Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/M6tt2ijA7k1iVivg0arRyFlJ_7k.roa
File: M6tt2ijA7k1iVivg0arRyFlJ_7k.roa (raw, json)
Hash identifier: y8hPlsACjf7kfcKIgh+ZRDDyV32xP07IEtfJg5DRnvA=
Subject key identifier: 33:AB:6D:DA:28:C0:EE:4D:62:56:2B:E0:D1:AA:D1:C8:59:49:FF:B9
Certificate issuer: /CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Certificate serial: 06151CA0
Authority key identifier: CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/M6tt2ijA7k1iVivg0arRyFlJ_7k.roa
Signing time: Sat 01 Jan 2022 01:58:57 +0000
ROA not before: Sat 01 Jan 2022 01:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 213.170.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102046880 (0x6151ca0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Validity
Not Before: Jan 1 01:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33ab6dda28c0ee4d62562be0d1aad1c85949ffb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:26:77:f1:de:ef:29:58:2e:8f:c9:d0:d2:1f:
af:65:cc:25:37:c7:eb:9c:56:2c:75:14:45:e0:23:
c4:80:f2:11:8a:bf:12:6d:01:70:f3:c1:68:a7:9d:
6e:76:c6:05:c1:58:e7:ba:f5:5e:5b:96:0f:c1:17:
60:33:3d:2d:27:77:0c:c1:a2:c3:d6:7e:53:23:29:
51:2a:fd:c2:96:f3:e3:68:57:25:46:38:94:ef:53:
b9:3e:5d:d7:84:cf:2b:4b:eb:75:2d:32:56:de:20:
09:e7:92:a8:0b:80:cb:e5:91:8d:ce:98:5b:0c:6f:
4a:3a:ff:b1:32:6f:38:56:20:7a:a8:32:8f:69:7a:
e6:14:22:07:72:ee:55:38:f7:07:24:47:b1:df:fb:
e0:cc:02:85:28:d9:63:6f:8b:f4:3d:64:de:07:9e:
b3:a4:c2:2e:1b:a0:70:ce:5a:f5:a7:fc:a0:e8:0d:
ad:6f:19:73:30:8e:0c:7d:06:25:f7:7b:8a:86:b7:
13:ff:d3:4b:06:46:cc:6b:56:34:2e:0b:eb:b7:82:
28:2d:61:14:a8:fc:09:a8:0f:87:2d:83:fd:fd:c3:
80:3f:12:f0:5a:ea:38:53:06:80:79:c1:94:1f:5e:
22:6d:85:50:91:20:0b:2e:72:4e:d8:2c:d7:80:11:
9a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:AB:6D:DA:28:C0:EE:4D:62:56:2B:E0:D1:AA:D1:C8:59:49:FF:B9
X509v3 Authority Key Identifier:
keyid:CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/M6tt2ijA7k1iVivg0arRyFlJ_7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.203.0/24
Signature Algorithm: sha256WithRSAEncryption
50:1f:88:bd:6f:fe:59:2f:fb:2c:60:74:3d:b9:03:1f:46:3f:
92:a3:8f:f8:42:db:9f:3a:1c:58:b0:11:5e:92:a4:32:a4:85:
a3:b1:ca:d3:e2:fe:f5:9c:cf:71:28:d1:0b:81:08:a4:6c:e2:
96:33:dc:06:95:e6:5a:37:bd:68:f6:ea:3e:2c:9b:c0:ad:ff:
68:9f:a0:0e:2b:75:73:e6:f0:4c:2e:56:17:d8:87:b4:7b:f9:
78:83:f2:04:d5:f6:65:40:50:a5:89:0c:4d:9c:f6:76:4a:cf:
4f:e9:90:0d:68:ab:59:e9:81:c2:9c:4f:46:6c:7d:28:7b:6c:
47:a7:c5:1c:62:f9:a0:06:9d:d5:e9:d6:1f:68:af:30:cb:91:
62:00:eb:d8:af:9b:2b:31:2b:44:b9:92:0f:e6:7a:c2:02:cc:
b3:79:92:04:fc:c8:2f:55:5a:00:c8:d1:67:c0:58:aa:4e:fa:
14:a2:a7:46:00:e8:27:b1:79:9e:1b:28:ab:ea:e9:b2:6a:9c:
a8:ad:7f:9e:d0:f6:54:47:f6:cc:f3:43:1d:cd:5d:d1:ab:fb:
ad:73:02:9d:67:6b:52:01:04:e1:15:92:2f:eb:b2:31:40:cb:
61:d7:cc:ca:f4:2b:78:5e:8b:98:38:cd:67:07:54:cc:08:41:
b4:68:83:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:45 2025 by rpki-client