Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/4-AVpE2DMAYybZs_j3LBJIc-RXs.roa
File: 4-AVpE2DMAYybZs_j3LBJIc-RXs.roa (raw, json)
Hash identifier: e7nPqhxJnF1ABsGenrnWm2Wm/3bV42dOAugZ01a49VY=
Subject key identifier: E3:E0:15:A4:4D:83:30:06:32:6D:9B:3F:8F:72:C1:24:87:3E:45:7B
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 238BCE18
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/4-AVpE2DMAYybZs_j3LBJIc-RXs.roa
Signing time: Sat 01 Jan 2022 11:59:13 +0000
ROA not before: Sat 01 Jan 2022 11:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199382
IP address blocks: 213.140.140.0/24 maxlen: 24
213.140.140.0/23 maxlen: 23
213.140.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 596364824 (0x238bce18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Jan 1 11:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3e015a44d833006326d9b3f8f72c124873e457b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fa:49:4d:4f:e6:31:58:b8:1b:82:bf:5a:6c:
9f:48:8a:2b:65:13:af:18:7e:52:b2:42:f1:6a:9d:
0e:a2:92:13:2d:58:3c:1a:5c:e4:67:90:bb:4a:3f:
7c:ff:28:3b:4e:02:b8:ee:c3:83:57:5e:5c:3e:b3:
6a:ec:a6:06:d9:b7:b9:71:e8:f1:23:7c:0c:3e:af:
4a:4c:23:7a:28:25:e5:0d:c3:c1:0e:98:dc:e5:77:
0d:fa:1d:45:22:5c:68:03:50:08:a8:a4:de:97:c0:
ae:4a:82:4a:d3:df:41:9e:79:53:f3:c4:ba:67:2d:
80:b2:01:14:9a:d4:a4:14:6f:ca:26:bf:e1:29:f9:
6c:d3:21:8d:cc:63:fd:7a:d1:91:e2:1c:6c:b9:20:
97:9c:84:6d:e0:27:99:95:e0:1b:53:64:b3:f8:3a:
33:e8:0a:dd:24:76:5e:82:96:00:3f:bc:0c:8e:10:
be:2e:e1:17:3d:80:f5:79:ab:e1:72:9e:01:84:b0:
ce:15:bf:23:15:c6:17:a6:87:de:52:78:b6:3f:21:
56:81:82:e4:b6:20:dd:4f:a0:ec:08:ab:7c:a5:12:
89:c8:71:d6:19:88:b9:a7:7f:6b:fe:c4:40:6f:01:
b7:97:62:06:5a:01:74:cd:18:0e:63:09:95:90:3c:
16:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E0:15:A4:4D:83:30:06:32:6D:9B:3F:8F:72:C1:24:87:3E:45:7B
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/4-AVpE2DMAYybZs_j3LBJIc-RXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.140.140.0/23
Signature Algorithm: sha256WithRSAEncryption
66:cd:f5:69:64:4d:5e:ed:54:44:98:2c:5d:91:b1:d1:b2:f0:
15:22:56:83:44:e5:bb:f2:3e:ba:76:0a:57:0a:0f:a0:78:1a:
3a:7f:b1:45:bb:e1:d0:7e:ac:a5:f8:2c:f4:ea:ee:f2:05:64:
e6:e7:cb:e0:a9:b0:e4:1c:8f:8f:2a:a8:ae:a0:b7:d8:29:d5:
10:fa:10:0f:3c:37:6a:a3:f9:dc:c7:a5:00:77:01:72:49:db:
c9:51:a3:f4:73:c2:98:78:ad:43:95:a7:af:83:0d:a1:d4:c2:
62:5d:09:db:3d:69:dd:fb:bd:35:a3:8b:9a:86:a5:a4:be:40:
70:68:bb:b9:10:be:cc:f2:b4:8f:6d:4d:74:1b:20:94:79:41:
06:42:36:4a:d6:91:85:39:23:6c:9e:9f:2a:5f:c1:b5:74:c2:
42:65:03:49:3a:48:9f:f0:b4:cd:16:1d:26:84:cc:53:47:2b:
88:61:fb:fd:e4:68:a5:cd:14:7f:1b:c9:de:6e:cb:a0:2e:fc:
9f:67:1f:d7:e7:6f:af:b4:e2:ff:c4:b6:05:45:be:2d:85:6c:
a3:e2:9d:f2:e9:22:a0:9a:d1:bd:9c:60:5f:ed:b2:21:9b:a3:
0c:b7:b6:49:46:e0:ac:f6:82:61:9b:78:4a:08:ec:47:7b:cd:
6c:3e:42:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:17 2024 by rpki-client on console-ams.rpki-client.org