Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/fkvXCB3weY19ITYWYhZIY91ALgU.roa
File: fkvXCB3weY19ITYWYhZIY91ALgU.roa (raw, json)
Hash identifier: 4mocJGRi6dUcAqoFJyva2nIkcjuC7DSmRa2mBvRSIoU=
Subject key identifier: 7E:4B:D7:08:1D:F0:79:8D:7D:21:36:16:62:16:48:63:DD:40:2E:05
Certificate issuer: /CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Certificate serial: 0615F10F
Authority key identifier: CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/fkvXCB3weY19ITYWYhZIY91ALgU.roa
Signing time: Sat 01 Jan 2022 01:58:58 +0000
ROA not before: Sat 01 Jan 2022 01:58:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140641
IP address blocks: 213.170.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102101263 (0x615f10f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccbf95b47ab2b99c222bfe54521efd1ab67d267f
Validity
Not Before: Jan 1 01:58:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e4bd7081df0798d7d21361662164863dd402e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:54:58:02:65:09:72:85:90:3d:92:e1:67:1f:
72:6a:d1:15:ec:05:88:f3:09:12:23:6e:17:a6:66:
47:c2:5b:4f:ad:59:89:bb:73:16:07:3e:e2:51:2f:
4c:bc:c7:57:87:15:2c:84:58:b6:da:d9:c7:4c:18:
a0:97:7c:a7:94:5b:22:74:bc:42:8d:f8:b1:3c:81:
33:e8:64:37:1f:a2:f2:dc:dc:05:a6:56:33:fa:6c:
a1:84:87:8a:c1:13:db:53:ce:26:84:56:35:a4:6b:
6c:2e:fd:0e:c9:57:f2:c2:14:77:fa:93:5c:7b:df:
00:de:c3:f1:3a:9a:d4:4a:3a:bc:26:2a:bb:28:f8:
15:96:29:71:73:46:b0:ce:d6:b1:bf:a8:4d:cc:ce:
24:a6:7c:a3:ad:69:3f:56:f6:01:5c:a8:b3:c1:70:
0a:40:92:39:0f:1a:27:8c:4c:6d:f7:9e:92:6a:5c:
67:8f:a6:ad:7b:9e:c9:d7:02:eb:b2:d3:f0:9f:41:
86:d5:fe:0a:71:04:f1:86:57:30:e8:b7:be:55:fc:
7c:89:89:48:cb:c3:67:f7:75:1f:36:76:78:a8:7c:
7b:79:58:af:63:3f:4b:aa:6b:8e:21:e2:df:5e:ff:
6f:d4:1b:01:60:f0:e5:6f:30:5b:49:41:3f:74:46:
93:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:4B:D7:08:1D:F0:79:8D:7D:21:36:16:62:16:48:63:DD:40:2E:05
X509v3 Authority Key Identifier:
keyid:CC:BF:95:B4:7A:B2:B9:9C:22:2B:FE:54:52:1E:FD:1A:B6:7D:26:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/fkvXCB3weY19ITYWYhZIY91ALgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a29b95-ccb3-467b-ab7a-ac5b61493e01/1/zL-VtHqyuZwiK_5UUh79GrZ9Jn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.202.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:85:31:1d:29:e3:f5:98:01:44:f7:f9:b7:f7:60:4f:48:96:
ca:fc:d3:df:b5:83:3b:f6:d6:29:14:c1:2a:66:42:dc:06:07:
9d:90:1a:42:5a:b8:9c:86:63:76:00:9f:aa:63:41:b0:a4:c3:
c6:20:59:be:b8:b2:39:a6:af:d6:cd:99:64:dc:a9:33:be:57:
af:9c:99:4c:8b:be:cf:f1:95:e9:a3:2c:9a:09:0d:18:13:fe:
93:2d:f5:22:d6:92:39:48:89:dc:01:01:54:70:5d:48:cf:b8:
9b:70:0e:74:e5:b9:ff:c4:70:b1:68:4e:4d:16:17:23:df:99:
6f:89:72:5d:31:41:70:71:91:f6:8d:38:84:b7:87:7d:e6:77:
95:71:12:52:59:e4:2f:b8:b4:62:da:bd:ed:5a:f8:98:75:8b:
59:62:27:80:d7:9e:f4:74:ea:24:5e:0c:44:29:7a:1d:d6:84:
ba:dc:6a:1a:13:b4:98:3a:47:d4:29:24:fd:8b:7b:bf:0f:04:
59:77:72:71:59:31:62:c6:2a:76:b4:4d:37:89:c5:0c:ed:b0:
47:e6:0e:46:0a:26:d8:a7:87:6d:b1:32:14:5d:e1:e9:2e:b5:
88:95:d3:80:42:79:7f:a6:5c:05:f6:91:70:55:cd:f4:bd:4f:
63:28:4e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:58 2024 by rpki-client on console-ams.rpki-client.org