Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/IYFjG-zM8XIHkhd8bpl1Gg9r0hs.roa
File: IYFjG-zM8XIHkhd8bpl1Gg9r0hs.roa (raw, json)
Hash identifier: eiofxAH8i1eQnCdBDl3BfAbiyRMtXWSj0sj356f80Io=
Subject key identifier: 21:81:63:1B:EC:CC:F1:72:07:92:17:7C:6E:99:75:1A:0F:6B:D2:1B
Certificate issuer: /CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Certificate serial: 096C0934
Authority key identifier: 27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/IYFjG-zM8XIHkhd8bpl1Gg9r0hs.roa
Signing time: Sat 01 Jan 2022 14:55:05 +0000
ROA not before: Sat 01 Jan 2022 14:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28753
IP address blocks: 212.7.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158075188 (0x96c0934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d7304c1b59dc22731bb53eff5a84ed9a30614c
Validity
Not Before: Jan 1 14:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2181631becccf1720792177c6e99751a0f6bd21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e0:2e:d8:21:82:11:d1:46:95:bd:c2:dd:f6:
78:cd:d8:50:7e:33:4e:f9:e6:3e:bd:7d:84:bf:39:
2f:15:ac:7e:69:07:26:01:62:5e:77:13:df:49:5f:
4d:df:8c:d4:ec:4f:fd:24:66:8f:24:81:eb:83:95:
40:32:62:fc:47:3a:d8:47:c6:3c:6e:4b:e0:5d:08:
76:2d:ad:0b:e9:9c:ea:81:e1:c0:0f:19:55:68:66:
cf:2d:fb:53:68:09:64:e1:5a:82:17:2b:91:4b:d3:
bf:5e:7f:6f:2c:c5:17:eb:a2:e8:4c:fe:b2:c6:66:
95:f2:fa:1e:36:e7:21:e5:ab:64:80:3f:72:7b:42:
0f:33:c7:78:2b:8c:2c:0a:d1:a1:c9:f2:f0:40:38:
8b:e6:1a:27:9b:04:49:12:2b:3d:36:09:a4:f9:7a:
0b:57:7d:1f:2e:2c:bd:2c:68:ea:62:a1:da:52:3f:
c7:3d:ba:31:c7:1c:3d:6f:8d:3e:9a:b6:b6:b7:56:
72:ad:9e:3a:1f:9e:8d:0b:8c:67:01:94:d8:40:cb:
f6:ef:ca:17:5b:44:8d:9b:e4:fe:dc:72:b3:69:c3:
99:44:5a:35:e3:43:c9:57:e4:05:96:68:47:bc:82:
aa:ac:ca:14:49:48:85:e7:4a:f3:49:33:21:64:b0:
9e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:81:63:1B:EC:CC:F1:72:07:92:17:7C:6E:99:75:1A:0F:6B:D2:1B
X509v3 Authority Key Identifier:
keyid:27:D7:30:4C:1B:59:DC:22:73:1B:B5:3E:FF:5A:84:ED:9A:30:61:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/IYFjG-zM8XIHkhd8bpl1Gg9r0hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/c13e12-e50d-4338-8a2f-fffb5a4e762a/1/J9cwTBtZ3CJzG7U-_1qE7ZowYUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.7.202.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e7:cd:16:ab:57:82:f5:e4:60:e9:2a:16:06:f4:29:eb:9a:
05:6f:92:73:fd:c1:8d:c4:09:1f:a1:c0:db:ba:74:b9:5e:b0:
4f:0b:68:28:f0:46:79:7f:99:9c:65:e3:3e:45:9a:1f:3e:c7:
8c:97:c3:82:bc:aa:1d:7e:52:1c:77:1d:7c:54:fa:31:64:ab:
20:d6:a8:ce:33:c2:45:e9:18:a1:d5:3f:75:1a:47:76:49:94:
0e:2c:b7:ab:2d:d1:56:dc:05:c8:65:7f:8d:14:b9:52:1a:c3:
59:a6:11:98:e7:dc:27:07:86:c8:6b:c0:52:76:80:17:7f:9c:
f7:3f:12:86:88:f0:bc:d0:7e:5b:52:5d:53:c2:5d:e3:68:b0:
cb:05:62:53:19:3d:bf:c6:c6:64:ef:8a:92:5f:c7:cc:95:61:
7d:66:43:24:c7:f7:70:6e:f6:51:fb:73:7c:7b:76:83:1e:20:
b8:23:00:9f:87:3e:56:ec:4d:4d:0c:7f:82:8f:40:7c:2d:17:
ed:8c:aa:57:8c:28:af:ac:f2:34:75:e5:18:6c:6f:09:71:42:
08:a8:e2:b7:84:9f:24:01:0c:86:f7:96:1e:64:33:19:15:22:
ee:44:51:76:0e:05:fd:57:b9:fa:fd:b6:e6:0c:55:8d:b7:b9:
c7:b2:af:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org