Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/cyjEFJxa0FMmFITVXVbF0p768Tw.roa
File: cyjEFJxa0FMmFITVXVbF0p768Tw.roa (raw, json)
Hash identifier: L2yDAcC/Qe/Lz32tzRbV0hoa0XH73b3ymyFUWUCZ04Q=
Subject key identifier: 73:28:C4:14:9C:5A:D0:53:26:14:84:D5:5D:56:C5:D2:9E:FA:F1:3C
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 01838D7BDD083B4ACB06AF9C61BE76765295
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/cyjEFJxa0FMmFITVXVbF0p768Tw.roa
Signing time: Fri 30 Sep 2022 08:20:48 +0000
ROA not before: Fri 30 Sep 2022 08:20:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61135
IP address blocks: 213.238.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8d:7b:dd:08:3b:4a:cb:06:af:9c:61:be:76:76:52:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Sep 30 08:20:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7328c4149c5ad053261484d55d56c5d29efaf13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:fb:43:4e:6e:19:da:4f:ae:ae:53:ea:5b:60:
94:d6:47:d7:41:4b:30:7b:7e:15:06:18:33:5b:8f:
7d:70:b5:82:e0:e2:d8:2f:25:08:79:a0:16:61:99:
e8:23:d3:16:f7:50:90:a7:c0:87:1e:34:0d:d1:5f:
fb:7d:0b:8a:06:75:4d:37:52:e9:64:8c:fa:9d:b3:
37:1e:a9:81:31:cc:92:34:ea:92:63:52:8e:67:4d:
35:f2:b2:11:5e:96:71:37:bc:f1:53:e1:5f:d0:17:
1b:86:ab:a6:a0:05:8e:f2:e2:a5:37:47:be:c8:33:
6f:68:9f:dd:45:17:07:4e:59:70:27:16:e8:32:99:
a3:5c:b8:9d:6f:02:b6:16:e9:30:f5:d1:e5:44:73:
14:1f:87:b5:b2:35:41:d4:b0:48:8d:e9:a3:25:f4:
8b:4a:8b:d3:ac:06:43:b2:be:f6:5b:44:c4:95:90:
08:f0:fa:c0:37:10:03:48:97:6c:13:22:0e:63:1a:
c1:c1:ad:5d:e5:41:64:e8:71:7f:ce:22:d9:69:61:
2c:c3:f1:11:46:c3:f1:08:cb:9d:b7:2d:5c:44:72:
43:21:26:a6:16:62:c1:95:15:e9:3b:9d:56:cf:ea:
8a:39:f7:3d:3a:b9:c3:2b:6a:90:5a:39:b5:09:01:
e7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:28:C4:14:9C:5A:D0:53:26:14:84:D5:5D:56:C5:D2:9E:FA:F1:3C
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/cyjEFJxa0FMmFITVXVbF0p768Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.167.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:e7:f2:b6:b7:d6:30:c9:bb:33:7b:56:0c:66:bb:3d:2c:92:
f4:31:2e:ac:59:57:06:a7:86:37:5a:e8:10:34:06:19:1b:bf:
59:f4:fd:df:30:dd:e5:72:0f:01:1c:98:a6:20:aa:ed:33:63:
80:4a:a9:a2:42:19:db:b1:a3:f9:b8:34:c9:8c:26:ed:42:2e:
81:bb:31:e0:3f:71:0d:3f:68:53:7a:03:b3:e4:f9:45:0c:06:
db:d8:a0:60:5d:41:00:9a:cf:9e:03:02:08:a6:7b:de:82:7f:
80:e5:5c:00:4b:fd:4b:54:6d:9e:db:60:90:0f:73:c0:40:a3:
ef:1e:4c:4a:73:4b:df:8d:02:b9:5c:4c:89:78:bc:9f:fe:f7:
e4:99:61:bd:52:6f:42:83:38:af:6a:12:aa:b1:bf:e9:c2:40:
8c:e6:c8:3e:b2:75:46:e1:39:dc:2d:a6:f3:de:68:e2:91:3a:
2c:94:0e:87:c3:ff:67:1b:31:84:1c:09:c7:43:77:46:4a:d2:
0a:0b:39:e6:b5:08:d3:a2:3e:30:a9:af:40:ec:52:96:56:9b:
a7:c0:ff:a1:54:fd:8f:74:3a:3e:11:8c:0a:e7:bb:72:d6:e9:
6b:7d:15:01:ce:ec:db:0a:b1:67:9a:94:26:a8:c7:c0:df:e4:
6a:04:40:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org