Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0yHj4t6_LTNoZWx7ZkGrN1Fm3eA.roa
File: 0yHj4t6_LTNoZWx7ZkGrN1Fm3eA.roa (raw, json)
Hash identifier: c6/a4DfYfpNYjf37gGcIwXXXHlOn8ppEu6WBS1GpRRI=
Subject key identifier: D3:21:E3:E2:DE:BF:2D:33:68:65:6C:7B:66:41:AB:37:51:66:DD:E0
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17DFAA5D
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0yHj4t6_LTNoZWx7ZkGrN1Fm3eA.roa
Signing time: Sat 01 Jan 2022 03:59:50 +0000
ROA not before: Sat 01 Jan 2022 03:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8795
IP address blocks: 212.5.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400534109 (0x17dfaa5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d321e3e2debf2d3368656c7b6641ab375166dde0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e6:f9:d9:f4:da:25:e4:d3:c3:71:cf:27:d9:
c1:ce:b4:3c:5d:0c:4b:64:39:aa:04:3a:2e:b6:57:
e5:19:a7:67:6e:85:7f:cf:ea:f6:d4:20:44:c3:a3:
1e:ad:c6:16:34:a5:34:fd:4c:f7:32:cc:6c:3b:37:
7a:58:01:f2:bb:5e:62:cc:d6:90:96:61:e1:79:45:
a9:b6:22:bd:80:2c:1e:59:c5:34:74:1b:7b:79:97:
9a:f2:b4:87:13:80:91:d3:06:d1:eb:2a:03:8c:c6:
a1:c5:94:88:44:27:bd:b5:2d:62:18:1e:d6:a3:12:
3d:5b:f3:b0:e0:75:38:f6:c7:b5:e5:a7:48:b0:33:
b0:28:cd:2c:7b:32:69:5e:26:5c:be:ad:7f:a9:95:
be:ee:59:27:c2:7c:4c:35:6b:e1:9d:ef:62:7f:1b:
af:bc:29:ad:80:08:d3:00:98:15:9a:d5:c1:b5:8f:
31:8f:76:a2:fe:00:81:03:01:2f:65:8c:c4:fe:d1:
7c:fd:72:f3:e0:8f:4b:3d:c1:9f:3a:45:12:5b:32:
34:8c:85:e9:5a:f8:3e:77:f6:17:f3:bd:e0:d3:99:
6d:eb:80:c3:3e:83:37:72:92:15:e9:39:c2:93:06:
9b:db:7e:f6:5d:52:69:ca:71:4e:45:ed:09:d3:d8:
f1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:21:E3:E2:DE:BF:2D:33:68:65:6C:7B:66:41:AB:37:51:66:DD:E0
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0yHj4t6_LTNoZWx7ZkGrN1Fm3eA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.5.133.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:72:e7:02:93:a6:76:dc:3b:1d:74:b5:92:1f:1f:b0:99:3e:
e3:0a:e8:65:11:8a:aa:d7:e9:09:74:df:ad:de:77:e7:99:91:
ff:3e:67:30:9e:0c:76:21:ce:2a:97:28:63:05:db:c1:de:56:
62:dd:85:d2:21:b8:57:35:41:c0:84:09:ad:d8:33:33:ef:70:
c4:ac:de:5a:00:c3:2d:d7:c1:e3:7a:da:4c:54:1b:4a:c9:c1:
f3:33:7d:83:f1:76:0b:a3:d8:2d:62:d7:ec:7e:ec:99:c6:15:
9f:67:2e:26:0f:32:bd:b8:7d:0e:9a:b5:f6:51:95:94:87:38:
50:48:bf:1b:e8:4f:19:15:10:b6:34:f5:35:40:9d:89:74:00:
42:61:be:4a:dd:69:d4:1c:be:9a:c2:20:3e:64:77:3b:6a:70:
5b:8c:e4:e4:08:e2:44:76:55:85:d3:09:12:b5:79:3a:e1:92:
f8:24:e5:e7:09:f3:78:2c:89:4c:d4:6c:63:1c:eb:da:c1:a8:
01:54:95:9b:ba:5f:ba:30:86:8e:e0:ab:72:f3:5c:51:3f:36:
69:5b:c9:1b:00:fd:bd:57:fe:91:d3:43:3d:a0:65:90:c5:8b:
2b:41:5c:37:51:78:a4:55:05:99:bd:b7:c9:1c:e4:09:59:21:
69:e7:03:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org