Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/6VePVOCgLuO4F4QB_1_aJ2Z9oKE.roa
File: 6VePVOCgLuO4F4QB_1_aJ2Z9oKE.roa (raw, json)
Hash identifier: nuZTGZ4rky9RxcrwwaPFrOeM0VLNGSJPxCrWu4B+jE0=
Subject key identifier: E9:57:8F:54:E0:A0:2E:E3:B8:17:84:01:FF:5F:DA:27:66:7D:A0:A1
Certificate issuer: /CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Certificate serial: 018B8F328B5241C721A937EA759E3F5FF3BF
Authority key identifier: CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/6VePVOCgLuO4F4QB_1_aJ2Z9oKE.roa
Signing time: Thu 02 Nov 2023 08:42:16 +0000
ROA not before: Thu 02 Nov 2023 08:42:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 213.170.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:32:8b:52:41:c7:21:a9:37:ea:75:9e:3f:5f:f3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Validity
Not Before: Nov 2 08:42:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9578f54e0a02ee3b8178401ff5fda27667da0a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fd:a7:1d:14:c4:fd:61:44:a4:96:ae:e2:c3:
64:2a:45:73:77:1f:7c:f9:83:a3:5d:66:6f:7c:29:
87:4c:a0:28:7c:bb:19:97:a6:ca:12:30:c8:b6:ac:
71:be:f2:6b:47:88:f6:0b:8d:7d:08:5e:0a:43:5d:
43:1d:45:cb:5d:cc:42:3d:28:ae:09:d2:f6:73:05:
14:2c:2c:5d:c9:f9:e7:c6:55:51:52:1b:61:39:a5:
81:d3:1b:7c:88:03:6d:f7:a0:90:e2:c4:d5:a5:d9:
f9:02:4a:2e:7a:5d:a9:28:ce:31:64:f1:8d:00:e1:
81:31:54:ab:21:06:31:32:10:a9:01:fa:d9:1d:a1:
fe:3f:f9:7a:a4:13:4a:0d:10:f9:ab:8b:a7:a5:a8:
31:eb:f9:c7:ef:bc:3c:17:2e:7b:c4:8f:5d:c6:a9:
05:e0:01:20:54:e4:cd:02:78:4c:44:28:8c:77:cd:
37:d0:b9:71:f6:02:1c:9f:46:97:ff:02:32:db:d8:
c4:20:c3:04:4b:9a:39:b6:97:11:47:47:75:d3:69:
d0:92:5c:d1:68:43:30:e3:2e:bf:12:c7:b6:00:34:
77:75:a4:f7:a9:3c:69:48:2e:75:c3:9f:f4:f5:7a:
7a:35:02:b4:27:49:7d:15:21:75:f5:30:37:fb:93:
90:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:57:8F:54:E0:A0:2E:E3:B8:17:84:01:FF:5F:DA:27:66:7D:A0:A1
X509v3 Authority Key Identifier:
keyid:CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/6VePVOCgLuO4F4QB_1_aJ2Z9oKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.203.0/24
Signature Algorithm: sha256WithRSAEncryption
25:c8:ec:78:0d:54:69:d4:af:e7:61:a1:0e:88:b0:44:68:16:
a8:f4:ca:e7:08:b3:2b:73:13:33:62:fe:47:2a:07:e4:ac:b4:
c1:e5:fc:31:e2:72:77:cf:07:7f:9d:70:2e:8d:f1:36:02:38:
3a:9b:90:7b:84:46:b9:67:19:1d:c1:65:5d:f0:9b:d9:16:19:
da:12:d1:f0:42:6e:30:ea:b1:9d:8a:f8:75:75:a3:5e:14:2c:
63:bb:e4:c0:a6:ba:3b:22:fa:bf:50:9a:e2:b5:80:5e:11:6f:
2b:48:ac:c2:e6:c5:67:6a:f2:3a:ac:25:38:66:a0:92:f5:84:
94:26:a2:23:2a:35:aa:83:95:a0:4c:e6:7e:a1:d4:47:c6:99:
5c:2c:ee:6e:db:b0:87:4b:61:76:e9:56:9c:e3:08:73:32:60:
3d:6d:3f:31:59:99:6d:d4:ce:5c:f8:73:d3:eb:08:e9:ce:30:
6b:bf:9d:17:99:de:5b:14:10:0a:ae:1e:92:93:84:c9:e2:b9:
94:1f:73:c5:aa:cb:76:0f:77:0c:3f:3a:11:b7:52:0f:c3:e4:
52:ba:ad:8b:78:46:0c:db:c1:f8:e3:db:a9:6e:88:d4:d7:6d:
44:fa:2d:0d:28:12:10:51:24:30:0d:d1:a5:87:ac:d3:3c:e2:
5e:28:ed:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:31 2025 by rpki-client