Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/D9ztgwml2smImkO195XpLSc_U-s.roa
File: D9ztgwml2smImkO195XpLSc_U-s.roa (raw, json)
Hash identifier: 9hcigqXH0a9bqpEvsk02a2RXk+sbGTfgg8qvgAMmXgQ=
Subject key identifier: 0F:DC:ED:83:09:A5:DA:C9:88:9A:43:B5:F7:95:E9:2D:27:3F:53:EB
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01842D13506D3A03CE7A65246B9AB56D255A
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/D9ztgwml2smImkO195XpLSc_U-s.roa
Signing time: Mon 31 Oct 2022 08:05:51 +0000
ROA not before: Mon 31 Oct 2022 08:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 212.69.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:13:50:6d:3a:03:ce:7a:65:24:6b:9a:b5:6d:25:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Oct 31 08:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fdced8309a5dac9889a43b5f795e92d273f53eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:24:56:fc:c9:1e:71:30:cd:70:7e:1e:f2:d4:
48:dd:64:0a:3a:51:76:85:3c:31:64:e5:77:4f:8f:
1a:f5:03:9a:63:48:f0:62:df:78:bf:6f:a5:40:7b:
29:49:65:17:2e:fa:d6:b7:18:7d:7b:5a:4a:1c:23:
62:f6:02:95:f9:45:d9:65:16:80:a4:b2:cf:ce:03:
dd:f1:ee:df:01:69:ad:6d:2c:68:9f:9e:8c:67:7a:
36:bd:eb:ab:71:2a:ad:5d:a6:28:c8:ac:49:f7:8b:
a3:dd:97:00:74:a8:97:11:de:78:b4:11:0a:f8:3a:
3f:c6:26:5b:57:a1:78:26:d4:33:08:df:58:d6:24:
3c:8b:1c:94:54:16:29:6d:7c:71:4a:d1:6b:08:e0:
f4:62:21:f3:3d:dc:e5:96:5e:72:31:ca:50:62:da:
10:77:23:e8:e7:bc:c0:99:e5:ce:af:a3:06:20:21:
b3:6c:4a:64:ba:80:be:bc:f1:0f:fc:10:28:69:4f:
eb:c9:4d:04:1b:30:1b:6a:5f:f8:39:cf:69:ee:ab:
b8:90:3c:fd:e4:ca:02:09:24:af:7e:5c:3d:da:eb:
f1:5b:95:74:d3:07:6d:c2:4d:a8:54:fc:1e:3d:29:
5c:49:f0:26:89:74:c2:57:b8:ee:d6:6b:fe:2c:cf:
4f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DC:ED:83:09:A5:DA:C9:88:9A:43:B5:F7:95:E9:2D:27:3F:53:EB
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/D9ztgwml2smImkO195XpLSc_U-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.69.0.0/24
Signature Algorithm: sha256WithRSAEncryption
60:ec:da:25:25:1f:b3:f9:81:af:ba:b2:0d:40:98:10:9f:02:
3c:39:56:44:92:f3:c5:ac:1c:ee:39:20:9a:97:a8:12:8a:9a:
90:bc:c2:c7:d8:cb:27:f4:80:9e:35:07:2d:f4:b1:7f:f7:27:
b5:f9:04:7b:6f:9f:88:de:f2:1d:ed:16:89:b1:ff:9a:50:96:
5e:1e:ff:1d:ba:49:2f:9d:b2:98:7e:c8:c1:d1:a6:51:d4:22:
6c:ad:33:66:b9:00:22:89:3f:dd:10:21:c4:d9:4d:23:4b:de:
24:33:ec:9e:e5:c2:14:68:89:00:45:0d:d7:fc:6f:0c:87:c0:
a6:48:e7:ac:22:bf:cc:5a:57:13:bd:ad:89:5a:83:18:0c:3f:
22:0b:87:d7:69:5c:76:ba:f8:c8:32:52:db:81:16:1a:d4:15:
32:c4:7d:3d:09:22:0f:82:81:c8:37:ff:81:6f:07:86:55:8a:
a1:f4:a7:8f:4c:a2:de:b8:79:fc:14:5e:47:70:db:63:91:a1:
e5:55:36:ef:39:24:80:9d:2c:6d:34:d3:0b:90:db:74:f0:da:
0f:50:17:aa:74:19:d3:8c:5b:1b:59:b8:d2:48:c8:48:4b:35:
7f:e2:1b:e6:54:91:d4:f3:5b:20:98:e2:e5:3c:58:a3:ca:9f:
09:8b:2b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org