Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/e68770-edf2-4358-b821-914d5dc5197f/1/Pvcsyod-i_deyBGCk1JMFT0aMPo.roa
File: Pvcsyod-i_deyBGCk1JMFT0aMPo.roa (raw, json)
Hash identifier: Mbj10ZrK2UjT1NkavRpvKFW/VEPINhPZfsaCFQ61LoQ=
Subject key identifier: 3E:F7:2C:CA:87:7E:8B:F7:5E:C8:11:82:93:52:4C:15:3D:1A:30:FA
Certificate issuer: /CN=822b30d89b1bcff699f641f88026942d16a72bcc
Certificate serial: 446578D5
Authority key identifier: 82:2B:30:D8:9B:1B:CF:F6:99:F6:41:F8:80:26:94:2D:16:A7:2B:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gisw2Jsbz_aZ9kH4gCaULRanK8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/e68770-edf2-4358-b821-914d5dc5197f/1/Pvcsyod-i_deyBGCk1JMFT0aMPo.roa
Signing time: Sat 01 Jan 2022 14:57:29 +0000
ROA not before: Sat 01 Jan 2022 14:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15525
IP address blocks: 213.13.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1147500757 (0x446578d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=822b30d89b1bcff699f641f88026942d16a72bcc
Validity
Not Before: Jan 1 14:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ef72cca877e8bf75ec8118293524c153d1a30fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:33:23:db:65:6c:b7:85:95:c1:30:e1:ca:33:
ca:41:10:d1:25:de:5c:84:92:4c:60:45:c3:8d:23:
31:d0:51:45:ff:9d:a9:6c:81:2b:f9:86:9f:a6:5e:
83:97:10:1b:a6:e3:22:17:39:01:1f:6c:88:06:26:
a7:15:a1:60:9e:b4:81:0b:7b:cb:93:a4:7e:94:03:
44:e5:4a:56:8a:33:c7:27:ba:a5:19:f6:ca:61:1c:
56:b5:82:9e:e2:d4:9d:a8:e7:85:02:fd:d4:d1:16:
c0:55:64:f3:55:64:45:c1:ad:7c:88:cf:ce:63:c9:
40:75:75:6a:ec:74:50:8a:83:6f:11:28:9e:e2:05:
72:93:e3:29:24:f2:f8:85:c6:3c:35:41:02:11:71:
cd:24:a4:76:ef:04:55:24:ea:1c:91:97:52:bd:ba:
1e:5d:6a:ac:36:bd:e0:7f:c1:32:ca:45:5e:1c:b9:
82:da:60:60:87:7f:cf:4d:a6:87:55:69:b7:70:b7:
38:ea:d0:84:ef:2d:1c:a4:dc:70:77:c0:92:73:ae:
d8:3b:7a:a6:f7:dd:b6:0b:9a:02:37:2b:63:a0:4f:
94:ac:f5:0f:11:bb:8a:4e:74:89:1e:70:50:e6:ae:
7d:b5:57:8c:66:ea:fa:f3:bc:ca:f1:20:a0:c5:bc:
f8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F7:2C:CA:87:7E:8B:F7:5E:C8:11:82:93:52:4C:15:3D:1A:30:FA
X509v3 Authority Key Identifier:
keyid:82:2B:30:D8:9B:1B:CF:F6:99:F6:41:F8:80:26:94:2D:16:A7:2B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gisw2Jsbz_aZ9kH4gCaULRanK8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e68770-edf2-4358-b821-914d5dc5197f/1/Pvcsyod-i_deyBGCk1JMFT0aMPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e68770-edf2-4358-b821-914d5dc5197f/1/gisw2Jsbz_aZ9kH4gCaULRanK8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.13.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a1:16:1c:7d:0d:5a:17:a0:04:ec:ce:6b:7d:14:25:2f:33:f4:
dc:3c:6c:25:6a:7b:be:99:f1:51:14:da:42:6a:cf:11:70:5f:
78:af:2f:03:2c:52:cb:15:fe:72:ab:58:f1:8b:bd:f4:a8:fa:
83:da:9e:33:bb:66:ae:1b:d9:9b:5c:f1:af:fa:7f:e0:cb:6c:
81:af:1c:b0:de:ea:36:b5:35:53:99:d2:ef:15:de:4a:dc:1c:
eb:29:0c:89:17:5d:55:ab:76:84:91:36:e8:36:63:67:8c:46:
79:88:2b:a6:29:93:b6:48:06:5c:ad:41:3d:51:f3:13:c4:07:
41:49:6a:47:47:50:cb:4e:55:2b:df:06:aa:b2:5b:bc:62:70:
b2:d5:67:62:cd:d3:0d:36:4e:34:66:5c:b5:b8:d7:79:3b:11:
30:49:1a:4a:60:23:a1:13:a0:c4:61:4a:69:e7:a1:b9:16:6e:
89:07:d1:06:d9:14:f3:81:28:4e:07:1e:65:e7:30:f6:6a:67:
94:24:0e:75:48:07:f2:2f:36:f5:29:ec:ca:2e:5e:e2:b0:08:
7f:c2:9e:41:59:8d:b6:bf:19:85:6f:b5:4d:1d:bb:92:ea:28:
47:2a:cb:5f:71:ea:db:d5:f9:26:e7:42:f5:5d:a0:fa:11:cc:
dc:3c:7f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:49 2023 by rpki-client on console-ams.rpki-client.org