Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/SuQbOihV9XQZIdk_OJztz655yv0.roa
File: SuQbOihV9XQZIdk_OJztz655yv0.roa (raw, json)
Hash identifier: A0dbEDIaW9+jnEPercd/T2/lZ0u2GzOFRsK/WRqXN0c=
Subject key identifier: 4A:E4:1B:3A:28:55:F5:74:19:21:D9:3F:38:9C:ED:CF:AE:79:CA:FD
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AB5B579
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/SuQbOihV9XQZIdk_OJztz655yv0.roa
Signing time: Sat 01 Jan 2022 16:03:07 +0000
ROA not before: Sat 01 Jan 2022 16:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50875
IP address blocks: 213.14.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448116089 (0x1ab5b579)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ae41b3a2855f5741921d93f389cedcfae79cafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:76:19:f5:a3:a1:3b:17:95:32:c0:7f:1f:be:
77:46:76:b0:7a:08:6e:e8:b7:ee:c0:60:15:b5:65:
c6:8a:d1:44:8c:c5:66:16:73:6f:1f:b4:d7:80:ae:
2c:7a:28:62:4a:a3:de:a6:bb:91:5d:68:e4:aa:37:
01:43:5c:05:ed:ed:59:ba:02:05:78:ba:63:81:d1:
80:85:4c:d8:70:e0:97:3d:e5:b6:51:87:0b:7f:f3:
9f:ce:96:61:c6:5f:dd:4b:10:16:c0:ac:44:d3:a0:
6f:1f:5f:89:27:2a:fa:67:83:ef:eb:94:2e:fd:87:
39:9c:a7:62:74:a0:2f:ab:8b:01:89:df:5f:34:14:
88:1d:8f:d6:b5:c0:c0:7c:73:ac:c2:bf:3e:81:0a:
1e:c1:38:8f:82:1f:8b:4b:c0:22:3d:36:37:97:f9:
43:b4:54:2b:d1:9c:c0:fd:f9:88:38:92:1f:46:72:
c2:3d:0e:9d:94:e4:90:34:3c:5a:26:dc:75:99:a5:
6c:c8:5d:f9:08:28:93:91:1d:9b:78:e2:b0:65:e2:
82:43:ab:38:19:2e:29:d9:5f:2d:7b:6b:67:7c:87:
5b:66:85:ec:1c:d8:6e:1b:6a:68:5c:65:35:e7:14:
03:ee:92:01:f7:d2:1a:bc:c4:75:84:29:87:df:4a:
a4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E4:1B:3A:28:55:F5:74:19:21:D9:3F:38:9C:ED:CF:AE:79:CA:FD
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/SuQbOihV9XQZIdk_OJztz655yv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.238.0/24
Signature Algorithm: sha256WithRSAEncryption
11:11:0a:38:64:cd:91:ec:1e:4b:a2:2a:45:21:cd:fe:37:69:
35:71:e3:76:04:40:9d:7e:c1:35:ba:54:47:1b:0b:fc:dd:d5:
8a:17:fc:36:41:fa:1d:0d:55:2a:b0:38:76:55:b3:57:a1:7c:
ec:57:e2:d7:db:3b:43:38:a2:98:9e:f3:4a:a3:5e:d7:b8:71:
e8:86:e5:76:61:c6:8b:91:7a:bb:92:68:cc:02:a2:b1:d4:3d:
52:bd:89:7f:db:e7:4a:54:d5:d4:3a:c8:7a:46:82:aa:fe:ee:
cf:58:18:77:aa:bc:c0:1e:97:37:7c:3b:bd:81:f3:98:fe:ee:
d9:7b:b3:a5:c9:2c:be:25:a4:84:d0:bd:6c:cf:a1:c7:d7:82:
7c:b3:f9:c9:0f:f6:d4:84:18:79:5a:57:51:4f:0c:03:aa:bf:
ca:8f:73:1b:16:a1:00:aa:b6:40:52:32:26:9a:a8:47:1d:db:
ed:65:19:1e:49:75:b1:39:77:c6:28:23:68:d5:00:87:da:da:
6d:f7:ab:78:07:98:5b:e2:28:26:f2:2f:30:5a:03:86:bd:cd:
0b:81:99:71:3b:18:f9:85:a2:b4:d8:54:57:60:55:14:16:95:
08:d9:78:96:5c:e5:47:24:b7:00:1e:67:36:f9:71:cd:78:f2:
55:bc:43:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org