Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/e3or9GgeeDzESeKzo8Hro-NUGV8.roa
File: e3or9GgeeDzESeKzo8Hro-NUGV8.roa (raw, json)
Hash identifier: zIV8Ma6M5k9twtU0NGiwekdCQBPOjP8b/c/VMxfSssM=
Subject key identifier: 7B:7A:2B:F4:68:1E:78:3C:C4:49:E2:B3:A3:C1:EB:A3:E3:54:19:5F
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 13F6BB40
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/e3or9GgeeDzESeKzo8Hro-NUGV8.roa
Signing time: Sat 01 Jan 2022 11:55:28 +0000
ROA not before: Sat 01 Jan 2022 11:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60707
IP address blocks: 213.238.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334936896 (0x13f6bb40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 11:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b7a2bf4681e783cc449e2b3a3c1eba3e354195f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:06:fe:52:e8:ba:7a:fa:ce:de:3f:ea:d7:56:
b1:c0:38:33:c8:17:7f:5e:e5:b2:04:b2:39:c1:0b:
ec:3f:b8:63:b0:d0:bd:ae:05:ad:17:2f:08:55:46:
1d:3c:d5:3a:d3:24:f2:02:6e:3a:37:24:c9:6e:da:
aa:d8:e0:1b:d3:1e:be:41:71:d0:57:bc:00:8c:a2:
64:88:16:b3:2d:48:77:6e:f9:ea:53:1e:55:ce:97:
02:62:8f:6b:f3:df:e9:2b:b6:7d:92:fb:e8:f7:10:
fc:3b:d6:58:f9:35:92:33:c8:3c:8f:1c:e0:52:ce:
2f:be:20:f7:01:1f:d7:6f:02:c0:14:9e:20:45:56:
0d:dd:8b:77:e2:b9:de:a2:e5:8b:2f:d8:66:1e:96:
68:f8:df:f7:1a:6b:78:61:c7:6a:4b:17:b3:a5:19:
25:a2:8a:c5:90:40:61:44:b2:70:1e:f1:65:71:86:
60:d6:9b:58:22:90:25:dc:f8:b2:ad:af:9c:01:0b:
c0:22:a5:37:6f:28:d1:a7:e0:11:d5:17:44:7f:6e:
3e:95:22:57:fe:75:d5:cc:ea:4c:6c:a3:5b:b5:17:
16:f8:7c:38:49:b7:67:f1:20:ed:88:1e:ca:61:5b:
ad:28:e1:23:0b:2b:c2:9d:6f:da:c8:02:0b:d2:67:
c4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7A:2B:F4:68:1E:78:3C:C4:49:E2:B3:A3:C1:EB:A3:E3:54:19:5F
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/e3or9GgeeDzESeKzo8Hro-NUGV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.172.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:79:81:77:bb:39:66:7d:b3:ae:12:cb:ee:7e:33:32:23:03:
91:11:40:34:dd:82:94:3e:97:42:2d:2d:15:3f:65:28:88:7e:
fd:7c:40:28:42:eb:82:66:fd:fe:a0:4c:58:e9:ae:f2:57:3c:
f2:11:40:7e:ff:23:76:53:58:04:3b:ad:dc:94:45:74:37:33:
23:6d:84:aa:c5:5d:82:db:41:d8:f0:ca:94:d7:38:49:f7:e4:
1a:e1:0e:12:d2:bf:93:3c:b8:b3:69:01:01:72:06:eb:81:27:
40:f8:27:5e:62:3d:63:67:64:b2:49:17:a7:6c:25:f6:cf:63:
a8:b3:0f:2d:83:3c:64:0f:90:50:09:0c:16:b4:d9:78:26:65:
d2:8f:19:fa:c1:96:9f:fd:74:67:a1:85:81:e3:7d:8d:08:a2:
7f:c1:2f:55:a3:f4:7c:3b:25:f2:6e:b1:60:32:95:c2:8e:e4:
bb:5a:6a:f0:32:43:e1:7d:ae:43:d9:45:a7:ba:1e:48:be:43:
19:71:66:4e:df:4c:82:92:c3:d3:9a:32:20:5a:08:17:b5:17:
df:47:79:e8:df:35:0a:98:4f:11:37:91:28:2a:0d:78:4c:af:
d5:2d:83:21:18:79:0f:b7:b0:43:45:86:2a:8e:69:6a:f7:a1:
67:16:07:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org