Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ijGEZqNMCUIFoziL266cP2fEVC0.roa
File: ijGEZqNMCUIFoziL266cP2fEVC0.roa (raw, json)
Hash identifier: Nekj1qFZHchpa1ipLtr/0BVARuzsl4NhJaLFik9BTlM=
Subject key identifier: 8A:31:84:66:A3:4C:09:42:05:A3:38:8B:DB:AE:9C:3F:67:C4:54:2D
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F60418
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ijGEZqNMCUIFoziL266cP2fEVC0.roa
Signing time: Sat 01 Jan 2022 13:06:25 +0000
ROA not before: Sat 01 Jan 2022 13:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198602
IP address blocks: 213.135.94.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351667224 (0x14f60418)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a318466a34c094205a3388bdbae9c3f67c4542d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f8:c8:13:2c:df:5e:75:0b:e1:8b:0a:bb:92:
fe:f6:37:e7:ab:d4:84:cf:74:b5:59:c5:77:6e:94:
07:d3:31:ad:d4:ad:e1:8f:6b:8d:12:88:c0:8e:f5:
d5:af:9e:4d:a2:80:1b:a6:9a:4d:c2:6a:b7:d8:1b:
6b:dd:91:a8:c1:d7:db:a4:b9:e4:3a:da:a8:9b:f7:
64:7b:51:9b:5b:03:ec:7d:96:94:23:31:fb:37:82:
15:62:86:3d:3b:68:65:be:07:0d:14:41:ac:19:27:
3d:18:e5:f5:47:01:d6:33:25:fe:6e:36:8c:46:45:
a8:10:8e:f7:34:b8:4b:57:24:e9:1f:8d:a3:de:6c:
4f:66:68:88:2b:1c:88:d9:e2:71:fe:66:6c:cf:8c:
13:69:fd:93:fc:72:d5:e0:29:d6:e9:13:1f:4d:f6:
0c:4b:dd:6d:10:74:d3:74:bf:1e:1c:30:1e:27:57:
a8:e7:84:70:9b:9d:2e:6b:8e:ac:ab:2c:44:d7:5e:
62:5c:48:ae:07:4c:75:b2:42:21:e2:59:54:28:f3:
42:e0:7e:2e:a4:c5:17:b9:fe:6e:10:14:b1:49:84:
49:fb:95:a8:73:1d:28:6d:1f:0d:2b:09:4f:0e:c4:
09:c3:12:ad:0b:4e:6d:bf:b2:39:1f:ff:e8:91:fb:
35:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:31:84:66:A3:4C:09:42:05:A3:38:8B:DB:AE:9C:3F:67:C4:54:2D
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/ijGEZqNMCUIFoziL266cP2fEVC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.94.0/23
Signature Algorithm: sha256WithRSAEncryption
96:65:a0:e6:5d:4b:b3:b8:d9:0d:06:3a:bb:ba:11:17:5c:e2:
70:17:b0:95:d5:e1:cd:a2:c8:d7:43:1a:45:e7:52:ec:dc:ca:
e4:87:b2:16:21:7d:03:4e:f9:c8:89:1e:13:22:2a:46:07:72:
5d:08:2d:8f:01:f0:01:fe:68:4c:e6:de:6e:af:04:26:b2:d4:
9a:f1:80:78:9c:e5:75:ce:51:3a:b4:aa:c1:7d:fe:86:a2:45:
e2:f1:02:9c:b5:dd:a4:bc:fc:4f:3b:dd:f8:a7:5e:a4:61:84:
cc:1e:06:02:f0:b8:5f:c5:f9:33:d3:19:70:12:e1:e9:4a:8b:
a6:f2:02:40:05:96:da:65:fc:8a:8f:ab:88:cf:d7:1e:e4:1c:
58:66:08:aa:37:57:c5:ac:69:cf:95:00:08:a3:eb:34:fc:d4:
c6:3f:8d:11:33:19:b2:2b:c9:83:ed:15:b8:dd:e3:99:2d:2c:
f9:a0:5f:20:b6:59:9b:49:b3:e0:0d:58:7d:1f:bc:a8:dd:c8:
45:83:a4:94:b0:8d:18:a6:53:4a:ad:56:59:80:15:69:98:ac:
38:07:a5:79:dd:4b:bb:4f:b7:bc:ce:cc:31:7c:17:60:fb:e5:
df:f9:07:6f:e7:9e:da:92:fb:4b:63:47:1c:d4:a1:44:e4:45:
62:97:2b:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org