Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/b38821-23f2-4e5e-941c-a8f0ee00b2ad/1/TTiTFkDiB1uhFAiN3pG2mjokj5Y.roa
File: TTiTFkDiB1uhFAiN3pG2mjokj5Y.roa (raw, json)
Hash identifier: LiYo3Q5SsWZo6A71oxQJdNwFQjVHg//ridDYaAfBC34=
Subject key identifier: 4D:38:93:16:40:E2:07:5B:A1:14:08:8D:DE:91:B6:9A:3A:24:8F:96
Certificate issuer: /CN=b132e935a10f9ce216e0993ae4199c96f5273af4
Certificate serial: 01856DC1C3E2E9406D8FFC13C07CF17D64FE
Authority key identifier: B1:32:E9:35:A1:0F:9C:E2:16:E0:99:3A:E4:19:9C:96:F5:27:3A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTLpNaEPnOIW4Jk65BmclvUnOvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/b38821-23f2-4e5e-941c-a8f0ee00b2ad/1/TTiTFkDiB1uhFAiN3pG2mjokj5Y.roa
Signing time: Sun 01 Jan 2023 14:34:53 +0000
ROA not before: Sun 01 Jan 2023 14:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 212.6.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:c3:e2:e9:40:6d:8f:fc:13:c0:7c:f1:7d:64:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b132e935a10f9ce216e0993ae4199c96f5273af4
Validity
Not Before: Jan 1 14:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d38931640e2075ba114088dde91b69a3a248f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:64:fd:d6:8f:d4:9b:a4:c4:42:79:37:f1:e2:
fc:91:ad:17:48:1f:a7:47:6f:fa:88:98:fd:f5:b0:
42:bf:b1:cc:54:e4:88:be:f6:c8:1f:7a:bb:62:93:
ba:34:bf:54:2d:74:10:51:9a:0a:6e:79:0d:34:26:
9b:b7:87:7c:8b:7f:78:09:f7:f0:14:62:3a:0b:65:
36:67:3c:75:b5:40:4c:fd:9d:bd:63:23:f4:55:4b:
48:70:6f:c4:ec:a7:4a:97:00:3d:95:c3:f0:43:58:
1a:6d:61:0b:b1:f5:5f:26:3d:a2:54:f8:bd:fe:7a:
6c:8c:72:5d:18:3e:52:21:80:af:29:e7:c3:61:33:
bd:32:c7:22:52:e1:12:b4:c7:80:00:91:c3:1e:33:
d0:b2:e9:cb:7e:6f:43:f9:de:c5:40:9c:49:b3:96:
94:d8:a8:8e:68:37:4c:5c:22:db:5c:2e:76:70:92:
6a:b6:c4:35:97:fa:5f:19:de:6c:6c:6d:14:8e:e8:
16:bc:dc:5c:b4:bd:7a:84:fd:51:f2:16:ea:6a:12:
02:72:b2:ac:99:2e:4a:35:1c:a0:b2:b5:d1:52:1d:
9e:b0:59:39:24:9c:6e:ab:4d:f2:5a:01:73:4e:5a:
f6:f3:ec:71:d4:27:18:e3:7c:88:20:d0:9d:b8:32:
03:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:38:93:16:40:E2:07:5B:A1:14:08:8D:DE:91:B6:9A:3A:24:8F:96
X509v3 Authority Key Identifier:
keyid:B1:32:E9:35:A1:0F:9C:E2:16:E0:99:3A:E4:19:9C:96:F5:27:3A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTLpNaEPnOIW4Jk65BmclvUnOvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b38821-23f2-4e5e-941c-a8f0ee00b2ad/1/TTiTFkDiB1uhFAiN3pG2mjokj5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/b38821-23f2-4e5e-941c-a8f0ee00b2ad/1/sTLpNaEPnOIW4Jk65BmclvUnOvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.39.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:b5:53:44:dc:1c:6d:55:eb:ef:2e:95:fe:66:c6:2f:3d:54:
ee:8a:ea:81:15:96:1f:7a:71:91:95:80:23:21:d8:8d:44:2f:
e5:6d:39:60:c6:2c:06:c1:eb:74:42:d9:be:c0:7c:25:d2:42:
0e:93:80:a9:98:86:ad:5d:83:b6:70:0e:de:06:d8:17:68:83:
6b:54:a5:23:aa:26:f5:c8:c7:1b:e0:0f:3d:a8:92:bb:c1:5e:
73:d4:12:ed:4a:94:9e:61:77:1c:3f:18:06:94:b4:1d:44:34:
dd:6f:0b:7e:fb:9b:4a:6c:38:f9:fc:d1:71:df:06:05:52:31:
ac:82:a8:43:6a:12:4d:f7:35:cc:57:2e:3d:07:10:c5:38:cd:
8c:03:d9:0b:43:6e:4f:a6:97:c0:21:42:c8:5f:8d:c9:bc:b1:
4a:eb:9f:e5:da:c4:85:05:f3:6b:7e:e0:8d:2d:d6:4a:a3:30:
f2:a4:a4:64:4b:1c:77:44:19:b4:db:de:db:bb:21:64:a1:93:
75:09:49:e5:00:45:9b:05:f6:5b:a4:ef:1b:4b:01:9f:b9:5e:
6c:39:92:b1:07:73:80:60:de:5a:10:64:af:3c:a4:34:46:10:
e5:c5:92:05:5b:ef:2e:42:1f:62:d6:bc:9f:86:e3:67:c4:70:
9a:13:e8:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:18 2025 by rpki-client