Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/H1QbN3pNVnOLaSnG0_7T0Hsp9Bk.roa
File: H1QbN3pNVnOLaSnG0_7T0Hsp9Bk.roa (raw, json)
Hash identifier: TX2k6hDg5MNarxEt3ICfrKowYqWRWMDFOLxpf0JaIGI=
Subject key identifier: 1F:54:1B:37:7A:4D:56:73:8B:69:29:C6:D3:FE:D3:D0:7B:29:F4:19
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 13F13760
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/H1QbN3pNVnOLaSnG0_7T0Hsp9Bk.roa
Signing time: Sat 01 Jan 2022 11:55:26 +0000
ROA not before: Sat 01 Jan 2022 11:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42926
IP address blocks: 213.238.170.0/24 maxlen: 24
213.238.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334575456 (0x13f13760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 11:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f541b377a4d56738b6929c6d3fed3d07b29f419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0f:42:27:2e:0c:9e:10:00:fd:ef:3d:cc:c1:
d9:fa:3f:9b:57:a0:7e:9a:16:47:55:6f:fb:9a:a0:
cb:5d:6a:7c:04:a7:82:e0:7e:da:2c:ea:a2:8c:a3:
b8:a5:8d:f9:50:e2:50:65:81:85:88:96:a9:f7:b0:
20:c4:ac:a7:79:b5:5e:fd:a2:61:58:e8:97:cc:1a:
89:dd:d3:74:d8:f6:bc:8b:10:24:5d:49:10:cf:f4:
a3:03:03:40:fb:43:f4:a8:a6:6c:fd:95:08:9a:0c:
ed:6f:46:a7:fe:a2:44:16:ea:e9:7f:0c:66:79:17:
24:fc:2d:99:93:41:34:25:44:67:29:fc:f3:13:53:
d0:af:f6:56:5b:23:08:73:12:2b:12:5c:9d:0d:3f:
bb:ee:75:24:dc:81:a1:a4:8f:be:dc:01:f0:3e:ef:
c5:6b:31:91:71:3f:e4:b6:30:b4:34:73:e8:84:78:
36:4d:75:76:ec:31:38:51:07:2d:87:af:6f:a4:85:
9a:87:66:65:57:c7:de:a5:a3:db:b3:8e:a0:61:92:
54:77:d5:04:40:53:50:3c:bc:23:bb:ee:6c:ee:69:
e2:12:b7:57:44:f9:dc:71:e4:ed:f5:cd:1c:e2:f9:
75:d9:16:4c:c7:ff:51:83:68:e0:68:eb:4d:3e:3a:
ec:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:54:1B:37:7A:4D:56:73:8B:69:29:C6:D3:FE:D3:D0:7B:29:F4:19
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/H1QbN3pNVnOLaSnG0_7T0Hsp9Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.170.0/24
213.238.178.0/24
Signature Algorithm: sha256WithRSAEncryption
00:3b:b3:bc:96:34:23:6d:b3:49:f2:18:4d:04:1b:32:dd:75:
48:49:2b:7e:8b:7b:89:c9:be:d4:ad:00:16:a3:d5:e7:02:a6:
c5:2c:91:f3:1f:8b:a0:89:3e:3e:8d:45:a0:58:2b:ce:ce:d5:
c9:e3:d2:fd:4a:ef:5a:55:34:60:3d:5c:09:92:c0:ec:ff:c9:
1e:8b:b9:36:59:ce:bf:78:5d:23:fa:51:34:a4:c9:2b:13:a7:
2c:ed:98:85:c9:fc:f4:86:e1:fa:2f:b3:53:4b:9b:b6:67:9a:
bf:5d:35:e9:05:9b:a8:8c:60:64:75:f6:e4:5a:1b:1e:af:6a:
69:e7:2f:81:9f:38:86:64:57:4e:c0:02:29:b9:5f:10:c9:80:
99:76:fd:7d:ee:34:6c:07:db:e8:65:29:25:de:b0:39:a0:a3:
36:75:5e:a8:4f:12:8c:01:a0:af:18:7f:23:63:6a:44:54:c0:
75:f0:b4:d5:fd:0f:1a:b8:fe:34:b9:22:51:d9:15:49:5a:fc:
81:89:6b:eb:2d:db:eb:38:e6:d3:62:36:43:c7:d5:87:a5:e4:
18:d6:6f:57:b6:14:1a:0d:98:48:32:bc:f1:72:21:82:66:27:
a1:6f:b3:90:1a:00:2f:79:95:31:bc:8a:9c:50:0e:10:88:a4:
a2:12:9a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org