Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/0k15HzajvqNQ6bxWoVUrbmtnpR0.roa
File: 0k15HzajvqNQ6bxWoVUrbmtnpR0.roa (raw, json)
Hash identifier: fqOpZCJlJjUEEBrb23/hsu4kIwYcqSrrBjtDX0G26Pg=
Subject key identifier: D2:4D:79:1F:36:A3:BE:A3:50:E9:BC:56:A1:55:2B:6E:6B:67:A5:1D
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2C9D0233
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/0k15HzajvqNQ6bxWoVUrbmtnpR0.roa
Signing time: Sat 01 Jan 2022 04:59:33 +0000
ROA not before: Sat 01 Jan 2022 04:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25506
IP address blocks: 213.189.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 748487219 (0x2c9d0233)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d24d791f36a3bea350e9bc56a1552b6e6b67a51d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:df:26:5a:9a:d0:33:c9:f1:a1:35:fa:96:45:
c3:97:b6:70:22:21:8b:dc:2d:59:44:12:81:95:ba:
94:0f:62:ee:aa:e9:cf:9f:47:eb:ed:e1:c5:fd:27:
cb:e3:a9:bf:1d:e5:08:18:8a:aa:f9:2d:50:f0:55:
61:fe:d0:e4:fd:0d:65:a4:35:b2:f7:11:42:42:77:
24:89:f9:1a:02:0d:57:6c:33:6b:f2:2a:4b:ac:28:
ec:a3:cd:3e:9f:58:be:c0:89:46:37:80:2f:e2:4b:
bb:bc:0e:47:b5:62:7b:56:5c:be:ce:6b:af:3a:ee:
eb:b0:22:f9:a2:a7:f1:d5:97:74:76:05:32:12:08:
97:32:72:9b:52:c2:89:2c:51:7d:1c:1d:90:f8:34:
92:f5:32:c7:71:87:f1:70:0d:57:87:08:a3:b1:91:
cf:c1:9c:f6:e1:4d:61:52:24:c1:73:36:d4:f0:c2:
e2:16:02:59:e7:0f:45:4c:99:ce:c2:ac:85:be:f0:
d8:ea:05:ce:2b:41:4e:f7:ac:e0:b0:c4:7f:2c:34:
fa:eb:80:ce:4e:ad:5a:19:9b:f9:7e:d0:45:7b:75:
70:65:4f:d7:c1:30:9b:1f:a6:b9:02:d6:e0:c1:cd:
70:61:4a:d2:c1:49:13:7e:b0:1c:0e:91:3b:43:af:
df:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:4D:79:1F:36:A3:BE:A3:50:E9:BC:56:A1:55:2B:6E:6B:67:A5:1D
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/0k15HzajvqNQ6bxWoVUrbmtnpR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.189.46.0/24
Signature Algorithm: sha256WithRSAEncryption
74:f2:db:6d:c7:54:11:f9:d1:5c:e1:ee:b7:80:e4:9f:73:80:
44:be:28:af:81:bb:c7:a6:6a:f4:81:35:dc:76:c3:bc:85:b4:
e7:f3:70:82:51:a2:a1:cc:1c:d9:1f:df:4f:fa:cf:8f:46:f1:
73:4a:95:7c:f8:d7:c5:95:be:a4:69:d1:3d:80:65:b5:57:e5:
bf:a2:6e:c7:58:8f:3f:c8:89:94:3b:5e:ee:fc:f8:12:45:81:
0e:b5:dd:a9:32:eb:32:a0:3f:85:7e:d0:66:b8:0f:37:2a:b7:
83:ac:d1:53:ba:c2:77:0d:47:72:2f:fe:a5:cd:c8:e3:f6:bb:
05:68:44:c1:ea:85:35:25:1e:ca:be:25:39:ac:a9:31:76:34:
75:4a:52:86:0c:aa:02:7e:da:e6:bf:7b:b1:8a:81:71:23:ec:
66:64:a4:e9:8e:de:3e:d2:33:87:8c:cb:fb:65:c6:16:10:82:
79:ad:d8:2b:1d:70:43:66:0e:30:f5:13:c1:5e:6c:9b:7f:7a:
31:9c:f2:8d:75:5e:e4:5a:d6:74:54:be:fe:07:4b:89:8c:4f:
12:e1:28:40:87:72:1d:fa:21:3d:3f:93:db:8d:59:f4:9d:69:
28:d4:16:73:1d:16:b6:7a:18:8f:6c:4a:40:07:03:66:2f:1c:
fb:e2:b7:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org