Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RvIMtQcSSTb-Z6AH8F0ZviQkRt8.roa
File: RvIMtQcSSTb-Z6AH8F0ZviQkRt8.roa (raw, json)
Hash identifier: /4jsBHPaj17yDl1ZURpeMw0+OAuCjsQm2x0M1EtJaUU=
Subject key identifier: 46:F2:0C:B5:07:12:49:36:FE:67:A0:07:F0:5D:19:BE:24:24:46:DF
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AB2562E
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RvIMtQcSSTb-Z6AH8F0ZviQkRt8.roa
Signing time: Sat 01 Jan 2022 16:03:05 +0000
ROA not before: Sat 01 Jan 2022 16:03:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43331
IP address blocks: 213.14.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447895086 (0x1ab2562e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46f20cb507124936fe67a007f05d19be242446df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b3:6e:08:11:9d:27:b5:18:70:75:07:88:9d:
df:47:b6:52:f4:11:8d:72:a1:a9:6d:d5:a4:ba:2e:
f4:84:2e:60:36:d5:7e:fe:bb:f2:d5:94:e5:e1:89:
ee:d0:dc:64:a6:20:f3:2c:66:82:55:d4:68:43:bf:
71:a8:5c:a3:be:d0:e6:55:1e:25:34:28:38:fa:72:
c8:cd:26:e1:56:06:3f:2f:62:c5:23:41:96:01:ca:
f7:ad:23:6e:51:f4:1e:11:aa:c1:34:3c:c8:db:86:
2f:3b:ef:14:b4:4c:84:2a:ac:3e:0d:4b:17:bf:df:
87:ef:57:53:5f:c7:4b:73:e6:80:7a:23:68:90:9b:
5e:73:68:4c:9b:8e:b6:02:f6:7b:3b:57:aa:d8:6a:
d2:5c:a4:76:a6:a1:ee:3e:80:80:cd:9b:4e:bf:d5:
66:d8:97:bc:40:73:0f:e5:d9:08:b7:59:97:8f:14:
d2:88:ab:d3:43:be:50:d7:47:38:18:24:04:f3:35:
06:be:5e:c6:cd:99:4d:d7:2b:ba:63:43:03:2a:df:
65:b6:39:72:03:69:81:b8:d8:c0:bf:64:7e:b7:57:
f3:d0:7d:27:82:77:a1:4a:aa:98:40:68:a4:58:a8:
ab:95:79:38:98:50:39:11:8f:d3:31:c7:8d:b6:3b:
81:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:F2:0C:B5:07:12:49:36:FE:67:A0:07:F0:5D:19:BE:24:24:46:DF
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/RvIMtQcSSTb-Z6AH8F0ZviQkRt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.220.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:2e:3b:12:dc:54:29:e7:e7:63:a0:ab:e6:a2:ac:e2:ad:f7:
01:19:c7:51:d6:81:02:36:02:03:63:7d:f4:35:b6:83:b7:f9:
2d:61:7a:fb:f0:ac:fe:e8:bc:76:3a:f3:3f:46:fb:dd:a4:ca:
29:6a:e9:5b:80:f6:75:ed:61:27:0b:2b:10:74:60:c4:8c:a7:
f1:cb:e8:35:11:f6:9e:89:a5:20:fb:08:4c:4a:09:28:10:10:
4f:8f:2c:62:d4:8f:fb:d3:03:75:aa:09:d2:25:d8:f2:44:21:
f3:95:10:08:19:62:4f:f1:8c:62:17:a0:e9:06:ab:77:69:5c:
20:80:f8:4c:a1:e2:a4:17:6e:c0:72:ff:57:45:69:56:19:48:
2c:20:1e:be:2c:6b:08:45:58:12:2d:2a:00:ea:f5:ba:46:a3:
03:f1:4f:51:6a:43:ea:5f:ff:61:ba:9e:ac:86:18:ec:85:55:
2c:04:d3:44:98:40:e7:4e:ae:5e:cc:d7:f0:b2:2c:b4:cc:2c:
b4:f4:4d:aa:93:92:16:f9:01:0c:0b:b7:a0:ab:30:4d:2b:cc:
2e:76:cb:48:64:22:ad:b1:34:fc:da:ee:96:6e:75:d9:f4:83:
02:08:00:df:a8:b3:e4:bf:47:fa:91:35:d1:65:77:e4:38:bf:
ec:1f:64:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org