Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/glsL98YUO78rRJCumLMTM54FsWU.roa
File: glsL98YUO78rRJCumLMTM54FsWU.roa (raw, json)
Hash identifier: hDl3bBKVMOQQm0A82Q9ZPNfm/ha2UyvsFOM2w6XYZSA=
Subject key identifier: 82:5B:0B:F7:C6:14:3B:BF:2B:44:90:AE:98:B3:13:33:9E:05:B1:65
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AB8F36F
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/glsL98YUO78rRJCumLMTM54FsWU.roa
Signing time: Sat 01 Jan 2022 16:03:09 +0000
ROA not before: Sat 01 Jan 2022 16:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60250
IP address blocks: 213.74.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448328559 (0x1ab8f36f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=825b0bf7c6143bbf2b4490ae98b313339e05b165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6b:4c:de:cf:f0:27:c6:bc:74:d6:17:18:ab:
ca:72:05:95:61:39:7f:6e:e1:f6:6d:ed:de:2a:e5:
67:12:54:0a:ec:02:04:22:dc:ad:ec:fb:41:0f:8b:
fd:91:e9:ef:f5:4f:9a:14:28:90:c6:dd:95:dd:00:
d1:ae:06:4b:6f:72:63:06:d6:d2:5b:30:75:a7:1e:
03:6d:6a:3b:3e:ee:d9:0a:24:15:7d:69:7e:27:54:
18:d9:38:c8:15:f2:c9:b7:03:81:1d:66:d0:d6:37:
8b:ed:1c:bc:4b:60:e6:4a:4f:1f:86:7d:37:52:21:
d3:62:05:99:5d:62:95:06:27:4a:a3:4d:63:fb:d6:
a2:06:cb:ca:49:fb:0c:bd:1b:93:e7:b4:d8:fb:18:
2b:f3:d1:f5:6c:6d:52:5e:5b:c5:5e:9f:95:1f:4b:
a5:35:6e:03:9d:da:0e:82:81:90:50:0e:30:aa:9c:
b3:7c:a6:3a:d9:46:55:d1:73:c8:0a:ee:fa:9e:07:
11:e5:77:50:ea:b8:1b:5f:c8:2f:79:bb:e3:35:69:
17:d8:d7:c3:bf:7f:68:f3:fa:b7:63:a8:7c:8c:c6:
35:02:26:9d:65:d4:13:e5:78:72:76:70:4d:fc:4d:
1f:e6:d5:2d:dc:16:8f:01:3f:71:58:ce:5d:6c:c3:
5d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:5B:0B:F7:C6:14:3B:BF:2B:44:90:AE:98:B3:13:33:9E:05:B1:65
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/glsL98YUO78rRJCumLMTM54FsWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.74.40.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b4:e9:f6:3f:95:fd:41:e0:7d:a6:70:18:18:6e:00:f5:6d:
83:5f:2b:1e:a4:a5:12:3b:6c:39:38:7f:3d:d1:12:bb:77:00:
76:a4:99:b3:cf:ce:d5:c2:65:26:ed:cf:04:dc:b6:b5:80:a0:
75:4a:2b:1b:0d:b3:db:3c:9b:14:bc:9b:91:78:36:27:d1:06:
80:d0:c4:22:c1:60:a9:f6:4e:1a:17:d2:f5:bf:54:7a:16:c3:
41:45:3c:78:d8:5f:89:5b:d9:8c:99:8c:db:f0:9c:6f:15:b3:
d6:5e:7b:c9:fb:32:2d:d4:85:10:47:04:08:05:03:82:5a:16:
cb:24:dd:1c:79:d8:0b:ba:0c:73:3b:5c:6a:b5:8b:e7:38:61:
09:e5:17:df:9b:5d:1d:42:de:32:d6:a1:29:8c:29:b1:84:9a:
fc:c6:c6:b8:5e:d8:92:c9:40:d6:d4:31:54:22:8e:51:57:15:
97:72:61:5a:c7:13:6b:11:91:a6:46:0f:4f:49:f9:9d:7c:2d:
f8:6e:fc:fa:5f:d1:03:13:a9:1c:e1:54:ee:2b:81:51:bc:f3:
02:bf:6d:5f:fe:3d:7f:13:76:77:5a:fd:a1:57:a8:e8:61:17:
d9:24:27:c8:06:f5:f8:78:7f:9b:46:83:dc:27:d1:c0:d9:f9:
39:76:68:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org