Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/JOzDvT0ydUX1jAcYmB9H7J0lRCc.roa
File: JOzDvT0ydUX1jAcYmB9H7J0lRCc.roa (raw, json)
Hash identifier: squukwE1M0LoiPdgRLUcpV/VPFZWlPppTt7jRkSqxms=
Subject key identifier: 24:EC:C3:BD:3D:32:75:45:F5:8C:07:18:98:1F:47:EC:9D:25:44:27
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0F964666
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/JOzDvT0ydUX1jAcYmB9H7J0lRCc.roa
Signing time: Sat 01 Jan 2022 00:51:02 +0000
ROA not before: Sat 01 Jan 2022 00:51:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4546
IP address blocks: 213.41.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261506662 (0xf964666)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 1 00:51:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24ecc3bd3d327545f58c0718981f47ec9d254427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:36:f0:da:b6:a7:6e:45:81:01:e1:a6:e5:7b:
a5:88:e4:a6:16:f8:1d:2e:11:fd:aa:09:ed:d9:2e:
a8:9b:e4:81:6e:fe:58:13:d4:eb:92:f7:10:f0:96:
1f:4d:a2:16:ac:f9:62:fd:a4:87:81:2e:4b:e5:56:
79:c3:0b:bd:17:2d:d2:d9:41:25:8b:ee:29:c2:d6:
10:a1:44:c6:02:19:cd:3f:1c:28:3a:15:de:2d:cb:
89:7e:09:22:47:f2:b7:95:ff:86:bc:cf:55:32:61:
dd:ad:f3:d1:d2:68:4e:bd:50:8f:01:ea:32:50:28:
ff:f0:89:18:1d:a7:d8:88:c1:ce:e9:ab:6f:bd:55:
13:6e:93:1f:8d:9b:1a:84:ea:4d:72:b6:45:a8:e0:
1a:6c:b4:b0:49:a0:9a:a3:d2:3e:4e:31:c3:52:df:
8e:f1:0f:16:75:5e:1e:dc:e8:49:98:05:16:59:4b:
a6:de:b8:61:af:9b:17:2b:e8:a6:aa:91:73:8d:fe:
4b:1a:6d:c5:82:e9:e4:19:0e:fd:8a:95:d4:8c:8d:
9e:b5:02:82:42:37:62:f7:7e:d0:a0:e6:7e:98:d1:
b1:4c:a8:30:5a:92:7f:5c:e0:b8:5c:15:85:57:1f:
d5:e5:ac:0c:81:de:b4:dc:cc:21:8a:c8:df:40:f9:
14:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:EC:C3:BD:3D:32:75:45:F5:8C:07:18:98:1F:47:EC:9D:25:44:27
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/JOzDvT0ydUX1jAcYmB9H7J0lRCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.41.91.0/24
Signature Algorithm: sha256WithRSAEncryption
51:c8:0c:12:48:eb:27:5a:db:b6:11:3b:f0:d6:4a:c8:bc:d4:
c8:d7:6f:d6:f1:22:90:1a:50:4a:97:aa:78:cd:8e:cf:b6:8c:
df:10:00:97:c1:60:a8:f1:6a:d1:4e:84:45:db:c6:5b:98:f6:
a9:64:00:75:37:35:01:5b:a7:40:6e:0f:d0:ca:1b:d1:0b:0d:
3e:4e:c2:85:48:7e:50:7f:0f:38:c1:25:d3:65:76:11:e1:05:
ce:37:58:83:ec:ed:bd:48:2d:c6:a5:ce:da:ee:af:0c:31:63:
10:92:88:18:45:41:5f:bc:7f:33:e4:41:2b:17:be:43:34:99:
fd:7b:1f:a2:91:d8:96:f5:f1:d9:d3:6f:21:16:74:6e:0c:80:
c7:65:c4:5b:15:fd:b3:0a:8b:6f:d3:26:25:11:38:46:9f:84:
e7:f5:68:b4:87:16:84:46:b5:a1:dd:15:47:45:a6:6c:c9:34:
cc:01:33:48:ac:0f:4e:6c:b0:ed:ec:22:2b:d5:1a:e6:b9:e3:
db:96:47:50:3e:f0:df:57:53:92:ae:1a:80:f6:7a:22:12:9f:
dc:95:15:f0:6d:cc:7c:0d:96:89:24:df:6f:c8:be:81:14:1a:
79:0e:1c:bd:0a:15:19:a6:6b:5b:8c:56:40:ce:4a:ae:de:89:
e5:6a:74:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:28 2024 by rpki-client on console-ams.rpki-client.org