Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/bFIx251dVKeZBbj-vH0aDoPKRl0.roa
File: bFIx251dVKeZBbj-vH0aDoPKRl0.roa (raw, json)
Hash identifier: ETqQwyQnzfasoYNB8oAupYdSM7aJ6R89l7ZvZHifHVs=
Subject key identifier: 6C:52:31:DB:9D:5D:54:A7:99:05:B8:FE:BC:7D:1A:0E:83:CA:46:5D
Certificate issuer: /CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Certificate serial: 0205269D
Authority key identifier: E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/bFIx251dVKeZBbj-vH0aDoPKRl0.roa
Signing time: Sat 01 Jan 2022 04:59:57 +0000
ROA not before: Sat 01 Jan 2022 04:59:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211251
IP address blocks: 213.171.64.0/23 maxlen: 23
213.171.66.0/23 maxlen: 23
213.171.68.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33891997 (0x205269d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Validity
Not Before: Jan 1 04:59:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c5231db9d5d54a79905b8febc7d1a0e83ca465d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:55:33:0f:96:f9:c2:a5:15:ed:e2:67:27:63:
28:48:9d:eb:4f:30:23:c1:62:91:b4:80:da:41:e5:
0e:89:1d:fd:88:e5:9f:41:f2:54:6d:c3:08:c6:65:
3f:a1:41:98:21:d9:4e:6c:b3:d3:0d:7d:37:c2:21:
7c:53:5a:64:83:33:fe:92:eb:96:f7:5a:f1:1e:85:
01:2c:79:07:2b:86:b2:95:37:24:bb:62:f4:ca:78:
37:a4:eb:6c:1e:88:15:b8:b9:70:4f:1b:9f:5d:9e:
20:b5:26:fc:59:2b:87:6b:5d:bb:36:81:21:a1:85:
ed:38:36:0b:17:b7:91:14:d1:00:93:57:60:a0:fb:
bf:b5:82:7b:74:f8:81:17:4e:69:80:b0:8e:c8:78:
06:96:8f:2b:ad:a2:8d:c5:5c:f9:d0:ed:f0:05:59:
99:24:a2:b5:e0:64:48:1d:7b:03:d1:a2:05:ff:9e:
a7:a4:de:96:2b:94:fc:6d:26:a8:ae:c5:b0:41:f7:
54:a8:e2:be:87:72:1b:15:f4:de:6d:ff:06:08:05:
e5:b5:11:23:a7:d7:30:7a:40:41:ec:b1:ea:eb:93:
90:86:65:f1:70:04:f2:c1:59:41:91:80:37:57:e6:
5e:e7:50:77:10:36:14:23:26:93:55:c0:89:0d:48:
f0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:52:31:DB:9D:5D:54:A7:99:05:B8:FE:BC:7D:1A:0E:83:CA:46:5D
X509v3 Authority Key Identifier:
keyid:E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/bFIx251dVKeZBbj-vH0aDoPKRl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.171.64.0-213.171.69.255
Signature Algorithm: sha256WithRSAEncryption
0e:c9:6a:88:7e:2a:27:0f:20:0d:92:86:de:ec:da:ca:b2:f4:
30:ed:dd:f9:67:f1:8f:b9:a5:1a:e3:8c:15:1d:51:9f:67:4e:
aa:9a:e5:b4:d5:24:81:f7:c0:a2:00:b1:99:97:1e:b4:fb:99:
4d:ef:e7:85:d7:62:54:64:df:cd:f3:61:be:01:5d:a0:ca:a4:
0e:2d:a7:b9:90:b9:4a:73:7a:2e:ad:36:ad:f2:a5:7e:57:85:
9c:56:c8:70:7b:86:1d:be:6a:b9:0e:73:22:65:fc:4c:6d:02:
21:43:38:4b:a6:8e:8a:2c:e7:36:32:47:e4:fa:13:9f:55:ce:
7c:13:e5:d6:1d:54:75:cd:0d:5a:59:6b:39:b9:49:ac:21:c9:
54:dc:91:f3:92:b1:6d:39:68:13:fa:85:a5:3a:ef:29:9c:9f:
64:04:d8:41:b1:b1:80:fd:cd:4a:94:3e:d0:a5:f8:3a:a6:25:
20:db:58:89:84:4d:ab:ef:ea:4f:b2:06:dc:c2:7e:33:48:96:
e2:c1:29:9f:04:60:ff:61:a5:f8:3a:4a:40:d0:48:46:d0:e5:
bb:6c:39:b4:37:80:bf:69:04:64:e7:7b:da:1f:10:54:80:7b:
ca:52:60:da:fe:7b:bd:a0:30:3f:84:c9:bd:cc:ca:b8:b5:29:
03:46:14:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:47 2024 by rpki-client on console-ams.rpki-client.org