Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Xi8Z4CfCAEOETkF01-yMXpqwGfU.roa
File: Xi8Z4CfCAEOETkF01-yMXpqwGfU.roa (raw, json)
Hash identifier: ZlK+AlufKpXu9L1xy4/DCDLDF5cg6KXp3G/lKEbK9RQ=
Subject key identifier: 5E:2F:19:E0:27:C2:00:43:84:4E:41:74:D7:EC:8C:5E:9A:B0:19:F5
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A6688C5AD1EF6EE8DC80374FA3059D2
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Xi8Z4CfCAEOETkF01-yMXpqwGfU.roa
Signing time: Wed 20 Jul 2022 06:58:23 +0000
ROA not before: Wed 20 Jul 2022 06:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205302
IP address blocks: 212.183.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:66:88:c5:ad:1e:f6:ee:8d:c8:03:74:fa:30:59:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 06:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e2f19e027c20043844e4174d7ec8c5e9ab019f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:82:f0:03:c9:33:2c:06:29:86:50:32:75:5d:
3e:56:c5:75:26:55:3a:26:82:c5:5a:b6:73:d7:89:
7b:c7:b6:31:50:de:ff:e9:24:94:8d:3c:54:ef:ea:
b3:ed:bc:28:c8:98:a6:03:bb:9a:e0:ff:00:f6:3c:
f8:10:6f:a6:05:c7:71:bb:32:60:f1:9b:5b:90:0f:
76:41:99:fc:25:82:40:ed:1d:12:ed:5e:f7:43:ae:
e3:7b:d8:11:3d:b4:67:84:8c:18:41:d4:6a:f6:e5:
db:89:15:55:26:e4:8a:b4:b4:96:dd:4e:be:3b:63:
14:1b:7d:66:f2:8a:b7:62:94:06:37:3b:40:bc:16:
22:6a:9b:1e:93:8c:97:2f:4e:89:b2:1e:50:bd:ba:
cf:cf:c7:fa:3f:fe:75:56:c6:95:05:23:91:7b:86:
43:66:16:fc:14:ac:8d:3e:0a:29:21:69:a7:ab:03:
cc:7f:e7:fb:0a:e1:fb:0b:45:b3:ac:b2:0c:d2:43:
66:36:05:2f:7c:bd:d8:03:8d:41:9f:5a:72:fe:d0:
9d:e6:b2:21:b9:5b:eb:dc:db:e8:88:ef:3d:b5:56:
c4:72:58:21:c2:13:c4:e0:7f:8f:b9:48:fa:26:bd:
15:c1:cd:36:3e:6c:1f:f7:b0:dd:70:06:82:bc:77:
dc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2F:19:E0:27:C2:00:43:84:4E:41:74:D7:EC:8C:5E:9A:B0:19:F5
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Xi8Z4CfCAEOETkF01-yMXpqwGfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.183.4.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:84:39:32:56:a2:df:66:3d:3d:93:84:27:ef:83:02:37:8b:
40:f0:5e:4a:38:c1:ac:10:ad:20:88:57:ea:b8:9a:46:a1:39:
6b:57:27:0f:c6:b0:a5:5a:ab:c4:2f:74:0e:bc:78:ad:65:b5:
fb:f4:bb:41:3b:7c:c3:b2:58:cd:8c:ef:51:1f:9b:19:bf:e7:
bf:d8:46:47:24:09:5b:24:44:0c:e6:09:b5:dc:d0:df:0a:3c:
ec:79:18:fc:65:95:8f:2b:0e:c0:41:2f:ea:1b:1d:23:ba:8d:
ea:d0:d6:74:f8:22:50:b7:a8:57:18:1a:3c:fb:c7:3c:00:15:
b3:d4:36:49:94:a6:23:a0:50:c8:05:9e:10:09:d5:69:e9:fe:
d1:56:92:25:7c:2f:20:b0:14:3c:76:95:8f:2b:dc:3d:e1:db:
ef:b8:41:e9:5b:69:a7:08:ed:07:cc:07:76:29:7e:da:06:e8:
14:7c:09:c4:26:97:e2:50:76:be:51:2f:ea:ae:73:c9:29:19:
08:e1:66:77:f8:cc:bf:37:b9:50:8b:b3:1e:c5:75:f7:a0:74:
f5:d8:4b:0b:a6:cf:58:8b:87:4e:aa:30:28:61:55:b1:fc:16:
db:fd:b3:3e:c6:92:f0:7f:9e:e1:a5:e2:5f:37:12:e2:4f:7d:
73:51:69:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org