Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/oZAG2HKn9Wc_ar2jayA8HX2ZMmI.roa
File: oZAG2HKn9Wc_ar2jayA8HX2ZMmI.roa (raw, json)
Hash identifier: kvFAhZpoVqrEYUNej8mlt15MYyhefE8oUil/pQI07tE=
Subject key identifier: A1:90:06:D8:72:A7:F5:67:3F:6A:BD:A3:6B:20:3C:1D:7D:99:32:62
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F45360
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/oZAG2HKn9Wc_ar2jayA8HX2ZMmI.roa
Signing time: Sat 01 Jan 2022 13:06:25 +0000
ROA not before: Sat 01 Jan 2022 13:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64409
IP address blocks: 213.135.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351556448 (0x14f45360)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a19006d872a7f5673f6abda36b203c1d7d993262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:88:9c:9c:c6:37:9c:59:cb:c0:2b:8d:ab:fd:
a8:77:14:61:83:e4:94:dd:c6:30:26:bf:aa:05:88:
da:12:95:5d:b8:14:79:20:15:ac:83:40:aa:2d:9f:
dd:f1:ca:dd:c8:cc:bc:2c:d9:d1:5c:c0:fd:79:c4:
f9:b6:ff:c1:93:0c:9b:46:48:e6:d1:ae:84:99:c1:
35:f9:4f:cf:1e:1b:3c:b8:97:5a:d4:c5:f1:16:b8:
b0:ce:94:bc:48:70:16:28:7a:34:a5:df:0b:42:21:
17:7f:35:bb:e8:71:66:e8:24:ce:c8:4c:63:54:d9:
8b:fe:80:41:4e:ae:29:f1:a8:92:a5:aa:04:0b:41:
63:14:3f:df:01:23:d1:4b:74:68:0a:f6:c9:6f:99:
4b:8c:c6:71:f2:16:c7:63:43:58:b4:b7:24:ef:db:
3d:19:6e:0d:51:e8:fd:eb:e9:d1:b9:5c:cc:c5:28:
be:92:d6:8b:ab:a2:e2:ca:67:87:b0:2d:76:b9:b3:
d6:f1:c2:be:da:52:33:63:1d:f3:9d:df:13:ad:92:
05:1a:58:f8:e9:c1:ff:30:c0:cc:e4:4f:62:0a:5b:
ab:c3:58:3d:d1:34:77:e6:2c:5b:57:a7:e9:3e:11:
86:21:62:8e:72:ff:58:ae:a9:f8:80:eb:2d:a7:18:
23:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:90:06:D8:72:A7:F5:67:3F:6A:BD:A3:6B:20:3C:1D:7D:99:32:62
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/oZAG2HKn9Wc_ar2jayA8HX2ZMmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.81.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:bb:09:32:98:26:37:e6:1e:3a:34:84:8e:c1:43:c5:9a:51:
19:6c:eb:ac:1b:2c:b7:f2:cf:66:2f:ca:95:72:80:8f:26:fc:
e3:0b:69:1b:d1:d2:a2:10:7b:53:9f:cc:0b:83:7c:3f:bd:6d:
d7:2e:f6:14:97:67:cc:a0:33:e9:c8:f4:7a:4c:60:26:d8:d3:
ea:47:62:6f:50:0a:66:ee:24:f7:13:ec:79:39:2d:da:38:6a:
09:01:c6:0c:88:51:82:d1:d3:0e:72:a4:92:f0:25:b4:9f:70:
ac:ee:64:1d:e9:6e:af:3f:53:3c:d0:ae:21:a5:f5:4b:a9:43:
78:7d:9e:ac:32:74:3c:66:cf:0a:08:94:13:2a:8f:aa:a2:d4:
86:6a:ff:a4:1f:30:71:e7:a3:6c:40:c7:32:4b:20:64:3a:35:
91:44:06:c1:46:c6:ce:e1:cc:17:a7:3f:49:94:5c:d5:4c:34:
ca:f3:fd:62:5b:86:80:27:c2:ac:98:f9:84:6b:e2:27:81:a4:
ea:63:b6:b5:c5:70:82:bb:cb:bb:71:ca:7b:01:d0:26:17:1b:
19:34:9c:3c:5d:4d:11:b9:2f:8b:ff:34:64:73:c4:3e:a1:85:
af:c8:c7:63:83:e0:f2:71:54:17:1c:34:33:3a:b2:37:8d:b0:
4c:b3:8a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:36 2024 by rpki-client on console-fra.rpki-client.org