Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/oFtCy9BjvpYoSbSc424144jepbk.roa
File: oFtCy9BjvpYoSbSc424144jepbk.roa (raw, json)
Hash identifier: nLfxmPoC+9g3F68epSf6nPKmE0l2sJo2mdwpi4a7nnE=
Subject key identifier: A0:5B:42:CB:D0:63:BE:96:28:49:B4:9C:E3:6E:35:E3:88:DE:A5:B9
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 331DC447
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/oFtCy9BjvpYoSbSc424144jepbk.roa
Signing time: Sat 01 Jan 2022 10:59:04 +0000
ROA not before: Sat 01 Jan 2022 10:59:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19551
IP address blocks: 213.253.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 857588807 (0x331dc447)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 10:59:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a05b42cbd063be962849b49ce36e35e388dea5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5e:d0:44:c6:be:73:b3:d8:7a:76:76:88:39:
12:7c:71:6e:d8:39:43:00:02:33:89:29:c0:53:c4:
41:68:98:92:42:f4:67:42:cf:5a:ba:15:b9:9b:5c:
db:8c:80:f9:07:b6:03:11:11:1c:bc:2f:b6:f3:88:
a0:74:33:e4:94:d4:71:ca:cb:c2:40:b4:2b:61:81:
7b:8a:25:6e:0f:5d:c9:9b:e9:af:3c:cc:65:d8:c1:
25:66:2b:a4:ba:d8:89:0e:db:46:5c:ba:86:ae:70:
24:1c:19:8d:83:c8:34:67:79:8c:1a:04:03:93:c1:
39:32:09:ad:b9:ea:45:db:5a:4e:cf:56:41:b0:1e:
78:01:80:ad:37:a1:8b:d0:64:f6:9d:75:46:80:77:
54:54:2e:e1:d4:bd:1c:cc:43:25:a2:9c:25:33:9a:
73:93:c4:06:7c:31:11:d1:5c:7d:19:f9:d8:92:3b:
6c:91:42:a8:0c:ce:c4:11:5d:5b:f5:33:e5:64:14:
53:2b:a5:a4:09:b0:dd:f7:63:5d:a1:7a:3f:8e:07:
ab:78:6a:2f:d9:e2:8c:7c:bf:b4:c7:a5:a5:e1:2a:
23:05:c7:88:21:cd:63:ea:4c:1f:f3:b1:f8:ce:4b:
3c:aa:f1:19:1a:e0:1f:d2:98:cf:f9:9b:e4:81:ff:
32:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5B:42:CB:D0:63:BE:96:28:49:B4:9C:E3:6E:35:E3:88:DE:A5:B9
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/oFtCy9BjvpYoSbSc424144jepbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.253.215.0/24
Signature Algorithm: sha256WithRSAEncryption
60:f9:b5:f2:2e:8d:f9:98:c4:8b:db:37:1f:6f:93:75:f7:db:
07:0d:7e:f1:09:55:bd:f8:ff:39:f4:7a:9e:00:e3:aa:6c:d4:
24:dc:55:ee:9d:0e:e9:42:9a:64:fd:0e:4a:a6:d4:66:24:08:
28:a2:7b:b0:f9:3d:a9:a1:9d:fc:99:0f:3c:51:7c:b8:6d:ba:
53:f3:57:29:df:bb:b9:a4:1e:c5:2f:ac:3b:82:aa:49:fd:4d:
2e:43:e9:e0:b4:2d:02:c3:13:0d:97:3b:63:39:17:78:66:b9:
33:53:6b:03:8e:f5:f6:0b:34:4f:dc:e2:f0:fc:bb:ea:1b:e5:
63:4f:4e:2a:d0:b1:7a:10:85:53:24:fb:b0:d9:69:70:b6:e0:
43:f3:52:6c:f8:e7:7f:3b:97:88:ce:44:5f:9f:e1:fc:3e:d1:
d7:9d:ac:d2:0f:44:a5:97:26:46:f6:12:17:9b:2e:ff:74:4f:
eb:02:37:82:da:4d:6b:1b:17:d0:f0:18:e9:b6:62:4c:a0:31:
c0:9e:2e:07:9b:e9:de:31:9b:d5:fd:d0:ea:93:cd:a4:ff:1e:
b4:d0:3b:e4:f4:fc:55:72:1f:14:0f:b2:0d:bd:20:00:69:35:
ce:7b:9c:01:45:5a:e7:d7:50:87:3b:1c:fe:1a:95:9b:5a:65:
cd:e5:15:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:16 2024 by rpki-client on console-ams.rpki-client.org