Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b27d45-08cc-47a1-ac5a-5f4836083a30/1/ObdQJiG1vbkQ8TnYY-nxuh89DLo.roa
File: ObdQJiG1vbkQ8TnYY-nxuh89DLo.roa (raw, json)
Hash identifier: +qdPqqQTwBUkD7bK7dzmCjAgW7J/f8qF7V0p4fRWJA8=
Subject key identifier: 39:B7:50:26:21:B5:BD:B9:10:F1:39:D8:63:E9:F1:BA:1F:3D:0C:BA
Certificate issuer: /CN=52056867e4d2885e99b549ed6fb786330adf8f44
Certificate serial: 06BD8BCC
Authority key identifier: 52:05:68:67:E4:D2:88:5E:99:B5:49:ED:6F:B7:86:33:0A:DF:8F:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgVoZ-TSiF6ZtUntb7eGMwrfj0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/b27d45-08cc-47a1-ac5a-5f4836083a30/1/ObdQJiG1vbkQ8TnYY-nxuh89DLo.roa
Signing time: Sat 01 Jan 2022 12:02:29 +0000
ROA not before: Sat 01 Jan 2022 12:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30876
IP address blocks: 213.180.156.0/23 maxlen: 23
213.180.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113085388 (0x6bd8bcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52056867e4d2885e99b549ed6fb786330adf8f44
Validity
Not Before: Jan 1 12:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39b7502621b5bdb910f139d863e9f1ba1f3d0cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c6:db:35:58:9c:5c:5e:73:ac:88:de:e4:73:
08:66:69:ab:8d:8b:8e:3c:5b:1f:ee:f5:ab:a1:f3:
3d:e4:fa:e3:fa:a6:8e:b1:4e:d6:d6:09:ac:11:b2:
78:70:2a:74:55:6b:13:e8:46:e4:e1:f6:e8:66:6f:
87:91:36:47:25:9d:b5:f0:ef:4b:7b:a4:01:5c:51:
2c:09:30:61:55:0f:b1:d2:b3:69:42:4b:18:36:32:
b7:b3:aa:2a:fe:73:20:bf:a8:93:71:c1:33:74:a0:
63:92:c6:2e:3f:b6:73:31:28:0a:ae:1c:99:30:4b:
2e:05:79:f6:c5:d6:ec:b8:93:f7:61:06:a2:80:7e:
b8:f1:9f:87:40:84:7c:99:98:f7:77:ff:d9:c5:fd:
23:e9:26:5e:a8:ff:99:8f:0d:e8:59:cc:f9:c8:ad:
98:61:45:a0:6e:28:af:af:af:45:1f:1a:d9:bc:fe:
3e:64:c3:5c:3c:89:8a:60:f5:95:15:70:24:3c:50:
c3:14:9a:cc:6a:0c:31:be:6d:44:17:a2:1f:10:4b:
b0:ae:6a:38:52:89:4b:c2:aa:24:93:73:c7:66:15:
9e:1a:19:bc:3e:82:38:30:ae:b1:2f:de:45:de:fb:
15:d0:70:d7:d0:19:1e:ce:40:d2:dc:c7:65:dc:9d:
92:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B7:50:26:21:B5:BD:B9:10:F1:39:D8:63:E9:F1:BA:1F:3D:0C:BA
X509v3 Authority Key Identifier:
keyid:52:05:68:67:E4:D2:88:5E:99:B5:49:ED:6F:B7:86:33:0A:DF:8F:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgVoZ-TSiF6ZtUntb7eGMwrfj0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b27d45-08cc-47a1-ac5a-5f4836083a30/1/ObdQJiG1vbkQ8TnYY-nxuh89DLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b27d45-08cc-47a1-ac5a-5f4836083a30/1/UgVoZ-TSiF6ZtUntb7eGMwrfj0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.180.156.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:50:dc:18:70:8c:d6:32:9e:b8:f7:bc:fa:95:b3:1d:92:67:
b7:b1:72:d8:da:3b:3b:0d:f6:57:d5:4f:f3:8c:8d:14:1e:f8:
49:59:2b:c1:61:9a:f6:37:ac:62:f5:f7:8b:95:62:e9:f4:93:
a4:e5:84:e2:0e:33:bf:fb:ff:ec:b0:ed:d3:ff:fd:47:a0:53:
e8:13:2e:ca:4d:b9:70:2b:a3:9d:37:e8:a4:a6:fa:fb:c7:b6:
51:3f:0d:d7:97:71:3a:0b:96:24:69:85:89:cb:bd:7c:7c:5d:
45:3d:63:c8:b8:5d:3d:21:f5:cf:9e:b0:89:14:c2:6f:cb:41:
97:7b:a0:9f:43:b7:04:9f:9c:37:cc:20:20:fe:5f:62:e8:cf:
f2:1d:53:35:ac:84:e6:e8:fa:16:a3:04:03:af:86:36:ec:89:
1f:4c:4c:7e:31:0f:d0:06:47:1a:d7:d6:ce:76:7e:7a:fc:f1:
c9:72:4d:14:e5:62:eb:93:69:87:8b:99:a4:c5:bf:d2:3b:e8:
06:69:7d:bc:7d:29:6e:99:d1:10:56:9c:a4:46:2e:eb:8f:1b:
ea:a5:f4:46:12:e5:c8:b9:a6:2a:63:8a:91:99:a0:99:e1:6d:
d4:0a:63:9e:54:f5:db:6c:62:a6:51:6d:ff:ba:e6:b0:13:2e:
01:13:91:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:04 2023 by rpki-client on console-ams.rpki-client.org