Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/F2Pm8EcN0FOoCN-LV0gKyrorjJY.roa
File: F2Pm8EcN0FOoCN-LV0gKyrorjJY.roa (raw, json)
Hash identifier: DzTm4hKWRlagjlDJUzZdePFg8fDYumAT3+iONGjnuKI=
Subject key identifier: 17:63:E6:F0:47:0D:D0:53:A8:08:DF:8B:57:48:0A:CA:BA:2B:8C:96
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 13FD1CF5
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/F2Pm8EcN0FOoCN-LV0gKyrorjJY.roa
Signing time: Sat 01 Jan 2022 11:55:34 +0000
ROA not before: Sat 01 Jan 2022 11:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213083
IP address blocks: 213.238.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335355125 (0x13fd1cf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 11:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1763e6f0470dd053a808df8b57480acaba2b8c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4d:7a:5d:11:24:6e:f7:c2:b4:ad:99:6f:da:
1b:5b:57:c6:f7:f2:cd:59:6e:9c:e1:8a:ef:d0:2a:
7c:df:86:0b:52:3f:d0:23:2b:c7:15:2f:e2:8e:a9:
bd:8c:cd:bf:7e:34:9e:9c:90:23:7f:5f:3f:6a:a7:
0e:59:c4:8c:61:cb:ca:5e:f9:44:41:01:b8:77:97:
da:6f:f8:98:45:e8:bc:1f:d9:21:07:3e:46:93:ee:
c1:97:f9:4f:df:a7:e5:b5:08:f0:bb:99:5b:7b:f7:
ee:4c:4a:49:47:41:42:16:dd:3f:cd:80:be:88:79:
a9:57:4a:f0:0a:6d:6d:12:d5:f4:24:37:95:d4:10:
9e:4e:a4:2e:23:ff:db:a9:cf:73:51:92:be:75:f7:
8a:92:e9:54:9f:b7:bd:a4:84:0c:2c:ee:07:9f:36:
ff:eb:55:bd:6c:68:89:47:ec:e3:eb:d2:0e:d8:c0:
76:54:98:3f:bb:f7:59:aa:e9:08:a4:03:49:55:fb:
0f:6c:89:f9:e3:dd:45:20:90:d6:f8:4d:ed:a6:64:
59:88:d6:a9:94:d7:66:fa:2e:6b:ab:5b:8d:2e:58:
8f:0a:0a:5c:74:9d:40:38:77:31:bd:ce:3e:aa:6b:
3c:0c:18:ec:35:f3:7e:31:6d:f5:b8:02:19:4c:51:
d7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:63:E6:F0:47:0D:D0:53:A8:08:DF:8B:57:48:0A:CA:BA:2B:8C:96
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/F2Pm8EcN0FOoCN-LV0gKyrorjJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.185.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:9e:e1:fa:f1:ac:69:dd:b4:7c:db:78:e3:17:6f:5e:46:22:
49:f2:22:c5:c3:14:7c:a8:33:dd:12:25:a5:9f:0f:62:9d:a0:
36:e9:d4:8c:da:01:5e:ab:c9:c7:34:3d:5c:c8:2b:2d:b7:c3:
5c:14:9e:e9:bc:02:24:cd:cf:50:f9:df:01:7c:14:d4:fa:e5:
9f:fc:17:4d:87:18:8c:e5:ac:ce:5d:c7:ac:d6:59:13:2f:f5:
f9:24:2a:08:b2:64:84:ce:66:52:ea:37:5a:17:f2:58:d9:43:
60:ad:5b:f3:6c:68:5d:16:ed:ed:1f:cd:76:bd:48:0f:97:02:
1e:22:56:31:e8:3f:c0:a3:66:6a:3c:e0:17:6e:36:43:3d:43:
ab:83:48:d4:d3:2b:7a:4f:8f:1d:ad:f6:1a:ef:b6:06:16:af:
a5:94:5d:03:f7:34:3f:54:0b:e0:35:fc:48:ad:7b:73:e9:15:
35:21:5d:29:ab:96:28:2d:d0:1e:fc:53:b4:c0:fe:18:8d:0e:
0a:9e:37:15:b2:bf:cc:ee:eb:0e:ef:47:6d:55:6b:c6:70:39:
a9:78:bc:74:99:50:73:80:d7:a9:03:b1:cc:1d:56:54:a9:88:
59:21:92:35:ad:be:da:d8:4e:74:c7:d8:18:aa:18:cc:35:f3:
f0:d9:84:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:36 2024 by rpki-client on console-ams.rpki-client.org