Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/TiK9AhIe-n1ZdU5jRZL71e9zxyc.roa
File: TiK9AhIe-n1ZdU5jRZL71e9zxyc.roa (raw, json)
Hash identifier: uWT/11FJPnPsWt1eQLtdHi9eCJk1c28bKiQEDN4pbpM=
Subject key identifier: 4E:22:BD:02:12:1E:FA:7D:59:75:4E:63:45:92:FB:D5:EF:73:C7:27
Certificate issuer: /CN=f266a0f986f21945c80d831567baf29620107adc
Certificate serial: 0A2A3268
Authority key identifier: F2:66:A0:F9:86:F2:19:45:C8:0D:83:15:67:BA:F2:96:20:10:7A:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mag-YbyGUXIDYMVZ7ryliAQetw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/TiK9AhIe-n1ZdU5jRZL71e9zxyc.roa
Signing time: Sat 01 Jan 2022 09:01:05 +0000
ROA not before: Sat 01 Jan 2022 09:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61231
IP address blocks: 212.162.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170537576 (0xa2a3268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f266a0f986f21945c80d831567baf29620107adc
Validity
Not Before: Jan 1 09:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e22bd02121efa7d59754e634592fbd5ef73c727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:49:ad:38:9d:36:55:a6:65:95:4c:17:e8:9b:
21:1a:1d:52:8d:c5:28:8c:7a:67:ab:ae:06:db:dc:
93:1e:fa:d7:3b:02:20:e8:3e:b9:ca:a9:c5:f9:10:
69:f1:ef:fe:18:41:db:25:49:96:73:f0:3e:ad:52:
38:c8:b8:e1:a1:b3:20:e5:84:d7:e3:d2:cc:85:3f:
e6:6d:5b:9e:cd:08:98:45:32:01:d2:b6:60:b6:b4:
52:d3:03:4f:95:1a:83:68:d3:68:5b:8f:da:96:1c:
78:2f:55:ee:c3:4b:fa:23:f1:c7:ad:96:a4:c5:17:
fe:ac:63:12:97:21:b3:c4:54:5e:00:47:29:bb:34:
03:1f:cf:20:06:9d:4b:65:c5:d5:cd:25:ec:9e:c7:
13:ac:de:b5:3a:ee:b6:df:ef:c5:d7:54:eb:76:f7:
60:65:ad:6c:a6:53:b8:02:b1:86:f3:9a:a3:5a:9a:
85:dd:a3:1e:24:4c:b3:fc:16:b6:94:4b:ea:85:a8:
12:fc:60:24:b4:14:1e:27:df:85:cf:40:fa:9c:e8:
63:b3:0e:ad:e3:28:ae:f3:a3:6d:10:e7:6b:63:05:
54:8f:db:dd:17:a8:cc:43:0a:2b:8f:8f:3c:69:d3:
12:e1:a0:ac:6b:9e:79:78:eb:c3:ca:ef:c5:f0:4d:
e2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:22:BD:02:12:1E:FA:7D:59:75:4E:63:45:92:FB:D5:EF:73:C7:27
X509v3 Authority Key Identifier:
keyid:F2:66:A0:F9:86:F2:19:45:C8:0D:83:15:67:BA:F2:96:20:10:7A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mag-YbyGUXIDYMVZ7ryliAQetw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/TiK9AhIe-n1ZdU5jRZL71e9zxyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5873c4-b5e5-497e-9242-fe0b2226cfb3/1/8mag-YbyGUXIDYMVZ7ryliAQetw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.162.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:03:81:77:bd:4a:1e:c1:c6:0f:58:0f:f1:87:90:d6:7e:a4:
78:77:b2:dc:f1:f5:ed:68:4f:a8:5e:0a:cb:d9:db:c0:92:92:
29:3a:71:67:4c:da:f3:fe:c9:5d:0c:6c:55:fd:07:e6:cd:1a:
18:c9:b1:7f:98:80:14:51:9a:67:79:48:f4:6e:d5:cb:0a:5e:
9e:2f:0a:7a:2a:b5:a7:81:cb:c0:f0:16:4f:17:18:96:dc:0a:
bd:a1:a7:71:8e:17:8a:29:2c:b4:96:87:a5:3a:10:23:8e:a0:
22:e9:02:7c:cc:1d:3f:b9:cf:44:d1:73:df:cd:9c:b5:66:17:
8b:b3:b7:63:84:bd:3c:f6:37:10:32:a7:98:ec:c7:c0:77:0f:
ec:c8:52:d7:6c:7f:a8:fc:5f:21:ca:2b:15:68:cf:e0:30:68:
f1:47:54:ec:e8:87:d7:10:03:8c:2a:13:1f:21:df:af:34:70:
a8:1c:a9:31:2b:46:cd:3c:62:5b:a9:8c:64:29:90:4c:86:34:
a6:e3:58:c2:3a:97:dd:c7:b1:9c:25:3e:a8:63:f7:d4:81:e6:
12:cb:96:2b:44:24:2c:06:73:3a:b9:a3:1d:2d:35:57:a5:5d:
c3:95:e4:ff:51:3f:a0:49:98:ad:23:ab:98:00:03:42:c2:0f:
28:b9:12:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:35 2023 by rpki-client on console.sobornost.net