Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/aX7F26SPNCBC7F-l-GVFO4U1ddY.roa
File: aX7F26SPNCBC7F-l-GVFO4U1ddY.roa (raw, json)
Hash identifier: FVT7Eu0DPUEw7CpxCA291FbkMKjvNkbCgcV6vuz//LM=
Subject key identifier: 69:7E:C5:DB:A4:8F:34:20:42:EC:5F:A5:F8:65:45:3B:85:35:75:D6
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 13FB82A7
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/aX7F26SPNCBC7F-l-GVFO4U1ddY.roa
Signing time: Sat 01 Jan 2022 11:55:33 +0000
ROA not before: Sat 01 Jan 2022 11:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212069
IP address blocks: 213.238.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335250087 (0x13fb82a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 11:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=697ec5dba48f342042ec5fa5f865453b853575d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:34:c5:78:cb:30:4d:9b:c3:4b:8f:da:a1:2d:
61:c2:9d:71:60:f3:ce:3d:3f:a4:75:91:f2:2f:2a:
d0:36:d4:22:6d:d2:01:a6:ab:30:17:79:8a:30:b0:
d3:a3:01:c8:18:76:6c:e7:71:9c:10:a3:10:f8:8e:
81:8f:9e:a3:95:a4:7c:de:cb:17:12:14:d3:69:da:
76:af:39:fd:63:4a:7d:bb:50:07:ec:22:5e:0c:95:
6b:1b:02:fa:1f:e2:49:22:9e:77:30:68:25:1d:6f:
b7:d6:45:3b:72:d7:30:86:f1:c0:7e:60:5a:05:51:
2d:ef:20:76:19:06:0e:4e:cc:b7:1f:f3:07:11:7b:
48:e9:d7:39:0c:aa:36:64:aa:88:d1:13:8f:74:74:
30:90:d0:60:62:de:b3:a4:d7:dc:c2:b2:ba:13:3a:
a1:92:62:4b:42:58:4f:cd:02:5f:07:09:7d:c7:a6:
96:a6:bd:5a:40:5c:11:d2:4f:81:ca:d9:f3:38:a4:
1d:c8:7d:09:c3:b7:b7:08:fe:e4:29:d8:ae:7a:86:
b7:fe:70:89:09:49:e8:23:54:45:79:9c:1c:76:cf:
7b:41:ab:45:4a:95:70:eb:79:c6:11:b8:06:70:c5:
72:98:45:6a:76:57:7a:7f:d4:a0:a8:7f:27:62:d9:
8e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:7E:C5:DB:A4:8F:34:20:42:EC:5F:A5:F8:65:45:3B:85:35:75:D6
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/aX7F26SPNCBC7F-l-GVFO4U1ddY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.168.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:5d:e8:6b:c3:5a:79:59:a5:bf:07:5d:9f:a6:82:95:af:70:
16:c5:b5:82:b3:50:35:d1:c8:c8:73:66:60:e3:d5:d5:cb:9c:
59:d1:1e:bf:42:6a:e1:38:fa:a7:05:2b:a8:a1:f0:bf:99:77:
6b:af:32:fe:06:8f:2a:89:0a:9d:ef:76:35:68:39:df:b5:bf:
82:f7:bb:46:b3:1b:93:e7:47:7a:39:4f:91:99:b7:2b:22:d6:
1d:29:b5:d9:3e:c3:05:e5:e6:ab:12:45:9b:55:2c:8a:50:b9:
38:de:0f:3e:11:c2:27:ec:b3:a1:bb:26:e2:eb:14:31:3f:2f:
4a:1b:07:fb:99:76:19:35:ec:47:68:29:2b:51:05:61:b6:19:
4a:3d:6e:8b:70:63:9f:ae:b0:4f:24:73:1d:ed:46:8d:c0:f8:
5d:f3:12:5e:c8:2b:69:db:a5:1e:89:37:90:30:62:de:0b:2d:
78:80:d2:11:6a:a3:e2:ce:d9:82:ec:23:40:c4:da:0b:87:e5:
88:a9:e3:9e:6f:8c:50:ee:cc:06:6f:e9:de:5e:c2:0f:c5:7b:
c5:62:c0:d6:f4:e4:95:24:02:2e:19:63:e2:51:05:6a:f7:a4:
50:47:14:63:9a:12:82:40:99:0b:1e:dc:80:00:cb:27:58:9f:
2c:7a:9e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:36 2024 by rpki-client on console-ams.rpki-client.org