Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/q3ed8HGNkYxg6dBuEi21GPxhb24.roa
File: q3ed8HGNkYxg6dBuEi21GPxhb24.roa (raw, json)
Hash identifier: Fx3XkZnBu3GPzqQ4qoTvfUwim18cPP9SObh+abrAT0k=
Subject key identifier: AB:77:9D:F0:71:8D:91:8C:60:E9:D0:6E:12:2D:B5:18:FC:61:6F:6E
Certificate issuer: /CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Certificate serial: 13FBFB49
Authority key identifier: 54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/q3ed8HGNkYxg6dBuEi21GPxhb24.roa
Signing time: Sat 01 Jan 2022 11:55:34 +0000
ROA not before: Sat 01 Jan 2022 11:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212953
IP address blocks: 213.238.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335280969 (0x13fbfb49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54cbda78b1d1b613df565ff99700b6aee940de3f
Validity
Not Before: Jan 1 11:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab779df0718d918c60e9d06e122db518fc616f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1b:cf:66:5a:6b:14:b3:33:f2:e3:03:04:50:
cc:6e:22:a2:f7:d3:04:ec:7c:26:59:52:98:dc:7b:
b4:97:ce:e6:4d:fb:91:5c:1b:13:52:f0:df:ae:1d:
f6:bf:d5:1f:4e:d8:2f:9c:06:d6:73:fe:bf:2d:34:
e4:1a:67:e0:96:56:74:85:9f:f2:6d:81:1d:5d:2c:
a7:5f:20:d2:8f:54:7f:28:a6:17:1f:aa:03:1f:e1:
ea:f8:14:9c:e2:38:15:c5:b5:15:5f:18:15:07:30:
87:ba:bf:a2:20:99:f9:44:8b:35:a4:4a:d3:d6:24:
14:e7:82:8a:9e:ce:0d:63:61:83:71:cd:c6:64:ac:
1b:4a:c0:44:49:44:50:8c:5a:57:41:a3:57:07:4d:
97:5a:22:f1:37:af:cf:1f:0c:8c:f7:ae:f5:84:00:
9e:86:97:56:34:35:9d:6a:28:0a:43:a0:1f:87:f5:
23:99:cd:d2:26:5b:72:29:f6:c5:48:93:0a:7f:e4:
2d:b1:ec:1f:ea:9e:6d:d7:97:db:87:b9:09:46:87:
78:b2:df:36:9e:06:1f:af:31:69:b8:1c:0c:40:2b:
09:a6:6e:91:80:46:9b:81:a5:03:c5:c2:86:ab:72:
4f:17:13:df:30:7e:7b:48:d6:65:50:38:82:d9:e4:
2b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:77:9D:F0:71:8D:91:8C:60:E9:D0:6E:12:2D:B5:18:FC:61:6F:6E
X509v3 Authority Key Identifier:
keyid:54:CB:DA:78:B1:D1:B6:13:DF:56:5F:F9:97:00:B6:AE:E9:40:DE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VMvaeLHRthPfVl_5lwC2rulA3j8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/q3ed8HGNkYxg6dBuEi21GPxhb24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/6d61d9-0bf7-44bb-b80f-cd31615d01a9/1/VMvaeLHRthPfVl_5lwC2rulA3j8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.238.178.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e8:9b:22:55:cd:95:9d:34:97:f0:a7:77:4b:4d:58:9a:b3:
93:20:06:f3:d5:11:c4:44:a6:ae:f6:0e:53:1c:9c:ee:20:d2:
a9:db:0a:8b:e7:9a:52:ed:ed:8d:af:76:b2:fd:1c:fe:24:a4:
53:59:ca:df:c4:fa:e3:2e:2d:a6:be:ed:a6:99:70:70:25:32:
19:a7:55:0c:aa:09:4b:5e:e5:f8:03:a4:66:dd:83:c8:99:a7:
53:2a:c2:6c:a0:6c:4d:0a:87:02:62:5d:bc:71:ca:19:df:18:
76:63:b7:fe:8f:98:59:d5:65:39:59:50:ad:de:68:9b:51:c7:
97:09:1b:f8:4e:58:2b:4c:57:25:bf:5b:cd:d8:2d:ab:fe:da:
e9:8e:42:17:b3:48:34:c1:0b:15:f1:7a:cd:3b:64:71:83:9a:
5b:a0:7c:af:15:0d:82:4c:7a:45:65:d2:ff:fe:04:b5:9f:0d:
b5:c5:46:c9:e3:c1:45:85:80:0b:a5:ee:f1:18:2d:c5:8b:98:
a0:26:71:b8:79:a7:41:e7:1e:1e:be:bf:d9:25:d0:af:06:88:
81:d1:17:97:71:8b:c4:aa:cd:8e:c3:cf:e3:f9:e9:88:9a:96:
34:98:e4:5f:21:ff:c8:52:f4:71:50:b4:1b:38:6c:31:fb:77:
7a:2e:58:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:27 2024 by rpki-client on console-fra.rpki-client.org