Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/00ee93-9b06-4490-803d-99b456fdd954/1/_LShbZ6CKevnbE8tZJC9tByLg6Q.roa
File: _LShbZ6CKevnbE8tZJC9tByLg6Q.roa (raw, json)
Hash identifier: Z1gHlI67AK8eDYqo11hCTPMKMjBWZztflFJSZe026LI=
Subject key identifier: FC:B4:A1:6D:9E:82:29:EB:E7:6C:4F:2D:64:90:BD:B4:1C:8B:83:A4
Certificate issuer: /CN=fea27ed9584e07c740feeb40d7b9e57ccac5e950
Certificate serial: 01B15B4B
Authority key identifier: FE:A2:7E:D9:58:4E:07:C7:40:FE:EB:40:D7:B9:E5:7C:CA:C5:E9:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_qJ-2VhOB8dA_utA17nlfMrF6VA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/00ee93-9b06-4490-803d-99b456fdd954/1/_LShbZ6CKevnbE8tZJC9tByLg6Q.roa
Signing time: Sat 01 Jan 2022 02:54:58 +0000
ROA not before: Sat 01 Jan 2022 02:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49715
IP address blocks: 213.108.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28400459 (0x1b15b4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fea27ed9584e07c740feeb40d7b9e57ccac5e950
Validity
Not Before: Jan 1 02:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcb4a16d9e8229ebe76c4f2d6490bdb41c8b83a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6f:7b:1a:18:56:29:d9:5f:aa:f8:ac:93:66:
0c:30:9a:e2:bd:38:39:cc:0e:1c:62:72:92:1d:0d:
fb:b8:71:84:81:77:f5:ad:54:15:a1:5c:84:52:1c:
24:cb:19:bd:4e:30:97:ee:db:ed:a2:ca:5b:b7:d0:
87:95:b4:5f:b3:d9:a7:c4:12:42:af:81:b1:4a:16:
09:e9:a7:04:06:e5:39:72:c1:98:12:d4:67:33:c4:
3d:c9:7c:23:65:77:f2:d9:9d:09:50:73:25:a1:b7:
a3:2e:0c:de:b3:91:84:61:24:15:1a:52:96:19:97:
0d:a6:8b:ba:e9:95:da:6f:f6:0b:b5:5c:68:e2:e9:
ed:10:4c:e2:7f:58:d0:d8:e4:ff:0a:61:df:35:61:
31:bd:59:74:ba:b2:8e:29:7a:7c:7b:fb:8a:1a:4d:
6f:77:b5:6b:f8:21:1f:ad:d8:f0:21:bd:56:96:f4:
d4:86:b0:ee:9a:1d:f2:03:8b:59:05:c7:9f:9f:14:
87:61:fe:0b:c8:aa:e2:e0:73:88:9e:e8:14:41:88:
5b:dd:32:77:04:36:19:27:eb:06:ed:9c:44:12:db:
37:98:50:4f:fe:06:3d:ce:0c:9b:13:9c:ad:8a:39:
ab:28:61:11:97:3f:79:de:df:03:5f:ac:a6:1d:30:
05:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B4:A1:6D:9E:82:29:EB:E7:6C:4F:2D:64:90:BD:B4:1C:8B:83:A4
X509v3 Authority Key Identifier:
keyid:FE:A2:7E:D9:58:4E:07:C7:40:FE:EB:40:D7:B9:E5:7C:CA:C5:E9:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_qJ-2VhOB8dA_utA17nlfMrF6VA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/00ee93-9b06-4490-803d-99b456fdd954/1/_LShbZ6CKevnbE8tZJC9tByLg6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/00ee93-9b06-4490-803d-99b456fdd954/1/_qJ-2VhOB8dA_utA17nlfMrF6VA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.152.0/21
Signature Algorithm: sha256WithRSAEncryption
68:e5:47:0c:92:c7:ae:2f:6a:c3:36:e4:db:3f:4b:a3:f8:c8:
f5:14:f3:03:08:47:79:77:05:a3:e8:f4:c1:b8:f1:8a:25:44:
e1:e4:a3:c5:ab:14:98:51:44:1a:c9:56:a0:ba:fc:f7:0f:79:
07:6f:e3:be:b5:77:14:7e:44:e9:14:c0:74:99:c8:d0:8d:a5:
da:14:e4:26:56:48:ab:16:3f:c7:8a:34:75:f9:8d:cd:9d:d2:
1f:60:03:03:cb:71:2e:b0:d5:e7:d2:48:42:14:ad:10:dc:6e:
b1:75:15:f8:15:4d:67:27:80:b6:3f:7c:4d:f9:6f:40:52:0a:
8a:90:6c:38:97:52:46:51:dc:93:2c:6e:15:3a:6d:57:f3:25:
ae:1b:52:ca:01:bd:87:19:18:00:4c:8c:52:df:07:75:b2:5c:
86:c7:85:91:06:7d:02:27:d1:8b:a4:9d:fe:c5:82:f3:6e:11:
ee:30:b3:a4:e6:46:1e:6f:37:40:fb:c9:84:93:fe:1b:fa:a3:
ff:b1:22:52:6e:32:1f:d0:16:72:e9:36:38:7f:99:80:b2:0e:
df:a9:2b:ed:5b:09:51:aa:0e:42:35:7f:86:09:2b:81:76:9e:
9d:19:38:09:93:18:6e:0d:6d:17:bd:49:65:3a:a0:45:28:14:
6f:d0:8c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:35 2023 by rpki-client on console-fra.rpki-client.org