Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/tKvmocY7ITQgkKP5vL1qxhtR_Ro.roa
File: tKvmocY7ITQgkKP5vL1qxhtR_Ro.roa (raw, json)
Hash identifier: hwl+ACl7XhUlMS1qjB+f166bcUD/Xa3OfVvGV13aLMY=
Subject key identifier: B4:AB:E6:A1:C6:3B:21:34:20:90:A3:F9:BC:BD:6A:C6:1B:51:FD:1A
Certificate issuer: /CN=c41c7221ede3af5ee92e3206af2f18bd010d5dd9
Certificate serial: 0582BEB4
Authority key identifier: C4:1C:72:21:ED:E3:AF:5E:E9:2E:32:06:AF:2F:18:BD:01:0D:5D:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBxyIe3jr17pLjIGry8YvQENXdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/tKvmocY7ITQgkKP5vL1qxhtR_Ro.roa
Signing time: Sat 01 Jan 2022 10:58:07 +0000
ROA not before: Sat 01 Jan 2022 10:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49649
IP address blocks: 213.109.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92454580 (0x582beb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c41c7221ede3af5ee92e3206af2f18bd010d5dd9
Validity
Not Before: Jan 1 10:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4abe6a1c63b21342090a3f9bcbd6ac61b51fd1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8a:bf:d6:e0:34:08:e9:4e:c2:f6:58:04:d4:
86:72:4f:b6:de:b7:37:6a:04:43:15:9f:b4:be:a4:
f0:4d:34:fe:29:0e:dc:fe:c5:2b:df:42:91:5b:32:
5a:2c:af:0b:18:a7:14:47:7b:86:48:fb:a6:60:81:
c9:3d:78:d3:8d:78:b1:4e:62:f7:c8:30:a5:7e:90:
55:ba:64:ad:ca:b3:79:e4:53:b5:51:0e:16:5e:4c:
a0:6a:32:65:06:f8:bc:64:08:23:22:df:89:a6:c8:
04:dd:22:84:bf:e6:16:01:c8:fa:59:da:97:f6:6e:
fe:5e:47:20:00:98:08:83:d7:9a:27:06:4a:37:9b:
d2:84:83:60:49:b2:2f:2c:b5:fd:38:a9:71:12:92:
bb:01:2a:9c:0f:ea:fb:09:9a:36:f5:56:54:a5:d2:
5a:37:10:ee:ee:4f:df:aa:51:03:91:c9:08:13:26:
cb:0e:42:a0:38:39:b8:32:52:b8:f8:66:ba:0c:f1:
11:b4:a3:c6:a5:af:7c:af:cc:2e:94:5f:3d:c9:74:
bc:a8:3b:65:63:10:7f:61:76:be:22:16:05:b2:35:
72:0a:d2:e1:4d:cc:12:9b:53:a1:b8:d6:31:c1:25:
ba:cc:7f:88:d8:65:09:91:d6:fe:c2:5d:f9:1f:18:
e7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AB:E6:A1:C6:3B:21:34:20:90:A3:F9:BC:BD:6A:C6:1B:51:FD:1A
X509v3 Authority Key Identifier:
keyid:C4:1C:72:21:ED:E3:AF:5E:E9:2E:32:06:AF:2F:18:BD:01:0D:5D:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBxyIe3jr17pLjIGry8YvQENXdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/tKvmocY7ITQgkKP5vL1qxhtR_Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/xBxyIe3jr17pLjIGry8YvQENXdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.32.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:16:99:3a:74:d0:0f:f4:1c:ee:eb:0f:3b:8f:2c:e8:a7:96:
39:f2:d2:2e:87:33:51:e6:c3:32:bd:5d:f0:12:7a:01:00:04:
66:2c:e7:03:7c:dd:d3:e1:4c:6e:27:f2:bd:12:f9:1a:89:4e:
42:a7:99:bc:86:d9:15:b9:db:24:9f:6e:8b:fa:de:07:ad:19:
5c:86:8d:3c:47:0e:b4:f0:bf:78:ef:8f:a3:bc:8f:4c:0c:2b:
20:f7:4f:0d:4a:cf:7c:4b:79:90:26:d0:cc:de:18:36:e7:56:
ef:4f:11:97:30:93:1d:44:be:33:25:8e:de:65:a8:ce:c4:20:
7f:8c:13:18:5d:8b:16:57:9e:b8:d3:39:96:3b:e9:4f:b2:d7:
d1:cb:8b:49:ef:2e:6f:15:8e:13:39:a5:16:29:89:3e:4a:77:
6e:49:1f:2d:14:67:76:c6:6a:0e:a4:a3:d2:f7:3d:03:56:49:
03:8d:23:5a:d0:08:e2:f8:18:e6:0a:ea:92:d6:bb:23:67:86:
98:b3:ac:25:4f:45:64:63:95:1c:ef:e7:0d:51:c8:1c:36:ce:
7e:04:a1:b0:2f:9a:e7:6d:47:9f:c5:e0:1f:c3:00:2e:d0:77:
78:e2:5b:5e:8a:c1:bd:2f:e6:9a:f7:1e:32:c5:0d:1e:de:e3:
21:e7:85:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:26 2024 by rpki-client on console-ams.rpki-client.org