Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/z2iW3R3D1ZtITZSt1kRRF1X9W4I.roa
File: z2iW3R3D1ZtITZSt1kRRF1X9W4I.roa (raw, json)
Hash identifier: X0CYp3d34nc5A+nFgryypfMjpKBDt5qA/aYftTAj2qU=
Subject key identifier: CF:68:96:DD:1D:C3:D5:9B:48:4D:94:AD:D6:44:51:17:55:FD:5B:82
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 03FB60C8
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/z2iW3R3D1ZtITZSt1kRRF1X9W4I.roa
Signing time: Sat 01 Jan 2022 01:52:25 +0000
ROA not before: Sat 01 Jan 2022 01:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35489
IP address blocks: 213.145.103.0/24 maxlen: 24
213.145.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66805960 (0x3fb60c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 1 01:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf6896dd1dc3d59b484d94add644511755fd5b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:12:2e:d4:23:34:24:93:08:82:ea:2b:0b:20:
21:65:00:1b:28:37:82:78:3f:ac:53:81:17:ba:71:
b9:20:41:2d:b3:c7:c2:26:55:53:93:7b:fd:e8:4a:
04:98:d6:ec:63:d0:00:16:02:26:d5:79:ea:e9:e0:
09:1b:04:a3:86:81:70:48:9f:41:71:46:74:6e:41:
45:8a:10:df:da:68:7d:98:23:c3:c4:dc:85:9d:be:
81:d5:98:f7:c6:ef:05:6f:ee:d4:fe:b9:f7:d1:59:
ff:5a:e8:8a:58:e7:44:fc:52:30:d8:25:db:0e:5f:
11:23:38:f9:dd:ee:f9:f0:60:c7:56:15:07:25:de:
3e:52:87:f4:a9:f4:84:16:96:f1:a5:95:4c:87:3f:
84:38:60:74:b9:4e:2f:3d:ae:4c:e9:0b:f6:38:c6:
af:58:16:52:b5:f0:3f:47:16:2c:b3:8b:38:b5:8b:
87:65:35:b6:d6:cf:67:f5:17:5e:98:14:ea:ce:0a:
f4:60:51:fa:c8:cf:1b:ed:34:f0:98:6d:88:4b:ab:
02:3b:7d:e1:ba:c2:76:46:dd:69:29:0a:ea:6f:39:
ea:42:5e:92:72:4b:51:9c:42:bc:f1:3e:32:11:72:
3c:25:6b:cc:0b:78:44:4b:8d:b6:32:32:06:73:a9:
dc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:68:96:DD:1D:C3:D5:9B:48:4D:94:AD:D6:44:51:17:55:FD:5B:82
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/z2iW3R3D1ZtITZSt1kRRF1X9W4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.103.0/24
213.145.108.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:00:15:1b:89:dc:4c:01:a4:04:44:43:a7:ec:5b:63:c7:79:
9e:62:29:0a:31:51:64:4b:56:dd:aa:c7:d4:39:ec:2a:be:61:
47:83:4b:cc:37:aa:96:64:ed:2e:8c:0b:28:33:da:13:cf:78:
fa:6d:d2:6d:11:bc:4d:1c:b4:f0:34:7e:4d:d6:57:80:c7:89:
bd:d2:e9:81:25:ea:59:a6:ad:ae:ed:c6:9b:4a:88:7f:00:6e:
16:fc:8a:49:b1:70:30:20:d4:46:18:cd:6a:0c:76:1b:b4:79:
86:9a:29:d5:ec:5c:91:d8:5b:38:eb:1d:8e:7f:2b:e7:c8:85:
e3:5f:0b:ea:0e:7f:d3:46:40:9c:49:98:16:6a:88:25:e9:a8:
e6:d9:bd:da:78:f3:bb:70:23:ee:cb:f9:2f:7b:6a:97:27:ed:
c7:18:05:4b:b9:ae:96:fc:ca:7c:09:c7:a6:0f:18:8e:11:40:
46:3a:25:e7:44:2e:fc:11:fb:bc:75:b2:c2:99:b4:62:cf:22:
c3:95:86:0d:f2:ac:ab:da:62:23:4a:e9:6c:ba:3f:a6:cf:93:
b7:76:4d:0d:9e:74:98:34:70:86:f6:15:ab:45:07:06:78:b1:
2b:6e:88:7a:17:f2:86:60:c3:4c:6d:75:31:cb:63:b3:2a:57:
c7:33:62:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:04 2023 by rpki-client on console.sobornost.net