Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/2neKCuN3StAVPviwjvPjRE2hIwE.roa
File: 2neKCuN3StAVPviwjvPjRE2hIwE.roa (raw, json)
Hash identifier: VGp2XmjzvRnreZMekk1Cv5mRCtCB6VcKmag9YACHbqg=
Subject key identifier: DA:77:8A:0A:E3:77:4A:D0:15:3E:F8:B0:8E:F3:E3:44:4D:A1:23:01
Certificate issuer: /CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Certificate serial: 37BE7C15
Authority key identifier: 4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/2neKCuN3StAVPviwjvPjRE2hIwE.roa
Signing time: Sat 01 Jan 2022 12:06:56 +0000
ROA not before: Sat 01 Jan 2022 12:06:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199551
IP address blocks: 83.230.40.0/21 maxlen: 21
213.227.68.0/22 maxlen: 22
212.106.163.0/24 maxlen: 24
212.106.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 935230485 (0x37be7c15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Validity
Not Before: Jan 1 12:06:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da778a0ae3774ad0153ef8b08ef3e3444da12301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c8:7a:38:0a:99:36:b6:c6:77:7f:07:cc:4a:
ff:26:f1:72:9c:12:2f:71:8e:c8:f0:4e:31:37:40:
9e:90:06:54:4f:33:62:39:ac:7a:e2:d0:62:d8:e4:
f4:53:7c:78:f7:8a:79:c3:fb:e1:b0:1f:60:dd:48:
81:9c:38:a9:43:78:80:cf:1b:d1:27:df:d0:7f:48:
7f:9b:9f:b5:a8:eb:11:05:d1:f8:f5:d4:f6:de:29:
ae:38:1c:12:0f:fa:06:46:92:f0:b0:32:c0:10:ff:
ed:f8:85:52:e6:af:f1:2b:5f:31:d5:19:96:7b:5a:
8b:a1:2b:c0:82:cd:fa:ad:53:e8:f6:54:a8:fb:2c:
61:b8:3b:e9:e1:0f:6f:60:9f:11:18:a2:93:20:42:
37:f7:0e:07:7f:a9:a8:9a:55:3b:6d:fd:5a:8c:1c:
26:3e:2c:45:38:29:57:cb:15:94:d5:9f:59:d2:91:
d6:0a:20:b8:ea:d2:9f:44:a0:07:82:89:0f:de:0c:
ff:f8:81:ce:bc:06:76:6c:74:eb:8e:dc:0d:36:17:
49:6e:04:89:84:9a:29:8d:e8:df:55:8b:e2:0a:6a:
1e:6a:40:18:e9:c8:84:55:bf:04:02:3b:61:a4:9e:
9c:92:ab:58:65:ba:ce:da:7f:8b:10:c8:22:89:72:
41:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:77:8A:0A:E3:77:4A:D0:15:3E:F8:B0:8E:F3:E3:44:4D:A1:23:01
X509v3 Authority Key Identifier:
keyid:4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/2neKCuN3StAVPviwjvPjRE2hIwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/S0BcqrNLv95rjuZsYAhgxs6W8ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.230.40.0/21
212.106.161.0/24
212.106.163.0/24
213.227.68.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:81:c2:61:27:c4:0c:ec:21:64:67:b8:e6:f4:ea:20:bf:e5:
ca:1f:81:34:37:3a:3e:e3:93:32:57:32:43:93:71:96:f9:3f:
bc:48:4d:14:ed:f9:4f:0b:ed:71:49:a4:7e:fe:fa:8d:b7:4b:
69:73:9a:31:33:78:3b:30:77:ee:89:0f:a3:c7:dc:bd:5f:f3:
9c:66:21:45:a5:ce:78:0c:4c:c3:4c:ec:cb:59:ee:7f:0a:10:
7c:bf:cc:64:d0:bb:04:7b:6d:ed:ce:83:f7:e0:eb:ae:0b:14:
d3:ad:71:b9:c3:85:81:f2:39:97:31:6f:bf:08:5f:a6:49:df:
f7:3c:fa:e7:1b:4b:7a:a2:38:46:e5:06:c4:4a:dd:fa:0f:e7:
a3:95:be:1d:63:0d:2a:41:18:ad:2b:92:b1:06:95:56:b4:25:
9b:92:00:e4:e2:35:99:bb:c6:c5:a8:82:7d:e9:7b:08:ff:de:
67:f1:d3:5b:0c:1f:f8:48:33:77:fe:b4:5e:79:e3:ea:0a:19:
01:68:33:ee:63:0f:7a:7d:0a:34:2b:ed:93:82:b9:8f:d7:0d:
2d:39:89:5d:46:d1:d4:37:d3:0c:00:ae:d3:54:3d:40:47:2d:
6b:64:03:a4:8b:6c:fb:6a:93:bc:73:1f:05:ac:e7:5c:30:cf:
7f:23:2c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:36 2024 by rpki-client on console-ams.rpki-client.org