Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Jo8vnh0hipqmFgCw5aLygp13YTU.roa
File: Jo8vnh0hipqmFgCw5aLygp13YTU.roa (raw, json)
Hash identifier: LUTqWJPYW824oMJaBB0sFMR1WeTvZSPADg0d09lIh4E=
Subject key identifier: 26:8F:2F:9E:1D:21:8A:9A:A6:16:00:B0:E5:A2:F2:82:9D:77:61:35
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AC22417
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Jo8vnh0hipqmFgCw5aLygp13YTU.roa
Signing time: Sat 01 Jan 2022 16:03:14 +0000
ROA not before: Sat 01 Jan 2022 16:03:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205935
IP address blocks: 213.14.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448930839 (0x1ac22417)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=268f2f9e1d218a9aa61600b0e5a2f2829d776135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9f:a3:82:b2:f9:58:42:7d:97:25:f7:89:b4:
79:48:1a:ac:cc:fc:83:04:4c:89:49:48:d4:06:8a:
46:2a:fe:c3:95:57:a1:37:33:60:69:81:78:d5:56:
e2:ba:d5:72:d0:52:10:18:c5:8d:8a:f0:ce:de:bd:
3d:13:1c:5e:86:45:ca:82:5b:a4:3c:af:8b:3f:5b:
05:ed:20:ac:fe:cb:0e:f9:c4:e3:c1:45:15:05:71:
77:75:e1:3f:db:d3:cf:bf:08:31:e4:9b:8f:39:17:
3b:d6:93:ca:dd:f4:70:65:03:e9:57:ba:70:19:e7:
f9:de:8d:87:29:82:8f:34:0f:30:85:1a:88:64:22:
4e:ff:71:0e:d7:ee:d1:91:6b:63:b2:81:8e:32:40:
cb:d3:87:2a:52:bf:6a:f8:4b:cb:98:00:de:d0:3f:
ef:97:98:07:97:e7:51:53:cc:ad:0a:74:f8:73:c6:
7f:79:43:f9:58:60:53:ab:a2:61:f3:69:46:51:01:
15:d2:86:29:8d:f7:78:2e:4d:cb:c8:b4:ef:57:7b:
0d:eb:c1:f9:c0:7b:cf:32:9b:6d:f5:4b:89:b9:50:
c2:b9:6b:2d:e3:7c:59:06:e5:33:fa:2e:f7:cc:9c:
39:bb:7d:30:44:cc:f5:49:c0:e0:25:ce:12:84:d3:
c8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:8F:2F:9E:1D:21:8A:9A:A6:16:00:B0:E5:A2:F2:82:9D:77:61:35
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Jo8vnh0hipqmFgCw5aLygp13YTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.244.0/24
Signature Algorithm: sha256WithRSAEncryption
32:5b:6f:92:9c:8c:a7:4d:58:c8:11:89:ed:b2:ac:bb:08:7e:
de:03:f4:ef:e5:e7:dd:a3:e3:7b:13:54:78:5d:d2:c0:1c:05:
f8:07:e6:dd:03:3d:26:cd:90:dd:d0:34:f9:89:e4:c8:3c:9c:
45:ed:a1:e7:24:01:1c:0a:d3:9d:21:3d:b7:4d:09:ce:af:d8:
62:30:b9:e0:8e:04:60:61:c7:03:75:5f:40:84:79:10:ac:8a:
99:1c:56:3b:5f:85:81:06:2a:0c:67:bb:1a:a6:ae:eb:cd:01:
ba:c5:53:92:93:49:56:9a:ab:a9:19:4d:92:6f:41:82:39:6e:
bf:49:29:9f:67:1c:ff:36:02:26:bd:c2:d9:75:a1:90:7c:d5:
f9:91:ae:a5:f1:df:51:0a:6b:af:17:b2:e5:20:24:05:74:9b:
7e:8c:83:d8:df:15:d2:00:88:59:03:47:ed:eb:a4:87:a8:4b:
a0:4c:f7:f6:6f:3f:3b:9a:ef:eb:f1:53:c2:53:dd:5f:a8:8e:
94:5a:e2:97:d2:58:d2:12:54:df:95:34:20:8f:25:38:44:25:
44:94:12:07:e5:76:93:38:42:22:6f:13:67:2f:39:1a:d4:93:
eb:63:16:da:46:69:d4:ab:2a:a1:bb:50:cf:33:f6:d7:6c:a8:
bc:8e:3c:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org