Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/9C-UmRNWrpnsj3MphgPAtL7EyIE.roa
File: 9C-UmRNWrpnsj3MphgPAtL7EyIE.roa (raw, json)
Hash identifier: Idcb6H766WO6p2Q0BE+Rwd2CoSJ0kckdTPB+d2Cv7lc=
Subject key identifier: F4:2F:94:99:13:56:AE:99:EC:8F:73:29:86:03:C0:B4:BE:C4:C8:81
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 09ACE471
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/9C-UmRNWrpnsj3MphgPAtL7EyIE.roa
Signing time: Fri 21 Jan 2022 13:05:05 +0000
ROA not before: Fri 21 Jan 2022 13:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16229
IP address blocks: 213.169.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162325617 (0x9ace471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 21 13:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f42f94991356ae99ec8f73298603c0b4bec4c881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9b:31:47:db:65:a9:79:43:b3:fa:a0:8d:8b:
e5:2e:3d:4c:4b:38:7f:e3:0c:2d:56:0d:61:9f:a5:
98:a0:70:1d:20:7d:c7:60:5b:12:d8:bd:11:5f:e3:
3c:8c:f4:f5:3f:23:eb:13:a1:d6:bb:64:a3:4e:6f:
f3:1a:ce:64:79:d5:d8:f0:fb:48:28:d2:08:91:27:
1e:da:d8:55:76:6b:32:b6:98:07:f7:09:f4:fc:35:
c7:e1:e7:1a:34:c2:97:4c:a8:24:35:74:b6:eb:5c:
ea:7a:5e:b9:de:aa:56:ab:7b:57:5f:4c:43:10:d2:
d7:17:ac:57:0d:29:49:19:8d:0b:8f:5d:c8:69:24:
15:a2:1d:8b:d3:cf:f1:16:65:b4:fb:9f:b9:15:8c:
1b:8e:ba:ca:90:7e:a9:f3:01:6c:6f:fc:53:36:bf:
fb:6c:f7:3b:a6:b5:3c:ee:9f:55:7d:10:87:5b:a4:
06:3e:fb:84:a8:19:f1:89:76:30:f1:40:f3:29:41:
cf:70:fe:dd:c0:b8:f6:a4:aa:8e:2b:48:2d:46:fe:
35:44:f8:15:12:d8:b9:e4:f2:73:82:e3:fc:b1:68:
97:17:94:19:c7:2e:94:4a:aa:b5:69:33:59:6b:9b:
57:46:ca:0b:35:66:0a:1c:25:a8:76:de:6e:9f:6e:
3a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:2F:94:99:13:56:AE:99:EC:8F:73:29:86:03:C0:B4:BE:C4:C8:81
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/9C-UmRNWrpnsj3MphgPAtL7EyIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.169.154.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:5e:6b:01:2e:99:3c:86:28:2f:d1:2a:49:0f:66:79:f0:6e:
3d:2d:ba:85:03:d3:04:29:d3:9b:35:43:08:02:83:b8:db:b3:
a1:4e:61:45:79:3c:ea:e3:51:54:37:b5:0e:f0:bd:a1:07:d4:
f4:27:5a:e1:65:0e:13:93:83:ac:49:91:06:9a:1e:fc:7e:75:
91:6a:d7:65:77:02:82:8c:7e:6e:5a:a5:80:68:94:19:dd:51:
cc:4d:e9:bc:75:66:94:25:be:eb:fb:d9:cb:78:af:6f:21:3f:
d5:b5:9f:7f:4d:ef:e5:a1:12:22:ae:90:e4:6b:05:cb:71:0a:
a8:d5:37:6f:3b:fa:2c:17:1e:6b:98:15:d0:54:c5:85:62:2e:
08:a7:0f:85:2c:d9:1d:97:86:e4:0d:25:5c:ac:76:71:28:9f:
89:46:e9:da:d6:31:d4:14:a5:53:b6:24:48:cb:73:d1:0b:64:
d2:f2:86:97:62:d3:07:d6:88:34:55:03:50:22:2e:2a:50:08:
75:37:17:b4:b8:53:c8:2a:ba:db:5b:57:d3:72:c0:95:ac:83:
32:43:0f:a7:ba:95:9d:46:da:dd:de:c6:20:0f:0a:4c:dc:0a:
68:0f:e3:30:31:3f:9e:bf:db:89:23:eb:52:b8:48:49:3b:83:
0f:fe:cf:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:53 2024 by rpki-client on console-ams.rpki-client.org