Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/1DPB9nFc5ueVTlPsOpMlj-bzYAk.roa
File: 1DPB9nFc5ueVTlPsOpMlj-bzYAk.roa (raw, json)
Hash identifier: 0zenguj4c+uFQXIo0zBulQb4rCk3XhPbCcH1Cp12+DA=
Subject key identifier: D4:33:C1:F6:71:5C:E6:E7:95:4E:53:EC:3A:93:25:8F:E6:F3:60:09
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AB18688
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/1DPB9nFc5ueVTlPsOpMlj-bzYAk.roa
Signing time: Sat 01 Jan 2022 16:03:04 +0000
ROA not before: Sat 01 Jan 2022 16:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42193
IP address blocks: 213.14.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447841928 (0x1ab18688)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d433c1f6715ce6e7954e53ec3a93258fe6f36009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:ce:31:58:a4:87:73:b3:ac:39:1f:2c:9e:
a7:bd:3c:5b:ff:ed:5c:7b:11:ba:bb:5d:ea:71:6a:
cd:97:9c:8a:a2:13:2b:76:fe:70:ae:2a:71:39:4f:
22:72:b8:2a:77:cc:98:da:27:ea:e2:62:19:c6:cc:
68:02:e6:d9:22:b4:1c:70:4d:a5:f0:73:c3:2c:7d:
eb:29:16:df:c5:d0:2a:35:5c:7e:08:0c:a6:4d:2d:
98:20:b4:90:51:91:9c:3b:0e:d2:3d:d5:ab:e2:b9:
a0:19:1d:e7:c5:e5:55:db:57:d4:4d:6a:97:08:f0:
b9:45:b3:06:15:e8:69:2a:bb:a4:8a:4b:81:1e:a6:
38:37:5e:c9:27:3b:be:9b:9e:11:46:04:c8:03:a6:
f9:61:5c:96:f4:30:9e:a9:f0:ca:df:a4:f7:42:eb:
ac:9b:fd:a0:b4:06:05:13:59:91:b1:9b:bf:12:90:
e8:34:e2:d8:de:75:32:bb:b0:2c:89:84:fe:a0:75:
05:f2:fa:8a:88:1d:25:be:7d:34:ab:94:5d:e2:0c:
b9:66:50:52:67:7b:13:45:58:69:fe:14:a0:2d:b1:
95:ea:3f:14:5e:c5:2d:c2:ff:46:fb:d9:ad:1a:27:
8a:56:35:53:6e:9e:92:14:a0:53:8c:b9:b9:ba:35:
34:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:33:C1:F6:71:5C:E6:E7:95:4E:53:EC:3A:93:25:8F:E6:F3:60:09
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/1DPB9nFc5ueVTlPsOpMlj-bzYAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.241.0/24
Signature Algorithm: sha256WithRSAEncryption
12:89:ea:97:8c:ee:03:d1:b8:61:28:5b:45:6f:67:26:b7:02:
ac:a2:70:0b:e2:ba:88:6c:d2:ac:7c:55:93:37:15:50:2b:25:
de:8b:21:4a:2a:af:60:ff:9d:1d:2f:c0:34:1d:82:1c:b9:96:
67:93:00:2c:e5:e7:7b:54:c8:1f:93:a6:5c:4b:7c:c6:dc:c2:
6b:39:3e:20:9e:0d:8c:0f:e3:99:bb:37:93:a6:75:26:dd:eb:
ad:7b:bc:a2:e0:0d:79:bc:ba:d7:b8:c6:1a:b2:a8:75:cd:1a:
78:f0:20:75:de:96:e1:19:81:b6:db:75:22:c1:10:42:8f:d7:
57:51:68:8e:98:ca:06:47:eb:29:b1:e1:17:5b:bb:76:24:af:
fa:55:25:01:7c:c3:6e:a0:30:e2:22:c0:e7:41:82:f5:a5:01:
cc:92:12:8c:38:53:6f:8c:e9:03:bb:72:62:ad:a4:e6:a5:3c:
5b:b8:59:15:c8:dc:f1:6f:ee:95:dd:f2:38:63:79:9a:6a:b7:
09:06:cc:de:cf:ef:45:fa:e6:65:76:d6:53:9b:87:44:73:a8:
58:71:dc:5a:b6:01:b4:6c:4e:eb:36:e1:75:c0:4b:af:41:ea:
6f:ff:29:b1:73:21:85:7f:3b:20:fc:53:23:c6:ae:eb:e9:83:
f7:6e:be:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org