Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/3nTnccOPJiQCjS5eALWQoHh2-7g.roa
File: 3nTnccOPJiQCjS5eALWQoHh2-7g.roa (raw, json)
Hash identifier: FfyBMEIp1FoGhzwDybNk67FgL9Ej+NpetZZ+kwZ2Fvw=
Subject key identifier: DE:74:E7:71:C3:8F:26:24:02:8D:2E:5E:00:B5:90:A0:78:76:FB:B8
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 238D3E83
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/3nTnccOPJiQCjS5eALWQoHh2-7g.roa
Signing time: Sat 01 Jan 2022 11:59:13 +0000
ROA not before: Sat 01 Jan 2022 11:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203780
IP address blocks: 213.140.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 596459139 (0x238d3e83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Jan 1 11:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de74e771c38f2624028d2e5e00b590a07876fbb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9a:87:1a:63:90:42:27:50:e4:6c:f1:57:d9:
17:59:bd:8d:10:e7:de:44:7e:70:48:a6:a3:d7:70:
9b:b7:10:68:dc:97:26:70:10:10:87:ba:bb:5f:6b:
6b:22:3c:14:3a:71:43:cb:74:41:a0:34:c0:99:bc:
35:b4:7c:71:48:aa:58:58:f8:df:96:ce:16:f1:0c:
90:3e:81:5b:9f:51:75:38:07:3c:55:3b:82:b4:f7:
5c:f0:d9:0c:f0:37:df:ca:41:cc:9f:16:78:c7:b5:
f8:76:3c:2f:23:25:99:ce:97:39:71:4b:bb:a5:fa:
37:86:4f:bc:60:0f:79:73:de:da:73:21:fe:76:c9:
d8:21:8d:9b:fb:39:1e:2f:5a:aa:ea:f1:d8:0b:26:
59:17:f2:8d:ae:c8:13:60:66:49:da:e2:60:9f:33:
1f:c7:55:00:4c:7c:87:7d:5e:2b:59:e7:7a:55:43:
e7:9b:4f:ff:a4:ed:e1:75:1a:3c:f0:d4:a2:7c:8d:
c6:b9:c6:83:cf:ae:ac:4b:12:b0:a9:9e:87:e3:db:
46:e9:d5:ab:59:42:99:46:95:46:ce:ba:63:b7:73:
cf:78:6c:af:7d:ed:b5:79:0b:40:d2:ad:e2:bb:aa:
a6:1b:a5:80:bd:05:c9:d9:2d:c9:4a:c0:69:1f:1d:
0b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:74:E7:71:C3:8F:26:24:02:8D:2E:5E:00:B5:90:A0:78:76:FB:B8
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/3nTnccOPJiQCjS5eALWQoHh2-7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.140.144.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a2:db:25:b2:31:28:86:64:b3:e9:12:a4:14:81:8a:da:17:
94:98:e7:56:0c:8b:4f:d3:0a:ba:a9:2f:64:bf:f5:24:98:02:
b0:23:87:3b:2d:d3:5b:68:ef:a6:2a:34:77:7a:91:e8:da:9b:
da:9d:13:2e:1c:c6:4e:22:69:3d:24:a1:e7:49:4c:41:a2:a3:
02:10:0f:60:f5:cb:fd:c2:18:c0:85:55:91:b0:9e:37:b3:27:
4b:58:89:46:1e:3f:aa:29:75:ae:e2:9a:ed:6f:b8:db:82:1e:
fa:77:4b:02:1e:18:47:71:1d:49:55:43:fb:41:3a:57:bf:de:
ac:19:35:1e:8c:27:b8:b5:58:3a:05:eb:e3:bd:87:ff:22:61:
0b:fc:62:c9:31:99:a9:da:b9:2b:61:e0:8a:96:5f:0a:0e:72:
d5:66:13:1b:4a:c5:92:e7:ec:03:50:2b:bc:76:14:32:6c:c5:
a2:32:f4:b6:54:53:8c:dd:cc:fb:b3:ff:1b:80:3c:ac:d2:5e:
3c:18:8e:55:88:fe:19:f2:0d:c6:14:58:2d:bd:6b:a9:66:51:
41:23:5b:c5:09:e7:c2:f2:42:a2:eb:3b:7a:32:0f:23:89:ac:
90:72:a8:e4:a2:98:ca:6e:18:8d:1e:da:85:5c:f0:de:07:f5:
9d:74:4f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:17 2024 by rpki-client on console-ams.rpki-client.org