Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/cUfi7p1JAUlx3CwAUnpcQhfqwbY.roa
File: cUfi7p1JAUlx3CwAUnpcQhfqwbY.roa (raw, json)
Hash identifier: SW9UCTrACn1Q0pekD1I5gfp4uPf5NblNw6+Y6FJf1Q4=
Subject key identifier: 71:47:E2:EE:9D:49:01:49:71:DC:2C:00:52:7A:5C:42:17:EA:C1:B6
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01829AC4C9738368EF22F0837F841B739F4A
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/cUfi7p1JAUlx3CwAUnpcQhfqwbY.roa
Signing time: Sun 14 Aug 2022 05:12:43 +0000
ROA not before: Sun 14 Aug 2022 05:12:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44966
IP address blocks: 212.16.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:9a:c4:c9:73:83:68:ef:22:f0:83:7f:84:1b:73:9f:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Aug 14 05:12:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7147e2ee9d49014971dc2c00527a5c4217eac1b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8d:7b:3e:3f:58:60:73:79:e6:9f:ee:da:e6:
8f:c3:2f:f6:43:96:93:95:e9:62:2a:ce:1e:1e:ac:
72:96:35:a6:a0:1e:9b:36:10:59:71:74:c7:6c:7e:
a9:26:2c:e8:c0:6a:aa:2d:04:78:0e:76:b2:3a:52:
87:d7:62:8f:fd:b1:0d:e5:da:3f:db:5d:e1:aa:54:
ea:5e:a8:84:1c:d5:40:da:dc:61:cf:e1:75:11:25:
42:48:a7:49:04:b0:32:3e:85:f2:3a:a9:05:2a:59:
3b:a1:db:48:5f:d1:09:9b:de:80:98:f3:ad:17:2a:
b6:20:04:8a:c2:ac:9d:cc:97:43:1d:d5:2d:15:55:
ed:66:28:df:e5:9c:7a:d6:3c:fa:69:83:db:29:cc:
87:08:35:4e:ab:0f:98:be:5a:38:c8:5d:f8:20:9f:
ac:22:0b:a4:2c:ac:08:23:9d:4d:36:33:15:1a:55:
82:d5:43:3b:e1:c5:c1:2a:72:dd:f1:e7:ad:c0:06:
2f:95:d5:de:e2:c2:e3:4e:d2:0c:ff:ec:36:10:20:
71:8f:f1:19:39:6b:02:ab:69:a0:aa:44:a0:e8:e3:
04:ac:0a:fb:be:27:36:2c:4e:01:8a:d0:54:dc:d9:
6c:be:75:58:97:f7:f8:b8:dc:f2:34:cf:18:b9:14:
0f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:47:E2:EE:9D:49:01:49:71:DC:2C:00:52:7A:5C:42:17:EA:C1:B6
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/cUfi7p1JAUlx3CwAUnpcQhfqwbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.71.0/24
Signature Algorithm: sha256WithRSAEncryption
15:73:0b:c6:7a:8a:8a:3c:84:98:ff:af:cc:c0:d6:64:55:3d:
2e:db:61:8c:7a:92:eb:8c:81:9f:02:59:b6:75:68:31:b0:93:
9a:c5:00:5c:ca:a8:ea:72:fe:04:b8:74:0a:42:61:0c:b5:d2:
9c:cb:6c:b4:89:76:a7:72:60:2b:89:d8:cf:2a:b4:7f:16:71:
19:b6:06:d3:74:f9:84:91:ac:85:62:3e:9a:ed:ee:27:ce:83:
0d:71:0e:47:4c:e6:0a:31:2c:33:3e:4d:c8:54:87:b9:e7:f4:
84:e2:02:db:45:b4:62:14:8b:52:52:82:a1:dc:19:d0:55:76:
90:0b:e3:7e:01:0e:08:93:19:f6:c5:2e:bc:31:8f:12:2e:66:
0d:e0:b1:25:0e:b5:f4:b3:4a:00:05:09:29:0e:5b:3a:28:ab:
75:46:fd:86:d7:82:85:73:b8:16:51:e8:d8:e4:3c:4e:c7:fd:
16:01:75:ad:cd:b1:a4:df:d7:8c:89:c6:8d:ef:6d:de:91:9f:
97:ec:dd:4d:21:78:72:24:e0:8e:ff:9d:0d:54:d3:bb:94:4f:
98:31:1a:f1:01:b8:b2:c0:e8:cd:13:1e:d2:d2:6e:14:67:ad:
9d:74:10:eb:7f:c7:0d:83:23:de:83:e1:60:2b:96:04:80:68:
66:36:35:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org