Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/48bc75-96b6-4fa7-8ada-a6eca43f0e05/1/F1jGxqiWnMfQBlrYoOpPBOCmkwo.roa
File: F1jGxqiWnMfQBlrYoOpPBOCmkwo.roa (raw, json)
Hash identifier: A6nSuxKiUs+IJtjFQH3DfqfQAs8n6gNWaW/qY3hWTQ8=
Subject key identifier: 17:58:C6:C6:A8:96:9C:C7:D0:06:5A:D8:A0:EA:4F:04:E0:A6:93:0A
Certificate issuer: /CN=de5499be872f62f2d04dc4bc638309d77b89a387
Certificate serial: 059A8257
Authority key identifier: DE:54:99:BE:87:2F:62:F2:D0:4D:C4:BC:63:83:09:D7:7B:89:A3:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3lSZvocvYvLQTcS8Y4MJ13uJo4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/48bc75-96b6-4fa7-8ada-a6eca43f0e05/1/F1jGxqiWnMfQBlrYoOpPBOCmkwo.roa
Signing time: Sat 01 Jan 2022 15:03:12 +0000
ROA not before: Sat 01 Jan 2022 15:03:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200296
IP address blocks: 213.108.240.0/23 maxlen: 23
213.108.242.0/24 maxlen: 24
213.108.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94011991 (0x59a8257)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de5499be872f62f2d04dc4bc638309d77b89a387
Validity
Not Before: Jan 1 15:03:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1758c6c6a8969cc7d0065ad8a0ea4f04e0a6930a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:57:e4:9d:09:30:08:00:d3:1c:a6:50:4e:bf:
58:45:94:2b:46:d6:7e:ba:37:6a:9b:2a:0c:74:1a:
ec:49:c0:4c:69:c5:39:dd:a6:90:df:1b:f1:c7:9d:
01:d1:46:57:14:e0:f8:8d:08:45:9e:7d:62:8d:9c:
6d:13:e7:23:15:2e:03:ca:ae:54:b5:24:fa:c0:95:
f0:b7:5f:14:59:ee:a6:4c:11:52:84:bb:92:33:de:
5a:58:33:44:10:67:e2:61:3e:cb:fa:af:e1:d5:f7:
43:29:d6:ae:c2:38:77:a4:a2:c2:03:98:3c:96:70:
3d:1e:9e:e7:06:7f:de:34:49:5d:a4:45:f2:6e:fd:
f2:57:37:54:e7:55:f9:61:7c:e8:40:13:ba:85:3c:
e9:bb:7f:e1:86:70:30:c4:1b:91:87:7f:38:ec:92:
76:fc:07:4f:31:c8:49:4b:31:93:02:e0:0a:27:62:
47:38:80:dc:a8:11:db:b3:63:d9:8c:81:f8:6e:df:
5e:83:6c:9e:9d:6a:e0:d2:80:19:74:98:ef:68:3a:
90:76:42:08:29:20:34:50:7e:f3:b3:d5:e2:5e:45:
d9:9b:57:ec:c7:84:8a:40:c4:20:3d:6e:ee:8d:98:
18:62:c5:47:cc:83:f3:b5:f4:48:e6:80:08:a9:ec:
ea:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:58:C6:C6:A8:96:9C:C7:D0:06:5A:D8:A0:EA:4F:04:E0:A6:93:0A
X509v3 Authority Key Identifier:
keyid:DE:54:99:BE:87:2F:62:F2:D0:4D:C4:BC:63:83:09:D7:7B:89:A3:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3lSZvocvYvLQTcS8Y4MJ13uJo4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/48bc75-96b6-4fa7-8ada-a6eca43f0e05/1/F1jGxqiWnMfQBlrYoOpPBOCmkwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/48bc75-96b6-4fa7-8ada-a6eca43f0e05/1/3lSZvocvYvLQTcS8Y4MJ13uJo4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.240.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:bc:39:55:97:1a:e0:fa:21:b8:eb:e0:88:64:65:e2:2b:0c:
57:b0:af:a0:48:76:e4:8b:16:70:41:98:48:5d:fa:35:25:ef:
80:ff:b4:c8:0c:72:a6:89:41:10:31:41:e4:e0:6f:37:6c:27:
72:58:5c:e5:c8:a2:70:cc:01:4b:93:b4:9d:53:f8:62:9e:06:
a1:51:73:5e:97:88:19:77:e6:7a:ce:34:08:bf:df:25:16:1b:
5a:4a:94:9e:20:c2:ed:6b:09:db:1c:e9:cd:f6:73:1b:b4:50:
87:ab:89:7e:0d:4d:e0:2d:ec:c6:8f:01:d1:37:db:a3:0e:51:
88:41:28:55:0a:60:6a:02:7f:81:73:3b:e6:70:f2:d5:2c:b4:
27:fc:a3:88:be:41:a1:a3:d5:83:1f:28:31:c8:a6:85:8d:73:
3a:0d:66:b4:72:99:7f:8b:98:ed:6a:93:70:b5:96:45:92:2b:
d1:79:05:0a:88:a0:ba:0e:70:4b:3b:0b:08:7c:06:bf:55:0f:
b2:a2:97:9e:48:26:28:7e:44:1d:2c:0b:a9:4a:1a:33:8b:60:
bb:5c:81:3f:46:08:63:96:f3:af:8f:0e:61:1a:91:74:7d:34:
50:c3:b0:25:44:82:55:9c:95:8d:34:a6:a6:dd:51:a6:60:51:
de:d6:22:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:53 2024 by rpki-client on console-fra.rpki-client.org