Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/4j5zwaB8t_jLtX0XmgExpbyVYfA.roa
File: 4j5zwaB8t_jLtX0XmgExpbyVYfA.roa (raw, json)
Hash identifier: E+UBa/fwB1g65hQNfBQqu598Rs9sx90QgaPd8MfWYhM=
Subject key identifier: E2:3E:73:C1:A0:7C:B7:F8:CB:B5:7D:17:9A:01:31:A5:BC:95:61:F0
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 13F91832
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/4j5zwaB8t_jLtX0XmgExpbyVYfA.roa
Signing time: Sat 01 Jan 2022 11:55:32 +0000
ROA not before: Sat 01 Jan 2022 11:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202505
IP address blocks: 213.238.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335091762 (0x13f91832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 11:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e23e73c1a07cb7f8cbb57d179a0131a5bc9561f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:07:ef:bf:48:1f:64:4d:0d:5d:94:69:df:36:
c4:9e:9b:3c:22:3c:80:92:ba:81:37:bc:3f:8b:03:
da:08:bf:a4:9d:48:79:90:cb:fc:1e:6d:10:57:ea:
1e:bc:6e:12:e7:00:df:cf:e2:61:28:e4:9a:fe:30:
f5:e5:c7:5c:6a:a1:b9:65:8f:91:0e:6f:0b:77:98:
62:3a:23:9a:f8:b0:a8:92:12:ab:d8:dc:62:5d:70:
99:22:68:eb:12:af:b4:59:8c:ec:49:50:78:78:8a:
8d:b7:76:3a:a2:df:7f:9b:be:0f:c3:04:0b:d7:0a:
e1:32:84:05:2c:9c:b5:d1:ff:5e:e9:af:2f:b4:61:
6d:21:17:49:12:82:db:86:31:ee:7c:bb:4c:c9:47:
10:8c:54:0a:ed:80:8d:05:82:10:03:a9:e1:3b:7e:
a9:ef:7e:a4:5e:23:c3:54:34:4b:65:88:50:0e:b4:
53:1c:10:3c:dc:ca:b9:fe:00:31:52:fb:78:6f:30:
12:40:66:ae:f0:c0:65:ef:00:78:60:90:3a:97:90:
93:76:14:54:d1:d3:0b:74:09:f4:33:42:aa:55:c3:
9e:a8:ae:95:3f:78:c7:45:c6:f4:b7:2b:e3:00:3f:
c9:f3:a2:da:75:f8:16:7b:25:d5:37:2d:bf:6c:29:
8d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:3E:73:C1:A0:7C:B7:F8:CB:B5:7D:17:9A:01:31:A5:BC:95:61:F0
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/4j5zwaB8t_jLtX0XmgExpbyVYfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.180.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:48:c4:3b:84:39:a7:d0:3a:ad:16:08:3d:bc:ca:6a:50:89:
ce:ad:71:bc:0f:8c:63:ca:ac:bd:c4:f5:dc:42:77:0d:a4:d2:
ba:3b:cb:dc:a5:e5:bd:a9:56:0e:56:0c:72:38:30:6a:1a:bf:
7f:13:cc:bb:bc:af:e1:0f:f7:66:28:a0:d0:4e:5c:ad:99:a5:
04:7d:4d:f1:73:0c:88:37:ae:01:11:63:75:f4:ef:d2:69:05:
ab:e4:e5:c5:0f:fe:f7:0f:be:9d:60:07:fd:37:00:c8:20:85:
dd:2a:c4:e7:09:45:41:fb:a2:a9:87:19:ae:81:f2:15:09:69:
b4:eb:a9:63:67:ba:7c:c4:73:ad:c6:79:c8:76:66:71:cf:ca:
72:2e:08:ca:3e:48:1b:50:cc:ee:0a:73:62:4d:59:35:cc:ca:
5a:3d:a8:cd:d0:79:51:f9:26:06:7d:09:03:15:a5:15:d9:cf:
1c:af:24:d9:b4:ae:9d:1c:4f:65:d2:b0:1a:f8:9d:38:46:44:
8e:45:d3:21:67:2c:fe:a5:ea:f6:70:56:b6:7f:7e:31:a7:12:
ad:54:b4:ca:59:a6:cd:db:eb:6a:ce:6f:13:04:b6:0d:b0:c6:
92:02:20:5f:1c:87:13:9e:70:db:03:a6:17:2d:a1:43:80:24:
c2:b3:74:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:36 2024 by rpki-client on console-ams.rpki-client.org