Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/rO-09FlOkDsvvY6ZcnCgsDgNELU.roa
File: rO-09FlOkDsvvY6ZcnCgsDgNELU.roa (raw, json)
Hash identifier: MEVmG+5QMc8P2Ok7MXR0qQYtlMrZ11Eg7nEior6ksog=
Subject key identifier: AC:EF:B4:F4:59:4E:90:3B:2F:BD:8E:99:72:70:A0:B0:38:0D:10:B5
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 01857355DAF10B7DD419035DEEE041CC8FF5
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/rO-09FlOkDsvvY6ZcnCgsDgNELU.roa
Signing time: Mon 02 Jan 2023 16:34:44 +0000
ROA not before: Mon 02 Jan 2023 16:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36062
IP address blocks: 213.254.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:da:f1:0b:7d:d4:19:03:5d:ee:e0:41:cc:8f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 2 16:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acefb4f4594e903b2fbd8e997270a0b0380d10b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:db:ec:81:a8:5f:b8:41:ef:36:86:41:cb:88:
d3:a8:8c:c6:16:2e:ad:04:c4:9a:3e:39:2f:bd:82:
92:20:3b:a7:a9:a1:c9:ba:86:8c:bd:fb:85:1c:64:
84:ff:af:40:9f:b7:c5:3f:15:a2:93:1f:6e:25:cd:
d9:5a:28:be:70:32:8e:75:6c:6f:f2:d9:00:82:a0:
3e:4c:52:4f:24:43:47:14:67:a9:d9:bf:89:1e:02:
61:2e:3a:e9:a3:88:fc:dc:95:80:36:95:d4:f8:69:
85:64:6f:ef:c0:13:46:f6:f5:fd:b1:59:f4:74:a2:
17:36:f1:df:06:4c:ac:af:8c:3d:4f:05:84:16:87:
70:f4:33:49:c1:16:2e:dd:d8:8f:33:6e:ee:4c:f1:
cf:16:9f:dd:17:48:44:4c:4e:6c:03:d5:59:eb:5e:
e8:d9:19:61:8e:77:63:f2:08:91:68:84:6f:f6:ec:
89:58:6a:ac:be:77:3c:b3:ad:f7:57:23:05:69:f9:
93:2f:f2:03:d9:59:fa:67:1d:72:6d:d0:d8:14:44:
86:fa:41:b7:17:8b:4c:a5:33:2d:fa:c6:d5:5a:08:
00:3f:77:f4:f4:f9:2f:0d:99:2d:9e:8b:16:cb:72:
0c:07:1f:93:2c:ac:6f:de:ab:54:07:28:db:68:b2:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EF:B4:F4:59:4E:90:3B:2F:BD:8E:99:72:70:A0:B0:38:0D:10:B5
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/rO-09FlOkDsvvY6ZcnCgsDgNELU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.254.244.0/24
Signature Algorithm: sha256WithRSAEncryption
46:3c:37:9c:c2:e9:8d:5a:d9:22:d2:ed:5f:66:9e:45:2d:3f:
01:88:1b:2b:88:78:4e:5c:09:47:64:cf:d2:8e:b9:09:96:1e:
9b:55:ae:62:5e:55:af:5c:8b:e6:22:4d:8c:d0:aa:e9:a9:15:
db:01:82:2b:c9:f5:8c:8d:5f:8d:38:e1:ed:4e:51:bb:3a:f4:
8b:bb:ca:bc:a8:ac:4d:4a:12:b7:0f:1b:03:50:58:a4:e3:75:
06:2f:0d:bb:b8:0f:2b:51:f2:c4:89:0a:b4:28:e0:f0:22:3a:
02:38:19:e8:a5:20:4b:bf:ac:e3:51:d4:9a:16:35:f8:25:37:
b0:9d:9f:b1:0a:b0:51:3a:45:56:53:54:13:32:89:0a:ce:c9:
f0:c3:f5:73:9f:e6:d5:19:b3:2a:9e:b4:c3:f6:03:4f:d2:4d:
f1:73:5f:1f:c3:7e:92:4a:07:b8:ab:5f:5f:23:34:b2:1e:78:
78:4e:cd:90:3f:59:05:cb:20:55:3e:0d:03:e2:7d:42:c2:80:
47:b3:56:75:53:ec:bf:62:d8:b6:70:aa:42:59:de:5d:29:bc:
85:58:38:03:6b:e6:24:71:62:26:0d:d0:90:e5:57:2e:c4:cf:
8f:9c:a1:31:8c:ba:da:66:9b:59:77:e8:75:12:75:2f:88:ff:
37:40:2a:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:21 2025 by rpki-client