Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1bda7c-9858-43f5-8659-69fc056b2625/1/xW-ZDt4p07xx4e_uG8oLPfW9Tbo.roa
File: xW-ZDt4p07xx4e_uG8oLPfW9Tbo.roa (raw, json)
Hash identifier: n8+sTuFTs22lSp5jHtHnhTHTon+E98fRlUTOSput4yQ=
Subject key identifier: C5:6F:99:0E:DE:29:D3:BC:71:E1:EF:EE:1B:CA:0B:3D:F5:BD:4D:BA
Certificate issuer: /CN=2c94d70cfb7e69019a2e01c87d0a5d545a599b52
Certificate serial: 04C15FEB
Authority key identifier: 2C:94:D7:0C:FB:7E:69:01:9A:2E:01:C8:7D:0A:5D:54:5A:59:9B:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJTXDPt-aQGaLgHIfQpdVFpZm1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1bda7c-9858-43f5-8659-69fc056b2625/1/xW-ZDt4p07xx4e_uG8oLPfW9Tbo.roa
Signing time: Sat 01 Jan 2022 10:56:06 +0000
ROA not before: Sat 01 Jan 2022 10:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206049
IP address blocks: 212.11.67.0/24 maxlen: 24
212.11.76.0/24 maxlen: 24
2a0a:7640::/29 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79781867 (0x4c15feb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c94d70cfb7e69019a2e01c87d0a5d545a599b52
Validity
Not Before: Jan 1 10:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c56f990ede29d3bc71e1efee1bca0b3df5bd4dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bd:56:00:4d:b2:d5:18:0e:7b:9d:4e:54:ef:
c6:9e:0a:ee:5c:30:4a:45:4b:15:fd:55:4e:8c:1d:
55:24:31:e5:14:79:60:81:e9:f9:1a:7e:56:8b:09:
60:2e:53:e2:4c:a9:1d:54:a4:01:be:b3:db:c4:4e:
b2:06:da:2c:d3:64:20:8f:b9:82:f8:e5:1b:69:39:
be:e1:9d:c2:92:42:2c:c7:21:73:ea:04:c7:c2:2c:
72:bd:6a:df:cf:92:45:59:8e:c1:b6:0d:39:1b:66:
aa:34:5d:d0:d9:e5:ed:fb:b5:96:94:62:a3:a9:54:
11:00:9d:de:ea:38:f7:02:dd:2b:0e:9f:08:ed:bf:
58:65:b9:ac:71:97:dc:93:95:a7:da:37:4a:9c:bd:
3d:1d:c9:48:df:f6:91:d1:8b:00:ac:e8:e4:9c:e5:
d2:d7:57:6f:f1:eb:00:86:7d:2e:2f:fa:9e:20:be:
55:ee:d1:39:95:b4:16:22:9a:8a:f6:2f:9d:2b:3a:
af:ef:d1:65:23:ed:92:d8:86:68:74:21:64:e6:07:
63:fa:3b:e0:f0:09:e9:e6:39:d2:b3:f6:23:73:42:
83:1e:50:d3:29:51:35:ce:4b:24:89:40:51:1a:91:
c5:56:1c:a0:65:db:8a:20:ff:07:b6:70:c2:ab:6f:
5f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6F:99:0E:DE:29:D3:BC:71:E1:EF:EE:1B:CA:0B:3D:F5:BD:4D:BA
X509v3 Authority Key Identifier:
keyid:2C:94:D7:0C:FB:7E:69:01:9A:2E:01:C8:7D:0A:5D:54:5A:59:9B:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJTXDPt-aQGaLgHIfQpdVFpZm1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1bda7c-9858-43f5-8659-69fc056b2625/1/xW-ZDt4p07xx4e_uG8oLPfW9Tbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1bda7c-9858-43f5-8659-69fc056b2625/1/LJTXDPt-aQGaLgHIfQpdVFpZm1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.11.67.0/24
212.11.76.0/24
IPv6:
2a0a:7640::/29
Signature Algorithm: sha256WithRSAEncryption
07:91:73:a8:e3:4a:f4:00:64:05:9f:eb:37:65:35:c7:65:67:
d3:91:26:92:a8:b1:3a:1a:60:48:fa:d4:ac:8c:24:f2:77:03:
a0:18:32:fa:1a:f1:69:89:74:72:b3:e7:1e:30:82:d0:b6:38:
88:2e:9f:d1:04:66:0f:4a:f9:5c:c9:ac:46:a2:3f:86:e2:0a:
a0:3e:d2:12:a3:39:80:43:48:1b:e2:73:f0:82:97:78:2f:ed:
26:05:f3:aa:3f:c0:11:6b:a7:e9:1b:89:74:f8:ad:c9:c4:36:
6e:b0:7a:71:c0:19:4a:ca:62:0a:05:f7:64:94:78:d6:bf:f7:
4b:0c:e1:d7:5f:a4:29:0d:43:5d:d3:71:41:df:1e:04:3a:39:
4e:73:cc:f3:82:c8:6f:a0:3f:ec:6a:b9:b0:b2:49:59:a3:a4:
84:7a:96:28:cf:b0:d8:0d:48:0f:08:48:7d:e8:e9:75:88:f7:
f9:89:84:ca:53:26:74:21:a0:59:01:c4:15:39:a4:c9:78:65:
b2:0f:70:90:46:f6:18:34:a7:0b:d1:21:f2:71:9f:8c:ae:88:
d3:43:60:65:0a:53:dc:86:52:5f:81:7a:52:00:dc:14:01:03:
22:c7:cf:21:7d:dc:74:60:ce:b0:dc:23:fc:7b:81:c2:69:52:
8e:3d:98:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:00 2024 by rpki-client on console-fra.rpki-client.org