Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/tVOT7RzdR1MhArH_gzY_2UF-om4.roa
File: tVOT7RzdR1MhArH_gzY_2UF-om4.roa (raw, json)
Hash identifier: +Jp1W5A3og03Opmyf0xA8KjpGwUg4Gd46wJkfj7lZLA=
Subject key identifier: B5:53:93:ED:1C:DD:47:53:21:02:B1:FF:83:36:3F:D9:41:7E:A2:6E
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 0A034C7E
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/tVOT7RzdR1MhArH_gzY_2UF-om4.roa
Signing time: Sat 01 Jan 2022 13:55:07 +0000
ROA not before: Sat 01 Jan 2022 13:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20978
IP address blocks: 213.161.151.0/24 maxlen: 24
213.161.153.0/24 maxlen: 24
213.161.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167988350 (0xa034c7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jan 1 13:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b55393ed1cdd47532102b1ff83363fd9417ea26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c0:7d:90:00:49:55:a9:e2:74:04:b7:0f:c8:
40:db:ab:46:54:9d:1a:31:83:7a:46:d2:93:f7:46:
b4:50:8e:d6:44:87:30:7f:37:2f:12:f7:10:64:c4:
df:b2:0a:ae:d2:06:f9:f5:9e:b1:97:1b:ce:53:68:
e2:08:ac:5c:9b:04:a0:95:93:81:eb:52:11:c2:50:
7d:35:ca:66:1c:f9:68:d0:f8:d0:8d:ab:56:c5:41:
44:14:d3:d3:41:2f:6b:1e:cd:ad:2b:d5:ed:12:17:
70:da:eb:ce:a5:4b:51:17:0b:02:de:23:b0:ce:57:
d2:9a:c8:28:31:33:16:b4:de:f1:a4:13:aa:5f:4a:
b2:1f:f0:83:51:65:16:e3:08:22:d8:79:1e:a5:36:
49:67:6d:11:f9:ea:17:fd:bc:e6:0b:16:05:1d:4d:
fa:48:0f:88:33:8d:83:9c:74:58:c4:e3:21:3c:84:
9b:be:36:85:a2:5d:ea:8b:d6:94:e4:f4:c2:96:cf:
47:81:ad:33:ab:8b:ad:89:bb:a1:ba:df:f8:17:78:
f1:e5:59:d3:da:2e:a0:92:e8:49:bb:5c:ea:81:32:
c7:45:1c:e5:3b:d9:f2:ae:65:c9:e2:0a:82:91:e3:
a3:e6:ff:be:b2:05:0d:db:d9:dc:4b:fa:72:06:de:
d4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:53:93:ED:1C:DD:47:53:21:02:B1:FF:83:36:3F:D9:41:7E:A2:6E
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/tVOT7RzdR1MhArH_gzY_2UF-om4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.161.151.0/24
213.161.153.0/24
213.161.157.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:62:15:2a:8a:bd:e0:71:cb:fe:57:0e:e0:85:7f:c7:45:37:
8d:6f:fb:8a:8e:02:e0:ef:6a:a6:d0:d4:23:03:b9:8b:49:80:
9a:91:a3:33:11:04:e9:16:d7:4f:e5:7c:a0:6a:75:3f:6d:e6:
8a:5d:55:d0:9d:4d:c6:52:8b:78:d2:93:27:63:db:3e:27:59:
97:89:bf:8d:e1:2b:27:c5:d2:5e:e8:61:aa:b8:ce:68:ce:c0:
bc:41:09:66:cd:4d:52:86:56:2f:bb:f2:2a:c0:85:35:d3:00:
16:0c:80:e5:0c:7f:d8:3c:25:dc:ce:8c:45:da:02:9a:aa:1e:
2a:e5:ec:a7:8b:8b:58:13:e3:71:22:37:82:4f:fd:9b:25:85:
af:aa:02:73:7d:24:4b:ac:d3:c1:43:a3:e4:19:16:75:1c:3a:
bd:29:5f:34:16:57:c0:cc:0f:bd:c3:05:5a:b7:41:f8:20:99:
2b:d9:42:00:b2:93:0d:4d:2c:4b:96:06:25:9f:de:8f:8d:af:
2d:85:d3:4e:80:7a:48:ce:d4:1a:f5:ed:db:e0:c3:b6:29:0f:
71:cd:58:ae:a6:a2:ec:e7:bf:e3:37:3c:7d:fe:ed:19:a0:7c:
bf:9e:44:f7:d0:db:a9:a5:82:ad:20:96:18:44:5f:3b:3d:d0:
0a:e0:e7:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:14 2024 by rpki-client on console-fra.rpki-client.org