Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/28fce4-81f1-4cd3-a8ed-ab94affb903a/1/AbxTZPX8B5aWMCDIftwHz7XOxNU.roa
File: AbxTZPX8B5aWMCDIftwHz7XOxNU.roa (raw, json)
Hash identifier: T2AkqrHItGvsiUhnPq7/1zIBlu2HWvmowU/E91UW3BQ=
Subject key identifier: 01:BC:53:64:F5:FC:07:96:96:30:20:C8:7E:DC:07:CF:B5:CE:C4:D5
Certificate issuer: /CN=3ff58dffba4df6ac34bd9f48119ae11cfef8a76c
Certificate serial: 018240FFD4CE05C916688C3B23C5A05BE767
Authority key identifier: 3F:F5:8D:FF:BA:4D:F6:AC:34:BD:9F:48:11:9A:E1:1C:FE:F8:A7:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P_WN_7pN9qw0vZ9IEZrhHP74p2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/28fce4-81f1-4cd3-a8ed-ab94affb903a/1/AbxTZPX8B5aWMCDIftwHz7XOxNU.roa
Signing time: Wed 27 Jul 2022 18:51:24 +0000
ROA not before: Wed 27 Jul 2022 18:51:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209836
IP address blocks: 213.232.124.0/24 maxlen: 24
185.126.201.0/24 maxlen: 24
213.232.125.0/24 maxlen: 24
185.126.200.0/24 maxlen: 24
213.232.127.0/24 maxlen: 24
213.232.126.0/24 maxlen: 24
2a13:6b00::/32 maxlen: 32
2a0a:2fc0::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:ff:d4:ce:05:c9:16:68:8c:3b:23:c5:a0:5b:e7:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ff58dffba4df6ac34bd9f48119ae11cfef8a76c
Validity
Not Before: Jul 27 18:51:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01bc5364f5fc0796963020c87edc07cfb5cec4d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:61:10:c9:f3:69:5a:ae:91:a4:9c:60:8e:af:
63:e2:a3:9e:ff:ef:2f:4c:e7:7d:2d:ce:0e:36:bc:
0b:ca:46:f3:46:db:f4:0c:5b:7e:d2:ce:9c:03:f9:
96:8d:cc:c8:69:8d:ba:c8:06:e0:a2:8e:a8:7d:86:
e6:68:b2:14:75:0f:2f:b8:b5:c6:5a:aa:62:a1:82:
c7:e6:08:82:a3:e9:b7:77:a2:96:0b:d5:63:5d:19:
55:49:9d:ba:85:f6:02:2d:b0:fa:d9:8f:59:53:cb:
c2:b5:1d:aa:c0:6e:44:91:bc:95:f0:e8:2e:94:8a:
d7:0e:41:f0:8c:8f:b3:89:64:36:7a:3a:b5:6d:f3:
cd:ce:b8:a1:00:6b:0c:4f:ba:a0:3e:32:18:77:57:
1b:e4:b7:61:77:67:66:1e:79:95:16:f3:d3:62:34:
1c:34:aa:c5:d2:c4:04:96:67:3c:08:89:19:28:a8:
b9:1c:fd:ba:b6:c5:af:5b:40:4d:4b:56:f4:7e:cc:
dd:76:cd:21:2e:c4:b4:6d:19:b9:ce:72:16:b0:06:
e2:19:fb:3b:c6:28:75:e9:a4:c7:38:52:29:7d:7a:
c0:be:02:ee:68:43:f3:e8:67:2a:80:67:fb:b9:f0:
4d:49:24:45:28:0d:22:1b:c3:28:cc:18:85:ff:ff:
8e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BC:53:64:F5:FC:07:96:96:30:20:C8:7E:DC:07:CF:B5:CE:C4:D5
X509v3 Authority Key Identifier:
keyid:3F:F5:8D:FF:BA:4D:F6:AC:34:BD:9F:48:11:9A:E1:1C:FE:F8:A7:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P_WN_7pN9qw0vZ9IEZrhHP74p2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/28fce4-81f1-4cd3-a8ed-ab94affb903a/1/AbxTZPX8B5aWMCDIftwHz7XOxNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/28fce4-81f1-4cd3-a8ed-ab94affb903a/1/P_WN_7pN9qw0vZ9IEZrhHP74p2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.200.0/23
213.232.124.0/22
IPv6:
2a0a:2fc0::/30
2a13:6b00::/32
Signature Algorithm: sha256WithRSAEncryption
7c:1e:84:b4:2c:ee:9e:8e:b8:8b:73:d4:3a:0e:56:c5:87:4f:
27:0a:6a:ad:06:93:cd:2d:b1:90:a0:4d:a3:79:bc:a0:ea:28:
54:05:8f:aa:68:b2:4d:45:66:ce:ae:26:66:5d:e0:7f:da:39:
98:61:38:80:f9:2a:a5:9a:41:fc:b2:b4:4d:78:9f:7a:c8:26:
83:79:d9:98:c6:1a:f4:56:6e:7e:b2:99:89:13:36:28:41:e9:
1a:86:3c:e6:b1:2b:28:11:e8:c2:56:36:9a:b0:91:a2:65:eb:
b2:7a:db:bc:d6:a5:03:0d:46:ea:85:12:38:15:bf:0f:fb:17:
0a:39:a2:8d:dc:f6:d3:44:82:69:3c:b7:34:0f:9b:f7:a5:c1:
64:85:69:18:f0:a1:18:e2:45:d7:e8:92:50:f7:d5:16:76:f4:
1c:a8:61:b8:6c:ba:d1:3a:e1:7b:5f:93:9f:d8:99:5b:63:3a:
e2:c2:11:61:21:22:90:4b:c6:28:6c:1e:03:49:f3:4e:42:68:
12:0a:9b:3c:89:b3:0e:a6:d6:d7:a9:e8:35:53:fa:da:14:cd:
f4:7e:76:20:ac:c2:ee:e2:c6:49:e6:84:10:0b:3e:39:f8:0a:
1f:b0:d3:55:b8:17:ac:bf:c6:ac:4f:77:ef:af:a4:ae:07:45:
2e:0e:db:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:59 2024 by rpki-client on console-fra.rpki-client.org