Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/1pRKUt5WVfe3y0f5v7kS9Y-suRs.roa
File: 1pRKUt5WVfe3y0f5v7kS9Y-suRs.roa (raw, json)
Hash identifier: 0mQWmcVDRcwzOCLfOhL+wfLxUlehPv7lhpESJt0YuE4=
Subject key identifier: D6:94:4A:52:DE:56:55:F7:B7:CB:47:F9:BF:B9:12:F5:8F:AC:B9:1B
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 097FB422
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/1pRKUt5WVfe3y0f5v7kS9Y-suRs.roa
Signing time: Sat 01 Jan 2022 13:05:07 +0000
ROA not before: Sat 01 Jan 2022 13:05:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35432
IP address blocks: 213.169.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159364130 (0x97fb422)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 1 13:05:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6944a52de5655f7b7cb47f9bfb912f58facb91b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dd:c1:51:e4:9b:29:bc:f8:90:8e:ce:d6:6b:
61:b0:db:eb:43:07:e6:ba:fe:ab:5f:b9:10:8a:0f:
31:1e:38:a7:1e:75:ff:54:5d:70:57:0c:06:aa:8d:
55:ad:1e:e7:4a:37:60:2d:06:86:08:ab:d4:58:99:
28:7c:ae:b4:72:df:80:ab:21:6a:42:ac:f3:3a:5d:
fa:7d:82:6b:f8:4c:a3:ba:54:f5:4f:a2:aa:f9:76:
c4:aa:ca:35:5a:d4:a8:b7:26:d5:f0:19:7b:d6:b1:
05:6c:1e:47:c9:3f:54:65:46:9e:08:49:ca:32:f6:
31:ef:94:f3:6f:d2:b2:57:c5:bd:01:64:42:09:92:
c3:53:84:3d:14:92:fc:bc:c6:02:f2:28:82:80:f0:
f6:4c:81:f8:a6:15:a6:b1:f7:8b:7b:a0:c1:59:18:
73:ae:5a:db:f0:89:03:2e:69:44:33:28:cf:ae:39:
ca:6a:04:1f:08:3e:11:6c:84:2e:4d:57:86:fb:eb:
7d:c4:3e:20:4a:41:f7:21:86:39:f7:9a:2f:4e:91:
3e:3b:28:7e:39:92:06:8c:94:9e:f9:fa:01:c2:5b:
4a:0e:fb:0b:fe:05:c7:07:ed:40:bf:6f:b6:70:74:
13:af:cd:29:db:c8:0d:1c:a7:b1:2f:78:05:ea:40:
2e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:94:4A:52:DE:56:55:F7:B7:CB:47:F9:BF:B9:12:F5:8F:AC:B9:1B
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/1pRKUt5WVfe3y0f5v7kS9Y-suRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.169.149.0/24
Signature Algorithm: sha256WithRSAEncryption
86:e3:d2:ce:13:0e:bb:05:2f:73:66:66:80:39:29:c8:78:a0:
85:97:53:b8:f2:96:99:05:80:f7:76:eb:99:51:f3:bf:02:90:
a1:17:e7:39:25:b9:4c:6a:84:84:83:50:be:25:49:08:c1:0f:
4a:aa:94:9f:d3:2e:02:1e:6b:75:3a:62:e8:91:dd:61:e1:70:
0f:6f:36:3f:b7:b2:63:fd:c7:ab:af:fd:de:76:88:fc:7a:36:
c6:5a:4e:83:87:9d:ea:0e:c4:f6:81:dd:79:fb:90:52:b2:3f:
57:9c:60:03:1a:01:a6:71:5e:f4:da:8f:de:1f:11:00:96:c5:
07:50:6f:3c:3b:50:dc:b6:7e:7c:51:ba:b0:83:9b:62:dd:eb:
d9:b7:8c:3d:c2:63:13:69:3e:ec:db:35:8a:98:35:3c:5f:3c:
61:66:f7:12:3e:96:a1:29:77:9b:9b:8a:45:b6:a5:dc:fc:9f:
5f:97:d5:13:7f:4f:8e:8a:0e:7b:76:d2:7a:d8:8e:db:bb:80:
fd:94:2e:04:f1:7f:8a:f2:c3:43:c3:48:42:85:f0:fa:64:ff:
03:4c:a1:70:5f:44:31:b1:2b:70:41:40:01:a9:4a:60:13:1f:
93:05:ec:5d:0e:00:a6:39:ce:7e:7e:56:7e:5f:d7:ae:41:42:
a8:9a:cb:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org