Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/etip8AZ-MBkH8gM6vssmRZD3VBE.roa
File: etip8AZ-MBkH8gM6vssmRZD3VBE.roa (raw, json)
Hash identifier: j7C4Lr/yfMWe5e65+fPG1GLyVvJ8VDMR2N/6SoLYYo0=
Subject key identifier: 7A:D8:A9:F0:06:7E:30:19:07:F2:03:3A:BE:CB:26:45:90:F7:54:11
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 080AC61A
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/etip8AZ-MBkH8gM6vssmRZD3VBE.roa
Signing time: Sat 01 Jan 2022 11:54:17 +0000
ROA not before: Sat 01 Jan 2022 11:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211614
IP address blocks: 213.252.243.0/24 maxlen: 24
84.15.125.0/24 maxlen: 24
84.15.127.0/24 maxlen: 24
84.15.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134923802 (0x80ac61a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 1 11:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ad8a9f0067e301907f2033abecb264590f75411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:87:f3:4c:e9:2a:09:1d:a1:12:3f:ab:ff:
81:81:eb:64:9d:14:6e:ad:f0:4a:04:47:bd:2e:e5:
07:89:cc:86:24:3d:fc:c6:a0:4d:fb:f5:fd:f7:12:
44:77:ba:cf:47:3c:b2:c7:cd:4a:2c:ad:12:67:aa:
6d:6c:2e:bb:e2:ba:35:1e:82:ad:6e:ba:59:a7:12:
2d:15:32:12:bd:12:95:49:f8:20:da:2c:66:73:5c:
10:43:33:3d:39:02:f5:af:0d:e7:97:14:82:2d:4a:
5a:ea:18:f3:26:81:13:5c:53:96:d5:d9:39:98:b3:
57:28:55:06:53:17:08:8e:1e:5d:42:22:52:4d:7a:
97:2c:ff:30:c4:cf:14:6f:23:45:6a:08:6b:b7:96:
cc:16:69:a0:17:ad:a1:e4:89:8e:94:c4:22:bc:76:
0a:03:b0:1e:e3:37:82:ee:f2:19:9d:ba:0e:72:09:
cd:b9:c2:2c:d3:b7:f5:e9:97:32:fd:31:e4:94:d6:
26:63:03:93:e7:ae:50:c8:1d:c3:03:1e:ab:e8:3b:
07:4a:f5:06:65:bf:ea:fb:ff:cd:eb:fb:04:79:1e:
5f:44:26:c5:93:d1:00:81:61:bf:a9:c9:d8:92:db:
f3:21:22:b3:ad:cd:16:d3:b6:48:59:d4:66:78:9b:
e8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D8:A9:F0:06:7E:30:19:07:F2:03:3A:BE:CB:26:45:90:F7:54:11
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/etip8AZ-MBkH8gM6vssmRZD3VBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.15.125.0-84.15.127.255
213.252.243.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:c6:1c:e7:46:e9:94:e2:ef:a0:63:5d:e3:f2:4e:09:7c:83:
cb:b0:61:a8:8f:bd:63:8d:a9:a9:b3:24:2e:a5:4f:b7:04:7b:
87:e4:fd:8a:a9:f8:79:d5:5e:a5:05:09:10:1f:56:b2:94:cf:
a6:ad:da:9e:d4:cc:4f:41:b2:12:18:74:9d:53:bb:d3:de:c8:
f7:8e:2b:75:c3:f3:dc:5e:e5:da:ad:df:f7:c7:2d:34:46:b7:
9e:01:eb:5a:01:a3:bc:96:91:c1:da:2c:30:9d:e7:63:5c:2b:
49:d7:c0:95:61:ca:35:cc:60:69:2c:14:b4:42:e4:97:96:6a:
0b:c9:63:22:96:b9:0d:7e:89:1b:84:9c:48:62:8b:60:97:c4:
51:bc:62:36:5a:4d:5f:85:91:d2:70:9b:71:bb:d7:4c:93:73:
12:d3:f1:08:83:c5:93:96:d2:0d:5a:c8:bb:51:d2:09:31:29:
44:7d:8a:b3:3f:63:8c:23:e2:d2:bf:ea:80:ce:13:48:72:6e:
df:c9:2f:bc:0f:d3:f9:8a:89:13:ff:d8:e1:82:73:23:f9:af:
d9:05:2e:0b:3a:81:db:41:e2:bc:19:08:52:c6:fc:71:cf:a7:
26:ac:e1:ae:0a:c4:0e:05:6c:8b:f1:7c:05:f9:b1:04:c5:36:
82:51:15:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:22 2025 by rpki-client