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:45:E3:DA:6C:BD:0A:19:2B:CD:FC:FB:05:FE:62:25:6B:E3:66:15
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/0kXj2my9Chkrzfz7Bf5iJWvjZhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.15.24.0/24
Signature Algorithm: sha256WithRSAEncryption
08:03:b2:f0:3d:ef:df:6f:31:ed:36:67:1d:f4:42:8d:29:2b:
c4:1e:cf:84:20:94:8b:38:26:4a:b2:4d:11:26:46:ae:c7:e0:
a2:7f:af:49:63:4a:fe:7e:a1:3d:bc:98:5c:ba:df:e5:a7:4a:
6d:d4:49:a4:f5:8f:87:6a:45:3c:3c:78:79:6b:09:5c:7d:f3:
99:e7:b3:c6:9a:8b:ae:60:2f:53:96:fc:1c:e0:8c:4a:03:c7:
1d:5d:d0:b3:4b:e9:9a:e8:a0:fd:f9:80:5b:bf:45:42:6c:2e:
19:c4:f7:c8:d4:63:10:71:73:42:0c:27:7a:47:67:92:0e:0d:
bc:c6:cb:83:1d:07:c4:a0:3e:67:58:ec:5d:5c:16:38:fd:ec:
d9:fa:cd:0e:44:80:7a:49:2f:d3:ed:85:34:a1:21:eb:73:71:
b5:af:eb:4e:ea:ee:6f:7f:66:98:ac:df:03:76:a2:c6:94:03:
9a:df:96:ad:38:51:a1:a3:cb:91:04:6c:c3:b5:40:c2:62:1c:
59:ed:7f:18:2b:dd:04:e9:3b:32:7d:d1:b4:43:c3:0b:4a:cf:
71:10:94:44:08:0b:58:25:54:c4:8e:9e:6a:36:44:2e:0a:84:
95:da:6c:40:93:14:a4:02:e7:08:b9:0a:b2:84:ac:98:92:3e:
0e:65:98:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org