Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/EeLHPzyqIPgTkNmZ3jQIk-RWoy0.roa
File: EeLHPzyqIPgTkNmZ3jQIk-RWoy0.roa (raw, json)
Hash identifier: FMROH5Gx2FixGA7k0V6ahel4DIvOnCoIYzaDGhe5vUU=
Subject key identifier: 11:E2:C7:3F:3C:AA:20:F8:13:90:D9:99:DE:34:08:93:E4:56:A3:2D
Certificate issuer: /CN=75e8b2b28bba3dc4e861d5cbf5bc1cc98c89e576
Certificate serial: C0BE9A
Authority key identifier: 75:E8:B2:B2:8B:BA:3D:C4:E8:61:D5:CB:F5:BC:1C:C9:8C:89:E5:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deiysou6PcToYdXL9bwcyYyJ5XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/EeLHPzyqIPgTkNmZ3jQIk-RWoy0.roa
Signing time: Sat 01 Jan 2022 00:56:12 +0000
ROA not before: Sat 01 Jan 2022 00:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 213.109.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12631706 (0xc0be9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e8b2b28bba3dc4e861d5cbf5bc1cc98c89e576
Validity
Not Before: Jan 1 00:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11e2c73f3caa20f81390d999de340893e456a32d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ca:3d:96:b5:7d:e7:2c:1f:a2:d3:bb:1c:91:
8f:d7:01:29:35:7f:e3:ed:96:a4:b3:5c:27:e1:b1:
f3:b7:5c:62:32:cb:43:0b:27:6c:d5:c1:11:4a:f6:
44:2e:75:04:6b:da:8a:46:84:87:34:7d:67:b2:08:
4a:59:08:87:08:bb:32:28:2a:9d:62:89:85:87:ca:
8f:64:49:a7:a5:ee:47:00:51:dd:56:e3:24:ce:96:
ca:1e:c3:fa:a1:ad:ed:c2:a9:26:2e:e5:b4:97:2a:
cb:ed:23:74:71:62:52:d9:e3:57:b4:42:5c:7b:24:
0d:c9:02:58:8d:ac:58:ff:cc:83:b9:0f:4e:ba:96:
3e:db:f4:06:50:be:49:40:46:9e:bd:0b:11:60:a6:
09:00:89:21:f2:7d:cc:e8:a2:72:54:a0:d2:63:17:
60:f4:e9:2b:ae:9a:7b:16:8f:31:50:33:79:b4:eb:
08:fa:de:99:61:ba:29:1d:22:fc:58:a0:aa:79:58:
1c:77:6d:71:04:29:64:64:20:ac:17:52:5e:52:33:
91:15:58:ad:fc:da:9d:d3:21:84:83:e3:64:18:4e:
94:3c:0e:59:f9:1c:bb:41:c6:a3:a4:5c:df:1e:59:
7e:de:26:f1:89:cb:a3:ef:20:8a:af:46:c1:76:c0:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E2:C7:3F:3C:AA:20:F8:13:90:D9:99:DE:34:08:93:E4:56:A3:2D
X509v3 Authority Key Identifier:
keyid:75:E8:B2:B2:8B:BA:3D:C4:E8:61:D5:CB:F5:BC:1C:C9:8C:89:E5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deiysou6PcToYdXL9bwcyYyJ5XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/EeLHPzyqIPgTkNmZ3jQIk-RWoy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/80b930-ad97-403a-9fdb-0156d00272b7/1/deiysou6PcToYdXL9bwcyYyJ5XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.207.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:39:c4:53:c5:34:f9:d0:cb:e0:53:ee:d5:4b:7a:c7:c5:3e:
0e:57:9f:f2:fe:a0:64:44:34:9b:09:38:80:0a:b6:b0:93:fd:
af:87:12:60:cc:ab:c7:d9:ac:e4:9a:d4:56:21:57:71:62:bc:
71:2f:6b:4f:f9:40:c8:65:56:22:21:db:df:af:78:89:ce:f7:
22:f3:7a:6b:e4:e6:e5:bd:e2:bf:3a:d6:4c:d4:40:82:57:7d:
26:2b:65:4a:b4:1e:b7:d6:2a:61:a8:c6:6e:5f:bf:7b:4a:b4:
fd:99:db:f3:44:fa:0e:a0:63:9f:89:1a:25:74:8f:3b:01:f4:
23:45:b4:25:e5:53:34:8e:dc:2b:00:f9:65:ad:98:45:83:fe:
01:58:dd:bf:1b:4d:18:2d:53:ed:d5:7c:c9:a3:c8:3d:db:43:
4c:7a:c9:db:d6:b8:34:ce:8c:bd:67:7a:2c:43:ca:31:ca:6a:
b0:c1:19:08:e6:4b:c8:c8:7d:a4:4e:07:f5:b3:7d:a7:34:59:
6a:60:7f:5f:05:63:05:1d:80:8a:27:ae:f1:c3:eb:c5:66:35:
2f:c3:b3:fa:b6:15:c6:1c:fc:be:a1:78:ee:bd:14:6d:d4:fe:
d8:16:ee:b9:77:68:f8:ae:cd:1a:29:de:a6:47:b8:48:83:a9:
66:61:85:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:21 2023 by rpki-client on console.sobornost.net