Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/1-t7lrQVXnEPiBJBchhEsj7MDo7I.roa
File: 1-t7lrQVXnEPiBJBchhEsj7MDo7I.roa (raw, json)
Hash identifier: cmoednJ4zh84RXBei6tOWkaX+TuE/DPnp2pvNDpFJ3E=
Subject key identifier: FA:DE:E5:AD:05:57:9C:43:E2:04:90:5C:86:11:2C:8F:B3:03:A3:B2
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0FA06F08
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/1-t7lrQVXnEPiBJBchhEsj7MDo7I.roa
Signing time: Sat 01 Jan 2022 00:51:07 +0000
ROA not before: Sat 01 Jan 2022 00:51:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54128
IP address blocks: 213.86.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262172424 (0xfa06f08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 1 00:51:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fadee5ad05579c43e204905c86112c8fb303a3b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:43:ad:64:47:ed:17:25:15:e6:d7:15:b6:48:
d9:b5:0f:17:b3:51:c8:6d:c3:77:86:be:ea:8f:41:
67:e9:db:6b:78:31:71:e9:ca:b6:61:f0:20:b2:72:
1f:f4:4e:e1:af:47:10:3e:b9:62:6c:e4:84:b0:69:
51:94:8a:9d:3e:d5:e1:df:92:39:03:35:38:c9:6b:
53:80:fc:8f:12:fb:0e:e6:1c:e1:cc:17:65:e5:66:
ba:b1:ba:0a:c8:51:b1:0e:21:38:16:c0:ff:73:05:
65:65:97:51:91:17:5b:5d:fd:71:5c:63:07:48:45:
08:c9:c4:4a:48:48:cc:5a:51:71:cb:3d:a4:96:3f:
0f:47:ef:7f:5d:e5:95:db:d8:b1:49:39:cc:c7:57:
c0:76:ed:ef:28:83:7e:50:0d:39:f0:9f:8d:7f:74:
66:dc:38:c8:55:e2:1c:32:4d:49:79:7b:e6:22:2f:
a6:9d:dd:40:12:f2:9d:5e:18:36:89:d6:66:57:db:
25:97:49:1f:07:46:1c:b2:b1:a5:c6:4d:50:af:fd:
b6:ec:09:3e:d0:2d:7f:30:e7:43:1e:67:e4:d6:33:
16:fd:96:75:f8:ea:25:04:be:4c:8c:ee:77:91:7d:
85:fb:f6:af:96:7b:2a:cf:08:0f:2f:8c:56:52:cd:
ae:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:DE:E5:AD:05:57:9C:43:E2:04:90:5C:86:11:2C:8F:B3:03:A3:B2
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/1-t7lrQVXnEPiBJBchhEsj7MDo7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.86.124.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:0f:42:be:41:2c:c2:dd:44:82:6c:c0:03:de:17:eb:16:d5:
27:68:d5:62:c5:ae:85:40:10:4d:a5:f3:ae:37:bb:a9:8d:3b:
f0:d5:a8:8a:7a:e1:b2:25:5f:6c:f5:9e:0a:b8:f3:f5:6c:3e:
1c:3d:e5:55:a5:4e:2b:50:56:7c:a7:8d:c1:d5:db:08:d8:af:
cb:d8:24:e7:68:49:c9:97:a6:6e:91:6f:d0:ee:1a:97:48:c3:
bd:d3:3c:33:a3:9b:db:b2:30:db:f6:18:f1:9a:c6:62:f9:02:
2d:11:76:a0:e9:30:a7:2c:9d:48:38:a0:77:f9:3a:2a:24:b8:
fc:e9:2e:49:6a:28:9d:22:2c:26:97:31:87:c2:ea:96:3f:a5:
a0:ee:e5:cd:7f:1d:89:44:72:5c:de:1a:c0:e5:18:63:3f:6b:
5a:c0:6c:9d:a4:85:e2:7a:6f:52:99:86:aa:dd:ba:0f:cf:98:
00:a5:7e:a6:e9:59:0f:c1:0e:59:39:7e:3f:7c:48:94:17:8e:
50:d3:0d:91:d4:ff:e1:5f:cc:78:d6:43:81:f6:89:be:e5:fd:
bd:d4:f2:1d:27:9b:f3:86:65:69:32:ff:a6:2a:b4:a3:fe:ba:
58:16:ab:f5:7c:c6:61:ed:0c:bd:77:d1:56:08:10:9b:52:a9:
4e:37:13:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:27 2024 by rpki-client on console-ams.rpki-client.org