Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/ToFZ44Cn0iFCWIyYKWHmGcNdBJ4.roa
File: ToFZ44Cn0iFCWIyYKWHmGcNdBJ4.roa (raw, json)
Hash identifier: 2xF2rb0JunSGKiNjTRGnCM0mYwLELxXfNsj5f+w/vEw=
Subject key identifier: 4E:81:59:E3:80:A7:D2:21:42:58:8C:98:29:61:E6:19:C3:5D:04:9E
Certificate issuer: /CN=51326fabb1256fa02277e5ee034b7991ff3185a5
Certificate serial: 011947
Authority key identifier: 51:32:6F:AB:B1:25:6F:A0:22:77:E5:EE:03:4B:79:91:FF:31:85:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTJvq7Elb6Aid-XuA0t5kf8xhaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/ToFZ44Cn0iFCWIyYKWHmGcNdBJ4.roa
Signing time: Mon 14 Mar 2022 15:21:20 +0000
ROA not before: Mon 14 Mar 2022 15:21:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 185.213.216.0/24 maxlen: 24
185.213.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72007 (0x11947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51326fabb1256fa02277e5ee034b7991ff3185a5
Validity
Not Before: Mar 14 15:21:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e8159e380a7d22142588c982961e619c35d049e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:61:a3:6e:22:c9:51:f9:05:b8:28:58:55:97:
e2:4e:79:9a:ad:b9:4f:aa:ad:a7:7c:e2:0b:21:cd:
6a:c1:ba:68:09:ef:6e:61:86:e5:4e:68:8c:78:69:
86:32:e3:ff:47:31:a6:85:1b:6c:5d:28:29:2b:f7:
d8:7a:ac:b8:9a:c0:b4:22:91:f5:f3:e9:b8:16:7d:
65:38:c8:b6:0b:92:17:d3:88:30:06:3e:e1:f6:73:
57:dc:19:6f:1f:e8:fb:66:c2:ca:87:6c:3f:f2:74:
b7:2e:59:e3:35:43:be:09:02:8b:70:9b:49:76:cd:
89:59:6f:10:24:a6:c7:c7:dc:d8:06:02:f2:97:ba:
eb:a3:f8:1e:cc:91:d5:de:6b:8e:ca:c1:66:db:c6:
af:99:28:8e:67:54:c7:2a:1f:b8:03:6f:dd:d8:9b:
4f:7e:a7:01:71:e2:da:15:89:d9:bf:59:54:a6:0a:
a5:ce:2b:0a:b1:de:6b:f8:18:5a:a2:15:58:e1:b4:
dc:e3:68:e3:73:8b:cd:6b:24:b0:3e:26:8f:96:ae:
19:23:94:ac:7a:bd:66:10:cb:37:5f:7a:b4:9d:7c:
6c:4c:58:93:5e:84:5d:ae:14:3b:bc:0a:5b:11:2d:
8f:a3:cb:65:e2:18:6f:26:56:ff:df:fc:f5:df:ba:
32:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:81:59:E3:80:A7:D2:21:42:58:8C:98:29:61:E6:19:C3:5D:04:9E
X509v3 Authority Key Identifier:
keyid:51:32:6F:AB:B1:25:6F:A0:22:77:E5:EE:03:4B:79:91:FF:31:85:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTJvq7Elb6Aid-XuA0t5kf8xhaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/ToFZ44Cn0iFCWIyYKWHmGcNdBJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/bd6f18-ea7d-43c4-9c85-87a3f3b31150/1/UTJvq7Elb6Aid-XuA0t5kf8xhaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.216.0/23
Signature Algorithm: sha256WithRSAEncryption
13:12:95:0e:8d:c0:64:5a:66:d0:1f:90:da:b7:32:cf:1b:83:
42:36:55:0a:43:be:de:55:a6:42:1d:b8:6c:f3:e7:74:fe:9c:
b3:e6:4b:00:93:c8:0c:94:0b:29:18:a5:ae:4b:fe:63:0e:aa:
85:9b:62:05:ba:0c:0d:0b:ab:3b:77:9f:a5:56:6d:0e:13:28:
74:42:78:ac:58:0d:dd:62:af:12:23:41:aa:50:a1:39:87:0e:
8f:4a:61:44:d7:4c:b8:0e:89:f3:37:21:e4:1e:62:35:54:25:
65:61:5f:23:35:96:b5:4b:aa:dc:af:66:98:20:5e:d7:5c:20:
ed:df:57:43:71:07:46:35:24:56:e6:fd:b0:01:da:0e:bf:cc:
47:26:f5:48:b5:03:74:a6:5e:0f:7b:27:c5:10:21:b3:ad:ec:
c9:15:c5:3c:64:d3:aa:8b:31:a6:88:60:84:22:ac:eb:cb:0f:
58:cc:8b:35:8f:b4:13:7c:2e:85:f8:b1:63:cc:33:6f:36:bb:
66:5f:7b:be:ba:6b:c7:87:1a:c6:26:9f:51:5d:13:fc:69:d3:
54:91:88:c9:12:d4:2d:a7:b6:57:0c:2d:87:5d:47:24:97:fc:
d2:d2:ac:2b:b5:54:c9:54:9b:20:0d:c1:3d:46:2f:a2:4b:5d:
23:43:e2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:26 2024 by rpki-client on console-fra.rpki-client.org