Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/5zge3oIweinHdGmSZXlOYxBW45M.roa
File: 5zge3oIweinHdGmSZXlOYxBW45M.roa (raw, json)
Hash identifier: TbGyzv6tXKkcwSkNv5sRo1NgJ82wIfFt7bnOUxmbJEs=
Subject key identifier: E7:38:1E:DE:82:30:7A:29:C7:74:69:92:65:79:4E:63:10:56:E3:93
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 446E9168
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/5zge3oIweinHdGmSZXlOYxBW45M.roa
Signing time: Sat 01 Jan 2022 03:58:17 +0000
ROA not before: Sat 01 Jan 2022 03:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8567
IP address blocks: 217.167.116.0/24 maxlen: 24
217.167.117.0/24 maxlen: 24
212.234.160.0/24 maxlen: 24
212.234.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1148096872 (0x446e9168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7381ede82307a29c774699265794e631056e393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:45:2b:da:a8:1a:22:03:3e:fb:af:77:45:9e:
39:5f:09:44:78:05:c1:30:2e:6f:1e:73:b0:a0:d0:
86:35:8b:7e:e4:00:de:7f:68:56:18:eb:d0:3e:bd:
b1:34:34:64:1b:60:c0:bc:36:05:dd:06:b4:38:60:
89:ee:47:8c:77:54:a8:0b:50:20:0f:cc:a0:28:5e:
30:3e:86:66:bd:19:af:6d:f7:6c:f6:76:16:c5:32:
f9:8f:9a:b5:f8:da:85:bd:68:7f:cf:5f:2a:a5:eb:
ea:6c:68:05:8a:df:d8:72:51:c9:2c:e4:82:c2:0f:
23:5c:16:f6:6d:65:02:9d:b2:25:ad:55:d7:73:e4:
3a:92:22:86:e4:6d:a3:a0:6a:2e:94:dc:8a:98:19:
aa:a1:b8:2b:69:de:93:6f:4b:31:10:14:fd:68:e9:
47:ad:a4:18:c5:d1:8b:cd:c1:94:32:2a:e2:06:3c:
90:07:30:fb:78:35:c7:3c:fb:94:21:21:20:96:19:
80:8c:e3:02:c4:15:2f:07:98:cb:de:93:14:94:cd:
41:9b:ac:ed:99:5b:bb:3e:2a:b0:02:f8:7b:da:0b:
03:9a:f2:da:b2:79:3a:95:69:93:44:64:af:64:a5:
08:63:05:d7:47:07:9a:82:0d:51:56:78:02:2a:4d:
22:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:38:1E:DE:82:30:7A:29:C7:74:69:92:65:79:4E:63:10:56:E3:93
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/5zge3oIweinHdGmSZXlOYxBW45M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.234.160.0/23
217.167.116.0/23
Signature Algorithm: sha256WithRSAEncryption
20:f0:63:88:a7:22:be:09:17:f8:0e:ca:41:6c:e4:75:4e:1b:
4e:95:d3:e3:9e:a0:2c:82:27:96:13:16:fa:ee:cf:2d:79:df:
ab:5c:f8:8f:d6:ee:fb:d6:c6:a2:a7:e6:30:3c:fb:3a:43:40:
d0:13:c5:e3:13:8a:d7:0e:53:3c:27:8a:85:2c:b5:95:2c:b6:
58:60:dc:bd:9c:f9:2c:79:55:fc:80:95:85:30:c7:23:44:cc:
cc:b8:93:09:70:60:76:1c:e6:53:21:01:ea:a2:2a:55:6a:ee:
db:d6:d8:5a:bf:30:16:00:f7:2f:a2:00:67:2e:90:79:cf:96:
cd:30:e5:a3:0c:1e:37:f0:25:26:7f:27:25:f6:74:49:7c:b4:
d5:5e:18:f1:d8:48:bb:bb:68:95:81:7c:50:e1:0d:ec:a7:7d:
50:19:48:f4:5d:5f:8a:ce:b9:f8:5d:50:1f:bf:cf:80:61:c9:
0a:a3:df:01:f6:79:b9:9b:92:15:6e:03:b3:36:e5:3c:1b:c2:
d0:6c:05:9c:81:f4:3e:ca:c0:d7:2f:77:5b:7b:c7:3e:b0:46:
8f:87:60:c2:60:53:05:a5:d3:5d:ae:cf:86:af:fb:60:b8:72:
60:f5:58:dc:6b:8a:29:05:71:b7:16:b4:1a:06:05:d6:51:10:
90:56:72:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org