Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/28fce4-81f1-4cd3-a8ed-ab94affb903a/1/gjvOpMBUQItB6TWnhYPjW57RDlQ.roa
File: gjvOpMBUQItB6TWnhYPjW57RDlQ.roa (raw, json)
Hash identifier: xWCuomiTI1i12wNPtsoznWKgspWmxqj555uERWa3e8Q=
Subject key identifier: 82:3B:CE:A4:C0:54:40:8B:41:E9:35:A7:85:83:E3:5B:9E:D1:0E:54
Certificate issuer: /CN=3ff58dffba4df6ac34bd9f48119ae11cfef8a76c
Certificate serial: 04289F86
Authority key identifier: 3F:F5:8D:FF:BA:4D:F6:AC:34:BD:9F:48:11:9A:E1:1C:FE:F8:A7:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P_WN_7pN9qw0vZ9IEZrhHP74p2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/28fce4-81f1-4cd3-a8ed-ab94affb903a/1/gjvOpMBUQItB6TWnhYPjW57RDlQ.roa
Signing time: Sat 01 Jan 2022 10:58:19 +0000
ROA not before: Sat 01 Jan 2022 10:58:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209741
IP address blocks: 213.232.125.0/24 maxlen: 24
213.232.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69771142 (0x4289f86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ff58dffba4df6ac34bd9f48119ae11cfef8a76c
Validity
Not Before: Jan 1 10:58:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=823bcea4c054408b41e935a78583e35b9ed10e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:91:93:6c:ee:c8:38:7c:d4:7c:43:8a:b5:11:
91:0d:26:e9:a9:be:9c:ad:f2:c5:2d:75:80:f9:7a:
05:be:ae:00:6c:4c:c7:a3:af:10:f1:da:86:f7:13:
6f:bb:9c:af:11:2c:cc:8a:71:88:25:5e:36:be:90:
38:c7:26:8b:1f:ef:87:38:44:b0:97:9c:c5:45:93:
9c:9e:a1:60:93:49:9c:39:fb:36:5f:19:26:a6:98:
28:7e:4b:7f:13:ab:0a:c1:86:ed:f0:b0:d5:de:80:
2b:49:1d:21:b2:21:b3:df:c8:0b:d4:4b:63:49:8f:
c4:5b:ce:b4:62:85:22:46:9d:2a:7d:79:15:64:82:
36:ff:e6:4f:1e:ae:42:d5:cd:ef:2e:dd:97:8a:07:
5f:69:61:eb:d3:2c:8e:ad:29:2a:30:7c:3d:1f:2c:
18:8f:5e:d1:b0:4f:23:d0:46:34:7a:f3:8f:b0:ab:
db:70:24:26:31:c4:96:75:24:17:83:eb:ca:b9:f7:
bc:45:6f:fb:2d:98:fe:a9:ef:d7:81:f2:a9:31:fb:
ee:6b:78:c7:1f:ad:74:33:04:1d:ed:c8:eb:97:17:
a8:8e:6b:42:8e:b0:fe:6f:e3:47:2b:2b:78:7e:21:
8b:ea:98:5c:d7:c2:3f:57:fb:f4:d7:6f:e3:3b:d8:
34:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:3B:CE:A4:C0:54:40:8B:41:E9:35:A7:85:83:E3:5B:9E:D1:0E:54
X509v3 Authority Key Identifier:
keyid:3F:F5:8D:FF:BA:4D:F6:AC:34:BD:9F:48:11:9A:E1:1C:FE:F8:A7:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P_WN_7pN9qw0vZ9IEZrhHP74p2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/28fce4-81f1-4cd3-a8ed-ab94affb903a/1/gjvOpMBUQItB6TWnhYPjW57RDlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/28fce4-81f1-4cd3-a8ed-ab94affb903a/1/P_WN_7pN9qw0vZ9IEZrhHP74p2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.124.0/23
Signature Algorithm: sha256WithRSAEncryption
60:2a:27:5c:1b:d0:88:a8:6d:21:bd:ef:9d:c3:5b:9d:e1:c6:
65:cf:2f:40:16:6f:c0:12:a7:79:13:de:d6:c7:d8:c5:1d:88:
64:36:8a:8c:82:80:94:e2:41:bc:5c:2b:50:a3:36:ea:ea:a7:
83:43:28:f8:d2:02:9b:38:e8:19:39:cf:73:0a:0b:71:f3:f4:
90:7c:48:6c:d8:53:ba:e6:3c:ec:16:11:76:5b:87:d5:fc:ba:
69:69:fe:1c:a8:ed:bc:1e:bd:d7:70:01:88:0f:8f:89:4c:7d:
fb:2c:da:fc:22:7f:f7:16:22:64:f4:39:e4:bf:c5:21:bf:ea:
ae:ad:6b:f2:9f:cd:26:31:ce:e4:3f:8c:45:ac:9d:a9:89:c7:
f2:e4:9d:eb:5b:7a:02:4a:3f:b4:c4:f0:d1:a9:33:16:ff:b4:
a3:7f:e8:f4:3f:1b:6c:11:f1:79:d5:78:73:80:cc:26:45:04:
3c:8b:da:f0:65:2b:ac:d1:d7:6f:b5:ce:b1:26:67:88:c4:96:
4f:50:f3:1c:d5:61:2a:d0:b6:95:f5:9e:9a:ad:1f:06:83:44:
fb:3c:0b:98:9b:eb:bb:46:dd:af:a5:cd:c8:70:33:bd:39:c8:
d2:a7:1e:a3:f2:ca:67:87:3c:a3:a6:c5:aa:cd:fc:b2:df:db:
00:12:85:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:44 2023 by rpki-client on console-fra.rpki-client.org