Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/YZhgWAuc-o2BiIYoav9Pa8G8hMU.roa
File: YZhgWAuc-o2BiIYoav9Pa8G8hMU.roa (raw, json)
Hash identifier: TwRGXGQgfyv05Ct7VfdagV9FE8qezOrwmtECXQhFPko=
Subject key identifier: 61:98:60:58:0B:9C:FA:8D:81:88:86:28:6A:FF:4F:6B:C1:BC:84:C5
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 0707CD6A
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/YZhgWAuc-o2BiIYoav9Pa8G8hMU.roa
Signing time: Thu 06 Jan 2022 14:06:53 +0000
ROA not before: Thu 06 Jan 2022 14:06:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46664
IP address blocks: 213.209.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117951850 (0x707cd6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Jan 6 14:06:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=619860580b9cfa8d818886286aff4f6bc1bc84c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b1:30:c9:ad:39:1c:67:e8:19:d0:64:6f:5d:
fc:e8:d6:b1:3f:48:9a:3e:1b:52:bb:10:a6:3f:7e:
28:6b:ae:b0:11:4b:0c:96:ce:31:46:6d:00:8a:b9:
3f:be:9b:38:a7:9b:31:06:5f:7b:d5:9c:17:d9:5c:
78:01:d3:ad:d8:5f:21:7d:8a:c5:00:5f:e9:3c:d7:
5e:af:67:f5:c2:93:de:35:a5:06:c6:b7:86:32:54:
ff:b8:ba:4b:50:41:d0:88:8a:b4:e2:50:a2:be:1e:
b5:30:ea:47:ab:76:90:f7:08:ed:71:dc:4d:09:78:
35:0b:34:58:b2:05:37:3c:f4:0a:ec:82:c2:30:4f:
69:27:1f:d1:20:58:bf:4b:8f:27:3c:99:da:89:7e:
0e:50:d5:fc:ee:b3:83:71:7d:4e:07:43:9d:a1:e6:
29:fd:7a:7f:78:70:06:69:17:e6:e0:d0:72:56:34:
de:2f:0c:8f:2b:f8:72:87:e0:4b:20:4d:02:0b:ef:
84:46:d9:60:9c:74:38:c2:9d:38:07:45:3a:d8:24:
01:c3:fa:90:29:55:41:dc:07:4f:f8:48:10:9f:b0:
dd:fc:07:f4:04:63:7f:7b:90:84:c0:e8:5b:35:8d:
1b:e8:9d:5e:a4:d9:f6:2e:0d:8c:0f:ee:67:6b:75:
58:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:98:60:58:0B:9C:FA:8D:81:88:86:28:6A:FF:4F:6B:C1:BC:84:C5
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/YZhgWAuc-o2BiIYoav9Pa8G8hMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.133.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:6b:d2:f0:21:c7:21:aa:1a:22:74:24:f9:63:ca:72:eb:6c:
9a:cb:47:61:23:0e:bf:2a:d8:35:b6:2a:a4:52:42:56:2c:0c:
c6:7f:10:08:57:0c:b9:65:72:bf:3f:bb:d7:ac:c1:5b:c4:08:
f2:73:48:86:33:67:3e:d3:fc:4b:c8:b0:3c:b7:16:d7:b3:8a:
8a:05:a7:ec:33:59:30:49:38:c7:01:3e:7e:3c:65:a2:f0:84:
77:b8:7d:3a:fc:d2:a6:a0:d8:51:ea:f9:3f:dd:47:ee:10:ed:
21:00:48:ab:f7:dc:fc:89:82:c3:ca:a3:53:0a:51:3c:b3:d2:
f2:7c:d2:24:d6:4e:19:02:1a:58:9b:07:8b:3e:60:c0:98:44:
d2:16:2f:8c:5c:1b:94:4a:7b:eb:66:1b:a1:77:33:e3:60:e4:
6f:b3:d0:cf:9d:3d:8e:b7:bc:c6:38:db:15:ad:dc:18:03:2f:
76:a4:44:d4:29:97:43:e1:ad:32:d2:18:c3:59:04:ec:6c:0c:
a1:e7:a2:14:91:ed:d9:31:28:37:6e:74:f3:7b:be:43:c6:36:
48:94:c8:61:52:fe:fe:e7:a0:3a:27:93:bb:27:ad:e6:83:e0:
3d:bf:8d:2a:be:2d:f9:1f:e6:57:56:ff:7c:bb:e8:a5:91:0a:
7f:67:7b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:25 2024 by rpki-client on console-ams.rpki-client.org