Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/dipwWcdZM-mTvOVnQ_67M98ygeM.roa
File: dipwWcdZM-mTvOVnQ_67M98ygeM.roa (raw, json)
Hash identifier: Z3jg/u/bHq9oPicx6QLUcHxw+Hyc2LXnrlODgvAdqE4=
Subject key identifier: 76:2A:70:59:C7:59:33:E9:93:BC:E5:67:43:FE:BB:33:DF:32:81:E3
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1ABA17D8
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/dipwWcdZM-mTvOVnQ_67M98ygeM.roa
Signing time: Sat 01 Jan 2022 16:03:09 +0000
ROA not before: Sat 01 Jan 2022 16:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197042
IP address blocks: 213.14.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448403416 (0x1aba17d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=762a7059c75933e993bce56743febb33df3281e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:59:25:1b:f5:fc:4c:cf:2a:f6:fe:bc:71:43:
08:91:94:66:55:6d:a9:c5:56:5d:b7:ec:e5:aa:64:
64:6a:5a:22:71:9d:35:b2:83:2c:9e:1e:ea:5b:23:
21:04:91:14:14:22:50:ff:78:ec:ff:11:71:c3:f8:
e9:cc:99:74:62:b0:df:cb:73:23:b9:2b:92:ad:bf:
fb:b7:79:f8:60:25:db:14:86:18:d2:6e:20:c3:d0:
9f:1f:1e:47:e7:5f:11:9b:db:a1:70:9e:8f:00:c5:
fc:96:94:89:cd:c3:e1:48:02:e6:40:98:08:f5:b8:
37:3f:d8:e7:e8:3f:a8:b3:c9:b2:03:76:58:8a:da:
47:ea:2f:de:3c:81:1b:fc:d4:62:36:89:23:df:3a:
2a:a0:5f:c9:4d:a1:ba:b8:83:47:f4:ab:34:b3:9f:
9e:55:fe:95:f6:0f:7d:fc:8a:b5:4e:0e:0a:a4:4e:
ae:71:d8:e3:07:27:05:77:9d:4f:df:90:c1:b1:a9:
28:38:af:1b:d0:74:a6:da:07:31:ff:ad:ce:e2:77:
ca:4a:45:2a:41:7a:7d:22:cc:44:b8:bc:13:94:94:
da:34:43:76:4b:15:79:bc:fe:de:ad:3a:40:01:f1:
a9:0a:60:00:1c:27:12:07:3d:0f:42:22:c0:41:2d:
63:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2A:70:59:C7:59:33:E9:93:BC:E5:67:43:FE:BB:33:DF:32:81:E3
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/dipwWcdZM-mTvOVnQ_67M98ygeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.209.0/24
Signature Algorithm: sha256WithRSAEncryption
64:75:d5:47:ae:01:ca:4b:f0:f4:97:7d:7b:75:d2:33:7c:4c:
8c:f2:44:a6:21:47:31:20:66:38:e6:6f:ef:05:ab:7d:9e:51:
0c:69:c4:30:21:19:ee:f9:40:3e:e5:3f:ce:ab:47:75:bd:1f:
df:48:89:8b:f9:12:dd:6d:47:65:2b:2c:1a:39:2f:f9:e1:ce:
b2:e3:0d:76:c1:bf:45:a9:a8:39:9b:21:2a:3b:4c:dd:a6:7c:
c8:20:20:a8:7a:ae:e6:5a:d3:44:89:0a:36:49:0d:a3:82:46:
1f:ff:7b:99:49:82:ef:f6:6c:90:9f:ff:56:5a:24:7f:4f:f7:
39:08:a7:24:e6:71:43:16:8f:58:1f:1a:17:df:64:86:1a:43:
e8:db:ef:ad:62:c6:68:23:9d:d8:76:46:c3:50:54:fb:13:23:
3d:28:61:98:83:20:6a:c6:0b:84:cf:55:c2:02:89:f4:fa:a9:
ec:a4:01:21:52:df:b0:d5:7a:42:76:20:56:c0:c4:88:f5:b9:
72:94:17:90:8b:a3:8e:72:20:55:0b:2a:9b:ec:2a:e1:2d:55:
27:03:70:65:1c:95:67:ae:95:e3:72:d6:5f:42:8b:3e:d6:80:
ea:8d:55:b6:bb:51:6e:2e:c7:62:d5:35:14:eb:a9:be:25:91:
f2:0c:09:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org