Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/9LHhYjCMXNNBgRr7LhuvzzSlsz8.roa
File: 9LHhYjCMXNNBgRr7LhuvzzSlsz8.roa (raw, json)
Hash identifier: 1CpGMgPNAFPVCsd3jpfhn6Oswh778VJsc6MuTHVcx6g=
Subject key identifier: F4:B1:E1:62:30:8C:5C:D3:41:81:1A:FB:2E:1B:AF:CF:34:A5:B3:3F
Certificate issuer: /CN=a8010ceb20f2e076a3f000271a5c375761bec2f5
Certificate serial: 01835494954C70960C9F3C6E8C7A95B26B69
Authority key identifier: A8:01:0C:EB:20:F2:E0:76:A3:F0:00:27:1A:5C:37:57:61:BE:C2:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qAEM6yDy4Haj8AAnGlw3V2G-wvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/9LHhYjCMXNNBgRr7LhuvzzSlsz8.roa
Signing time: Mon 19 Sep 2022 07:09:27 +0000
ROA not before: Mon 19 Sep 2022 07:09:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201935
IP address blocks: 213.175.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:54:94:95:4c:70:96:0c:9f:3c:6e:8c:7a:95:b2:6b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8010ceb20f2e076a3f000271a5c375761bec2f5
Validity
Not Before: Sep 19 07:09:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4b1e162308c5cd341811afb2e1bafcf34a5b33f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f6:67:aa:07:5a:30:07:c0:a6:d1:d5:4f:a6:
ad:dc:87:dd:ee:aa:d8:0f:1f:23:73:23:72:4f:30:
22:b5:a5:9d:0c:19:d0:30:3c:ea:b2:f1:ca:fd:9e:
b7:9a:fc:56:04:e3:81:f2:05:56:b9:dc:72:5c:e3:
a0:96:b2:7b:81:b3:0b:44:e5:04:7e:20:d8:2f:bf:
5f:3a:fb:c7:79:6a:d3:5b:a6:88:f5:83:80:c6:0f:
0b:3b:ed:cc:90:6b:c5:67:cf:89:42:7b:a4:2e:a4:
57:f3:e8:7e:13:67:59:65:f2:c2:71:59:ec:9d:c4:
3d:7a:8d:c1:85:36:2c:5f:c4:5d:f1:37:1b:ee:40:
81:5d:c8:46:59:ef:de:3d:5a:6d:55:af:c7:db:2c:
d9:d3:b0:7a:40:87:22:65:2e:f5:a1:15:c9:89:d9:
2b:7d:a6:18:bc:79:d9:ab:e7:f1:d1:31:39:81:9c:
62:06:9f:fc:ed:e9:e1:92:8d:4e:da:dc:5d:18:54:
88:ea:fe:d3:f7:a0:ca:40:ec:e3:8d:af:ae:47:1b:
51:d1:89:05:62:2b:78:36:43:8f:7b:b9:7d:b6:1b:
e6:8d:b9:08:ad:af:33:73:41:38:bc:de:83:40:0f:
25:40:e3:74:5f:ca:86:92:b7:fd:ab:92:f8:fe:7f:
6e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B1:E1:62:30:8C:5C:D3:41:81:1A:FB:2E:1B:AF:CF:34:A5:B3:3F
X509v3 Authority Key Identifier:
keyid:A8:01:0C:EB:20:F2:E0:76:A3:F0:00:27:1A:5C:37:57:61:BE:C2:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qAEM6yDy4Haj8AAnGlw3V2G-wvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/9LHhYjCMXNNBgRr7LhuvzzSlsz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/qAEM6yDy4Haj8AAnGlw3V2G-wvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.134.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:36:58:89:35:ae:ea:a9:de:07:d8:f2:2a:15:a4:d3:e3:35:
ca:75:2f:a6:6e:57:48:ab:a9:2e:19:35:04:9c:29:0c:02:9c:
fd:e1:2e:89:6a:38:db:c9:7a:fd:1c:a0:43:04:15:fd:ff:c9:
0f:c0:cf:c3:51:f1:12:a9:a0:5a:4b:a9:e5:00:f9:00:d6:1b:
25:8c:52:d0:e0:69:f2:4c:9e:ec:18:35:cc:19:9f:02:d3:a5:
a3:f6:95:ed:ca:2d:13:f2:a9:6e:08:a1:86:f3:1c:5b:70:c3:
6d:87:86:8a:75:ef:41:74:25:40:ec:c6:ec:9a:30:c4:8e:9d:
78:00:71:2d:e9:e5:2b:24:79:b0:bf:be:aa:13:5b:13:f8:a2:
e4:9e:8a:8a:bf:85:9a:0f:13:eb:6b:95:f0:93:6a:c5:25:c3:
9b:55:74:2d:4b:f9:bb:6e:29:72:d7:6b:da:e2:6d:93:ee:e8:
d9:e9:de:e9:01:6d:12:89:8e:41:fb:2f:c4:da:2d:1f:e5:6b:
c4:92:17:8f:d7:41:d9:22:1c:ab:40:03:dd:0f:e2:50:6d:09:
c4:17:4d:1f:0c:65:4a:f7:aa:b5:81:31:4f:04:f2:7b:f7:0c:
87:59:59:e0:d8:2d:62:4b:75:19:52:24:18:dc:64:07:19:a6:
6f:b0:c5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:24 2024 by rpki-client on console-ams.rpki-client.org