Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/2J8n6VW8DcCeSV1DeKIz6ngBel4.roa
File: 2J8n6VW8DcCeSV1DeKIz6ngBel4.roa (raw, json)
Hash identifier: QS6PcLCQjnf0PA0fa6MWPXaUrsodSUNBcW5a6K/nu/Q=
Subject key identifier: D8:9F:27:E9:55:BC:0D:C0:9E:49:5D:43:78:A2:33:EA:78:01:7A:5E
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018268DC4CBF3A18A42422776F4809D2721C
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/2J8n6VW8DcCeSV1DeKIz6ngBel4.roa
Signing time: Thu 04 Aug 2022 12:37:24 +0000
ROA not before: Thu 04 Aug 2022 12:37:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 213.176.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:68:dc:4c:bf:3a:18:a4:24:22:77:6f:48:09:d2:72:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 4 12:37:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d89f27e955bc0dc09e495d4378a233ea78017a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:99:b6:1e:a5:a6:ea:55:11:fb:02:fc:97:08:
4a:44:f8:87:d5:18:96:32:d2:ef:3d:16:58:1e:88:
2d:cf:2f:e2:45:8f:4e:d7:0e:54:74:e2:9d:40:54:
fa:14:a9:65:ac:85:50:14:03:7d:ad:00:9c:4a:63:
3f:d9:98:4f:2a:06:52:cb:c7:3e:cf:8c:24:c3:09:
f8:a3:b9:d9:66:8e:7b:40:10:09:22:09:f2:94:1e:
93:f8:2d:54:c3:41:cd:c4:c6:ad:4d:27:29:c6:6d:
d0:ed:aa:cb:b3:2f:f6:33:33:68:b6:69:a5:43:96:
eb:b0:41:2b:e7:64:81:d4:01:42:a7:9b:cb:62:54:
43:bd:46:ba:f3:7d:17:4a:cd:c5:6e:71:e6:3c:8d:
dd:8e:86:8a:52:97:d7:d2:36:61:be:6a:66:cf:c9:
ee:32:bb:34:b3:d7:c3:7c:ee:f9:4d:21:89:c4:aa:
f1:b7:fc:2e:8e:ef:59:db:d3:8b:48:09:70:5b:ee:
26:4d:ab:92:3e:41:64:6a:41:85:6f:2c:49:52:bf:
4c:71:99:49:17:bc:d1:49:2e:85:1d:26:52:bf:93:
60:3a:b4:71:68:5c:68:33:b3:74:93:8e:b3:d1:53:
88:d4:a4:51:50:c0:88:9e:97:26:f0:8c:c8:1e:aa:
b5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9F:27:E9:55:BC:0D:C0:9E:49:5D:43:78:A2:33:EA:78:01:7A:5E
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/2J8n6VW8DcCeSV1DeKIz6ngBel4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.176.112.0/21
Signature Algorithm: sha256WithRSAEncryption
68:a6:89:da:f3:cb:df:1e:a4:7a:d8:ce:a7:83:d3:62:2c:a7:
e2:f9:5d:69:30:a4:c6:42:07:e4:11:45:c4:f0:50:0a:45:4a:
bf:32:7f:71:96:00:a4:ad:ec:be:3e:7e:fc:d2:9b:6f:c5:6f:
3e:ce:70:42:be:59:af:ae:e8:a0:5a:7d:ae:73:9a:84:27:e3:
81:a0:1e:7c:ed:75:8b:65:8b:9e:5f:17:51:bc:b2:1b:db:c3:
be:df:bf:04:0c:fa:56:34:c5:d4:ea:ff:2f:20:f0:ec:69:79:
17:71:28:6c:7b:23:f6:1e:72:2b:13:11:69:f8:36:f4:31:b4:
86:30:cd:de:75:f0:7c:cb:0e:f5:5d:32:29:6b:45:72:55:ea:
be:1b:e0:15:69:d5:e5:c5:aa:a3:61:b4:37:12:57:31:7f:26:
c5:13:79:cb:2e:ea:dc:a7:21:f3:da:b7:fa:48:fb:2e:20:32:
ca:80:14:17:a4:50:cb:5d:db:a3:37:64:09:ae:22:a7:a3:8c:
d2:0b:b4:c8:97:90:be:79:47:ac:77:5e:49:94:cd:e0:1e:98:
ee:a5:ac:00:7b:8c:18:72:5a:9a:4e:3d:f0:e1:40:d5:7a:5f:
a5:3f:fa:5c:3a:18:2c:4a:db:46:16:42:2f:c3:d4:18:b7:15:
16:ab:04:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org