Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/h2DFPpCNA6COuPEoRaPU97R5gp0.roa
File: h2DFPpCNA6COuPEoRaPU97R5gp0.roa (raw, json)
Hash identifier: zY9cxRaVMIGEQvUKXBpy5q+2ICHe8qLll7A2PfG2tuw=
Subject key identifier: 87:60:C5:3E:90:8D:03:A0:8E:B8:F1:28:45:A3:D4:F7:B4:79:82:9D
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AB30FF2
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/h2DFPpCNA6COuPEoRaPU97R5gp0.roa
Signing time: Sat 01 Jan 2022 16:03:06 +0000
ROA not before: Sat 01 Jan 2022 16:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48313
IP address blocks: 213.14.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 447942642 (0x1ab30ff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8760c53e908d03a08eb8f12845a3d4f7b479829d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:ca:ba:88:7a:6a:9a:b6:33:4a:18:f7:83:9d:
8f:13:12:ea:2f:bf:13:54:f4:d0:43:8d:3a:d8:3d:
dd:1e:71:29:45:ca:9c:92:8f:bb:13:10:e9:2e:a8:
82:88:48:dd:ce:36:5d:a2:0a:98:9c:8a:00:65:be:
0f:09:f1:e9:d0:1a:9c:ff:12:c6:a2:5e:41:16:ea:
b6:c9:ff:d4:e0:7d:7e:82:89:9e:0f:ca:1f:5a:c7:
5b:34:f1:aa:c3:b1:af:70:59:b2:37:f3:71:94:68:
59:b2:d3:0f:32:87:58:08:c1:6e:eb:42:23:c7:53:
45:83:de:70:ba:0b:4a:76:ea:4b:4c:bd:6e:36:26:
93:3f:ef:02:94:4e:20:26:f4:8e:eb:6f:43:8c:cd:
19:25:5d:88:fa:a9:c5:bd:31:a6:a7:27:60:0e:6d:
c8:6d:e5:0c:7b:2a:bb:30:8b:32:e3:a0:ad:d1:3b:
f6:e3:30:8a:53:aa:ce:7b:31:33:38:45:b3:5d:d9:
a5:b6:00:84:c3:2e:07:8d:1a:56:4c:45:47:d2:6b:
4f:20:a2:f5:4a:a4:16:75:f6:7f:28:f1:07:0a:a5:
6e:f3:62:86:bd:ba:8d:ee:96:10:f3:5b:0a:52:cd:
38:d0:ec:08:30:36:b4:93:44:83:20:7f:2d:bb:0c:
f6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:60:C5:3E:90:8D:03:A0:8E:B8:F1:28:45:A3:D4:F7:B4:79:82:9D
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/h2DFPpCNA6COuPEoRaPU97R5gp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.254.0/24
Signature Algorithm: sha256WithRSAEncryption
37:f5:f6:13:e2:d8:30:fb:a3:b2:4b:8e:0a:1e:6c:01:5d:ca:
3f:89:71:86:b3:b0:76:8c:b5:3e:63:a8:b8:ed:32:28:fd:c3:
05:be:c3:33:ea:f2:f2:5b:8b:fb:56:36:32:5f:4d:b1:63:d1:
1e:ac:fe:ec:34:c5:5a:ec:c5:1e:9a:7e:b3:d8:f9:f9:07:f9:
9b:4d:46:fd:d7:d8:88:e7:be:ec:7a:d1:6a:98:13:a1:2d:32:
2f:ce:ff:fc:97:f4:36:73:04:f7:90:c2:f3:66:ec:7c:af:ee:
6d:47:da:ce:0f:06:91:e3:8e:af:c4:b3:85:cd:40:93:66:65:
ec:0f:d6:bc:5b:59:ee:da:88:b9:04:1e:cf:b0:6b:27:b7:4b:
a7:b0:e5:9a:1e:c8:28:9e:16:28:7a:5e:0a:ba:d6:c9:a7:e7:
09:e5:df:04:10:e4:71:d8:e9:1b:1f:16:12:4c:c8:05:e4:85:
0e:ef:04:9c:cf:be:cc:e3:43:e4:e2:5e:4a:be:8a:77:92:f1:
c6:1a:29:9e:dc:86:c6:5b:13:c6:99:bc:21:45:26:f6:db:f9:
eb:d3:a7:dc:3e:73:c6:45:c0:cf:ca:77:a2:14:86:0f:b5:0e:
32:80:ca:ae:df:70:7b:6a:8c:46:cf:b1:db:41:b9:5d:60:24:
b3:be:87:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org