Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/cmnd3a1lKdXwNzoxnNIIquvttPE.roa
File: cmnd3a1lKdXwNzoxnNIIquvttPE.roa (raw, json)
Hash identifier: cCRFz08r9C8uFqssXH1Db3BpTI5A1/XnCZRM0cgzxo8=
Subject key identifier: 72:69:DD:DD:AD:65:29:D5:F0:37:3A:31:9C:D2:08:AA:EB:ED:B4:F1
Certificate issuer: /CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Certificate serial: 41F30A6C
Authority key identifier: 92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/cmnd3a1lKdXwNzoxnNIIquvttPE.roa
Signing time: Sat 01 Jan 2022 16:05:07 +0000
ROA not before: Sat 01 Jan 2022 16:05:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200982
IP address blocks: 213.59.156.0/23 maxlen: 23
81.177.196.0/23 maxlen: 23
213.59.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1106446956 (0x41f30a6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Validity
Not Before: Jan 1 16:05:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7269ddddad6529d5f0373a319cd208aaebedb4f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a9:57:35:94:d3:e3:bd:ff:17:1e:1b:02:b2:
ee:8f:96:4f:4c:b1:b4:d0:a0:4a:45:b0:e2:a0:be:
f7:77:01:a9:fa:a4:23:8d:25:dc:29:6b:d4:d0:5f:
53:e9:b9:ea:7c:d2:23:3e:2d:e1:a1:3f:59:da:75:
dc:c8:4b:b8:1f:36:d9:d7:34:3c:e0:c0:29:18:96:
b6:1a:83:b2:a1:0f:a4:17:ed:72:0d:0d:29:bb:b3:
12:72:33:0c:2d:bc:27:d4:92:81:b6:16:81:02:1b:
8a:bf:99:81:b2:00:93:8f:7d:03:69:3e:ac:ee:8c:
24:d1:d1:47:9c:bb:d5:84:b7:5f:3b:65:dc:00:f1:
d0:d1:64:9a:66:bd:b4:e8:ea:5e:94:b6:ed:38:18:
da:8b:30:b5:f6:55:40:72:11:3d:7f:c5:d5:db:48:
df:31:b6:2a:d7:b9:91:ec:b7:3c:17:f0:1e:3b:eb:
cb:b5:c3:37:53:33:c6:84:7c:9f:90:01:61:40:7d:
f1:c3:b0:4a:bd:78:12:94:e2:fd:c6:35:21:52:2a:
95:83:d7:51:c7:44:86:50:9d:9c:fc:76:22:fe:40:
f6:fa:dc:e5:71:d1:a5:1f:87:ee:9f:a1:22:fa:1b:
f6:4a:d1:7e:50:ca:fb:6e:9b:47:c3:5a:cc:9b:39:
b2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:69:DD:DD:AD:65:29:D5:F0:37:3A:31:9C:D2:08:AA:EB:ED:B4:F1
X509v3 Authority Key Identifier:
keyid:92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/cmnd3a1lKdXwNzoxnNIIquvttPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.177.196.0/23
213.59.136.0/22
213.59.156.0/23
Signature Algorithm: sha256WithRSAEncryption
48:fa:8d:25:70:95:3b:a2:f2:98:cb:95:6b:a1:b3:7c:da:f7:
db:1e:ca:36:da:11:fb:2c:f4:d2:93:39:d1:28:6d:16:26:08:
b5:08:12:de:91:ff:22:23:37:1b:dc:38:14:fd:7f:eb:8c:99:
da:ab:1f:2f:a5:40:38:8b:98:45:fa:89:9e:e5:5d:8e:00:00:
88:d6:71:a9:4e:5b:be:7a:cd:73:12:40:53:7b:98:05:54:86:
04:53:df:49:05:eb:b0:59:ed:3a:99:93:a6:2d:a0:85:06:19:
87:91:51:cf:02:53:7b:01:87:13:8f:1a:a5:b2:f0:e2:e1:93:
43:d0:21:a7:ea:28:37:8a:7a:e7:6e:b1:67:b4:f3:87:a6:d1:
8d:c9:5e:7b:76:6b:d5:01:a4:65:cc:d6:1f:19:d2:e8:f4:9c:
10:a7:2a:d9:3f:71:34:f4:df:d1:d1:5b:b8:44:eb:a0:08:88:
e8:35:45:66:5a:18:13:22:e4:2f:97:68:50:9f:27:ed:76:bf:
4e:a6:3d:f0:bc:77:91:46:6b:e5:03:c1:25:5d:24:ed:41:4c:
cb:0d:c5:a3:44:bb:98:3f:1c:30:1e:2b:51:27:50:62:cc:6a:
aa:83:68:70:51:94:7e:77:b7:c4:15:e6:79:06:6a:da:cc:e4:
06:d1:9f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:13 2024 by rpki-client on console-ams.rpki-client.org