Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/1-5TWH70mekIksLV-J8QuZ8zwpyM.roa
File: 1-5TWH70mekIksLV-J8QuZ8zwpyM.roa (raw, json)
Hash identifier: rUImnloYF37/7iL0q7GaIULBfbPmdXPQ5U8+6R55eJ0=
Subject key identifier: FB:94:D6:1F:BD:26:7A:42:24:B0:B5:7E:27:C4:2E:67:CC:F0:A7:23
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 018335B7EE939189A0B737AB2A04A88F3CC7
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/1-5TWH70mekIksLV-J8QuZ8zwpyM.roa
Signing time: Tue 13 Sep 2022 07:19:50 +0000
ROA not before: Tue 13 Sep 2022 07:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212260
IP address blocks: 213.135.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:b7:ee:93:91:89:a0:b7:37:ab:2a:04:a8:8f:3c:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Sep 13 07:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb94d61fbd267a4224b0b57e27c42e67ccf0a723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:64:1e:c0:e9:2f:18:ce:3c:df:cb:04:2f:ab:
a8:4e:11:e2:b6:76:b6:d9:7e:9d:da:f1:e9:0b:98:
7b:41:ba:28:a0:75:cf:7a:27:47:e5:4d:2c:27:77:
d1:82:dd:81:c1:36:4b:ec:d9:4c:90:fb:96:64:1e:
b4:b2:07:46:46:54:76:46:5d:2a:ff:e9:1e:ef:62:
1e:0f:fd:08:99:b4:27:b0:ff:1d:f7:67:0b:0f:ec:
7f:ee:fd:bb:96:ae:f1:b9:24:11:48:fe:c3:7e:41:
3a:27:ee:c6:7a:24:a7:bf:11:4a:5a:bb:a9:de:ad:
4a:53:37:84:4c:68:5f:22:87:30:7d:40:ea:3a:a0:
00:97:5c:dd:f2:39:b8:0d:eb:77:7a:7d:2f:99:b9:
69:21:0c:1e:df:4d:40:5c:22:f6:ca:31:c6:69:ac:
f6:a8:fa:b3:5e:a9:cd:ec:d1:3e:b1:36:8c:d1:0e:
65:23:50:50:7c:92:0f:57:3f:b5:1f:1f:99:c6:81:
28:c1:b6:cb:a0:fc:4d:9c:1a:4c:52:88:b0:6e:fd:
c7:7a:d6:71:46:fc:6a:14:4a:fc:92:5f:13:22:60:
00:83:69:7b:48:c2:70:dd:85:b9:eb:03:b4:53:48:
27:f9:f3:1b:24:05:d1:b5:9d:e3:b1:ef:06:d4:d2:
bb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:94:D6:1F:BD:26:7A:42:24:B0:B5:7E:27:C4:2E:67:CC:F0:A7:23
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/1-5TWH70mekIksLV-J8QuZ8zwpyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.66.0/24
Signature Algorithm: sha256WithRSAEncryption
33:4a:f8:6a:01:7b:64:c8:68:af:76:79:86:03:80:bc:04:ce:
60:13:4a:cc:78:3c:d6:53:77:ac:5f:54:4c:4b:cf:93:7b:c6:
64:ea:14:7d:cb:a1:2e:6a:be:92:22:94:35:5c:d3:b1:97:ad:
b2:03:10:5f:53:da:fb:f1:84:34:22:db:48:a2:65:21:aa:e9:
20:af:1d:0f:61:70:9f:dd:17:02:0c:4e:35:29:89:ce:57:4b:
0d:4d:cc:70:a8:7a:91:cd:69:4b:61:70:d9:12:67:cf:e1:b0:
ea:63:9a:49:31:cc:80:c8:43:cb:f8:18:86:f2:86:0e:24:4e:
a2:03:99:14:ac:ed:2c:2d:fd:d3:aa:61:cb:78:9f:78:62:24:
c2:8a:9b:03:69:4f:fc:66:cd:70:0f:d2:dd:ef:7f:86:0d:c9:
b8:ba:01:af:f2:21:a8:55:79:9e:ee:ed:05:fd:1a:12:c0:a0:
ed:03:f6:b0:48:ef:8b:bd:6c:30:5e:72:a4:6f:32:3f:3d:67:
b3:b1:51:f2:83:df:67:f8:c4:d1:d1:e3:76:f8:8f:ff:f8:ca:
98:b3:af:38:b6:75:48:fe:ad:a9:f5:62:2e:6a:d6:4c:33:5c:
96:d5:7f:7b:9e:86:08:39:73:be:02:19:ac:bf:ac:29:d4:e4:
1a:cf:22:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org