Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/dec12c-5f18-48ab-b006-422bb43753be/1/I3uqf-5QEIdlw0BgJVvHVMgtAZI.roa
File: I3uqf-5QEIdlw0BgJVvHVMgtAZI.roa (raw, json)
Hash identifier: WZVyoGLnpx8SlDE7FEG3yDJwqVboso3UvDvel2CIg70=
Subject key identifier: 23:7B:AA:7F:EE:50:10:87:65:C3:40:60:25:5B:C7:54:C8:2D:01:92
Certificate issuer: /CN=d90155c51ff2394da784a384aa717c76e3032c24
Certificate serial: 0C9682
Authority key identifier: D9:01:55:C5:1F:F2:39:4D:A7:84:A3:84:AA:71:7C:76:E3:03:2C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QFVxR_yOU2nhKOEqnF8duMDLCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/dec12c-5f18-48ab-b006-422bb43753be/1/I3uqf-5QEIdlw0BgJVvHVMgtAZI.roa
Signing time: Thu 27 Jan 2022 22:30:35 +0000
ROA not before: Thu 27 Jan 2022 22:30:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210967
IP address blocks: 213.217.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 824962 (0xc9682)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90155c51ff2394da784a384aa717c76e3032c24
Validity
Not Before: Jan 27 22:30:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=237baa7fee50108765c34060255bc754c82d0192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:93:29:7e:d3:70:78:f3:b2:78:ca:58:0d:a8:
e6:9c:df:85:0b:9b:1b:7e:de:0a:e1:00:41:da:b2:
0f:1c:4a:28:7e:41:9f:da:b3:c4:93:3d:ff:dc:c1:
9d:1f:5e:cc:32:4f:ee:80:80:e0:7c:b6:e1:bc:6c:
43:31:51:f7:04:29:5f:d8:15:b8:d5:e3:10:80:9c:
81:e0:54:1c:68:cf:e7:a5:a3:18:a6:4d:e2:d3:03:
b6:a1:8b:13:bc:fe:7a:a3:27:1f:82:47:1d:ee:e6:
82:1d:14:ac:8c:aa:75:5c:b3:e5:4d:c9:a1:f5:ad:
40:91:4a:91:d0:90:2e:b8:c8:68:36:bb:b1:3a:17:
4a:08:43:03:d4:55:04:44:84:27:30:7d:06:91:f5:
bd:e9:8c:70:b3:55:70:03:47:b1:ba:eb:a7:eb:76:
f6:85:da:87:b9:16:d3:8e:3b:af:62:a5:19:16:4c:
d2:ce:dc:9e:f9:e2:99:1e:e9:bf:bc:0f:fd:d5:12:
67:48:24:e9:38:09:2d:c6:00:82:2b:26:af:6a:0e:
bb:3b:2b:42:82:d1:3b:fe:1b:2c:99:62:d1:23:af:
3d:41:dd:1f:bf:70:d6:34:39:93:fa:30:e1:14:52:
77:ed:19:db:ea:90:37:35:95:18:9d:68:48:25:6d:
0e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7B:AA:7F:EE:50:10:87:65:C3:40:60:25:5B:C7:54:C8:2D:01:92
X509v3 Authority Key Identifier:
keyid:D9:01:55:C5:1F:F2:39:4D:A7:84:A3:84:AA:71:7C:76:E3:03:2C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QFVxR_yOU2nhKOEqnF8duMDLCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/dec12c-5f18-48ab-b006-422bb43753be/1/I3uqf-5QEIdlw0BgJVvHVMgtAZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/dec12c-5f18-48ab-b006-422bb43753be/1/2QFVxR_yOU2nhKOEqnF8duMDLCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.217.30.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:79:10:9b:e0:85:aa:2a:69:4a:44:35:47:bc:1d:5f:a8:78:
da:c1:e2:4e:83:b5:42:a1:f7:d9:70:53:c9:0e:d2:a6:a8:17:
30:20:8d:d8:59:2d:d2:22:72:ba:a0:dc:72:6b:8b:26:b9:fb:
56:6a:96:a1:f9:77:9b:93:8c:3e:6a:5b:bb:57:b2:c9:16:e5:
ba:aa:61:6c:12:e7:db:42:7b:4c:00:34:e1:03:10:cd:e6:74:
dc:fc:1a:c7:0c:cb:93:78:4e:bb:13:14:07:c2:58:dd:12:98:
78:42:bf:46:f6:80:80:7a:09:aa:99:63:22:fa:71:06:9e:95:
84:24:5e:ce:fe:35:16:5c:bf:80:56:f7:32:35:53:36:3c:35:
c6:18:b7:25:7b:74:36:37:31:e2:95:a3:e8:d1:0b:29:6e:50:
35:ba:6c:50:eb:3f:61:84:14:e3:bd:28:e0:55:ea:cf:37:31:
9b:50:12:46:76:58:ed:b1:80:bf:79:9d:b5:85:9e:fc:34:89:
0c:e4:96:2b:87:99:8e:b7:ed:15:8e:35:77:1b:b6:b3:80:d1:
3d:e1:86:14:ec:34:91:f5:96:e0:69:8b:b7:58:ab:89:95:04:
c7:a4:5e:47:a4:d9:43:30:e4:a1:1f:84:fe:07:c0:53:e2:97:
2d:2a:4f:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:05 2023 by rpki-client on console-ams.rpki-client.org