Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/jiV9uwEUwBuG9RyfKE0uZsJw0Zc.roa
File: jiV9uwEUwBuG9RyfKE0uZsJw0Zc.roa (raw, json)
Hash identifier: KetnsN2eii6D5QI9tHNgDdwVavluFwACx1QSVO4Jv1M=
Subject key identifier: 8E:25:7D:BB:01:14:C0:1B:86:F5:1C:9F:28:4D:2E:66:C2:70:D1:97
Certificate issuer: /CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Certificate serial: 37BD776D
Authority key identifier: 4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/jiV9uwEUwBuG9RyfKE0uZsJw0Zc.roa
Signing time: Sat 01 Jan 2022 12:06:55 +0000
ROA not before: Sat 01 Jan 2022 12:06:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196858
IP address blocks: 213.227.66.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 935163757 (0x37bd776d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b405caab34bbfde6b8ee66c600860c6ce96f32b
Validity
Not Before: Jan 1 12:06:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8e257dbb0114c01b86f51c9f284d2e66c270d197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4c:11:24:91:5c:7a:2b:2a:01:8a:72:1a:15:
42:c2:2f:0a:ba:04:0e:46:f9:ec:12:90:0d:b1:51:
f3:c0:56:00:d4:2f:30:18:89:5b:a3:76:e3:aa:d2:
d1:54:f6:6b:06:a2:1e:93:46:f4:ee:e1:41:92:5c:
bf:ae:2a:70:a5:aa:e9:1b:6c:15:3e:b1:d4:11:52:
e7:23:6a:63:0c:95:31:0a:c6:82:9d:57:91:23:f7:
b8:7f:ab:e9:00:18:a5:f8:85:1e:c6:42:5f:07:fa:
b2:f1:31:57:2b:f7:81:a5:1e:fe:73:0c:fa:b4:90:
51:33:18:95:a4:aa:07:95:fe:d9:ef:9e:93:99:f4:
51:4a:90:d0:ee:a4:c3:03:8b:cc:d4:bb:43:82:f2:
55:17:2d:64:44:2a:04:0e:0d:4e:38:2a:38:ba:07:
a6:81:46:5f:d1:69:3a:93:18:58:c5:e8:e7:1a:2d:
bf:fb:1e:b4:ca:4f:65:47:8b:9a:4c:8b:76:3d:df:
4b:1f:a2:88:61:40:83:32:8d:0d:1e:1e:d6:aa:a1:
18:94:3d:ed:95:15:59:e8:94:ac:51:89:ec:4d:c0:
55:3d:a9:8a:8b:65:2a:09:19:cc:e1:8b:8f:1f:5e:
67:a4:1f:be:59:bd:ad:d7:b0:9b:b7:c4:1d:4b:ec:
41:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:25:7D:BB:01:14:C0:1B:86:F5:1C:9F:28:4D:2E:66:C2:70:D1:97
X509v3 Authority Key Identifier:
keyid:4B:40:5C:AA:B3:4B:BF:DE:6B:8E:E6:6C:60:08:60:C6:CE:96:F3:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S0BcqrNLv95rjuZsYAhgxs6W8ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/jiV9uwEUwBuG9RyfKE0uZsJw0Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/914d39-3020-4b79-ad26-d87affb8bc61/1/S0BcqrNLv95rjuZsYAhgxs6W8ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.227.66.0/23
Signature Algorithm: sha256WithRSAEncryption
67:3a:71:4f:06:15:5a:9e:a3:cf:9d:e0:3a:14:ee:08:ea:a9:
41:f7:22:47:f5:41:dd:50:50:c3:0e:15:8c:99:f5:b8:30:8a:
26:f0:9b:5e:49:17:ac:a5:0d:4d:01:26:ee:8a:5e:81:c2:73:
a7:4a:f5:42:7a:09:e6:1f:e3:6c:d7:1d:03:e9:b0:0e:36:f4:
4e:eb:fc:f0:23:a9:78:28:da:c2:73:ec:c9:c0:67:74:f1:07:
14:a0:50:04:bc:b9:63:d3:f1:7f:f7:6a:71:3e:86:7e:16:3d:
ce:e3:a2:22:94:23:fc:b4:6e:d9:d9:a0:78:e0:4c:9a:df:30:
22:b5:15:38:33:d4:ac:f7:23:6d:2b:69:4c:8d:79:5b:d4:d5:
1d:b8:38:95:97:93:d2:a1:5f:23:54:78:65:fd:5b:29:29:8b:
c1:8f:54:b4:1a:b9:3e:7e:d3:08:f6:90:a9:d2:3d:8a:90:1e:
30:95:cf:fe:90:73:96:c3:04:74:50:ca:41:08:1e:c9:db:7c:
f3:8b:10:e2:19:1a:78:b5:56:2e:2d:1e:42:99:1b:bc:f9:f2:
ff:78:9a:f8:31:ee:8b:35:c8:69:e1:71:3c:df:f3:da:85:e0:
78:ed:a6:3d:35:bd:82:f0:ca:3c:e6:75:fb:9b:d2:fc:eb:df:
43:82:a4:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:36 2024 by rpki-client on console-ams.rpki-client.org