Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/Z2QlNVHS9AozJQxrqKMNehG-Vf0.roa
File: Z2QlNVHS9AozJQxrqKMNehG-Vf0.roa (raw, json)
Hash identifier: DZOHqtesT5EPNJVIn7OellOX1SyQZbuAN2WDTIfialg=
Subject key identifier: 67:64:25:35:51:D2:F4:0A:33:25:0C:6B:A8:A3:0D:7A:11:BE:55:FD
Certificate issuer: /CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Certificate serial: 0E1845B9
Authority key identifier: E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/Z2QlNVHS9AozJQxrqKMNehG-Vf0.roa
Signing time: Sat 01 Jan 2022 03:02:52 +0000
ROA not before: Sat 01 Jan 2022 03:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14163
IP address blocks: 213.152.229.0/24 maxlen: 24
213.161.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236471737 (0xe1845b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Validity
Not Before: Jan 1 03:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6764253551d2f40a33250c6ba8a30d7a11be55fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3d:a9:d5:94:11:d2:11:21:68:2c:00:4d:5d:
b1:1e:26:ff:45:50:be:96:1f:42:72:e9:ac:1c:b2:
42:c5:09:5b:4d:a4:6f:25:a5:cc:d7:7c:54:ac:67:
84:c7:be:77:e7:2d:41:12:ba:cb:b1:d8:c2:06:38:
27:bc:f2:bf:25:8f:9f:ea:7b:7a:eb:03:1c:6c:6d:
73:69:41:d9:31:73:87:a8:64:b1:75:b7:aa:e7:ec:
f7:d9:e3:6c:1c:ad:f5:32:39:d1:41:4a:2e:f7:c3:
f9:fa:01:c9:f1:48:62:ec:ea:a7:a8:6a:89:d7:1c:
4f:df:17:46:f1:cf:7b:5c:4e:da:14:59:ad:96:48:
ba:10:c1:f6:d5:5e:db:c2:15:9d:02:a5:74:76:ae:
d5:b3:27:98:6f:69:e3:7c:7d:97:20:cf:6d:b1:77:
fd:5b:9a:e1:97:27:b7:24:87:af:38:db:ea:1a:bb:
c9:07:ae:50:d0:1c:7d:b5:6d:8f:1e:7f:4b:89:72:
5d:d9:76:db:51:7b:83:4d:c3:d0:74:c6:6e:e8:28:
12:13:41:f7:46:0b:47:36:f6:dd:64:47:d3:f8:bb:
28:eb:ef:91:df:8d:81:aa:82:07:58:79:2e:c3:14:
b9:3e:e2:a9:d7:d3:7f:59:6c:bc:3b:93:04:b9:8b:
74:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:64:25:35:51:D2:F4:0A:33:25:0C:6B:A8:A3:0D:7A:11:BE:55:FD
X509v3 Authority Key Identifier:
keyid:E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/Z2QlNVHS9AozJQxrqKMNehG-Vf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.152.229.0/24
213.161.86.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:64:7d:7d:52:a1:f5:bd:21:4e:b4:a1:81:31:4f:f7:f5:a8:
ff:af:c1:ed:64:fa:8f:62:76:e8:e6:ca:44:00:d1:ba:a2:9b:
b7:b5:d4:09:37:53:d9:95:01:a7:17:a7:0a:d5:ca:ee:55:bd:
d6:58:a1:ce:5f:1a:e2:37:ff:4b:0d:83:3d:f1:99:79:c7:db:
4e:7d:70:7b:c7:da:7f:ab:42:57:b4:93:fc:cb:6b:ca:ef:30:
dc:85:1b:fc:2c:22:42:4c:63:03:f6:3e:28:36:37:a5:9e:a1:
24:33:3a:a4:a8:74:69:66:01:1a:97:25:38:c8:2e:a4:68:c0:
a9:8c:fe:3d:b7:a2:41:5e:ef:bc:57:45:93:58:9c:01:f1:66:
21:50:db:db:9d:31:02:83:39:0c:38:3e:05:84:86:c2:0c:8f:
c3:7c:88:76:2d:3b:28:dc:36:0a:32:12:84:5e:f0:bb:d3:d8:
2b:30:49:b9:f9:bc:b6:f6:2a:50:32:89:e6:f0:3c:39:fe:2d:
00:a9:64:fe:e4:2d:8d:f6:7f:a0:b3:c6:f0:80:fa:e4:b1:3f:
14:cb:3d:e8:98:56:b3:88:5e:d7:78:ee:3e:17:8c:fb:65:e5:
e7:7a:11:97:f0:47:aa:22:a4:9a:2c:89:fa:a2:c7:bd:5a:4d:
dc:6f:9b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-fra.rpki-client.org