Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Sd2MJe4Eg3_VSbGd7h3-geOfuNI.roa
File: Sd2MJe4Eg3_VSbGd7h3-geOfuNI.roa (raw, json)
Hash identifier: eiygcBpiSKQoiR4xFIGc3rVmMsYjs/1MXDWD6s+Rr5Q=
Subject key identifier: 49:DD:8C:25:EE:04:83:7F:D5:49:B1:9D:EE:1D:FE:81:E3:9F:B8:D2
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 08962250
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Sd2MJe4Eg3_VSbGd7h3-geOfuNI.roa
Signing time: Thu 14 Apr 2022 07:38:28 +0000
ROA not before: Thu 14 Apr 2022 07:38:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 213.209.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144056912 (0x8962250)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Apr 14 07:38:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49dd8c25ee04837fd549b19dee1dfe81e39fb8d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:95:7e:d9:5b:6e:48:97:d3:26:8c:74:a6:86:
12:d4:ba:1b:14:9b:5d:9b:5b:4b:63:a6:3c:19:3d:
3f:e9:7f:0d:50:a7:81:b8:13:06:17:c5:f4:38:05:
23:aa:5c:19:01:46:98:31:b8:6d:c5:5f:ba:32:40:
36:4e:6d:83:51:9a:01:01:06:6b:58:ed:f7:a3:1e:
21:8e:67:16:60:58:07:62:e1:ab:3c:d8:38:ea:b5:
f8:2a:62:32:01:81:f2:c9:8c:e8:80:03:02:35:ec:
6b:8a:2f:9b:46:25:b5:63:15:31:e1:f4:4f:4d:71:
d1:79:55:f3:8e:ab:16:46:f5:9b:64:d0:5c:ae:b0:
aa:47:24:3b:51:50:23:ba:d0:6e:fd:33:99:c8:ee:
95:ff:78:c8:56:24:e6:5f:7f:29:6f:3f:27:84:b2:
f2:8d:02:c2:b0:1c:92:2b:b6:79:e4:cd:91:bb:53:
bd:8f:f4:74:2e:93:87:0c:5e:90:25:e6:f3:ad:51:
22:b0:63:94:dd:b0:1c:a6:f4:fe:cb:3f:33:30:97:
64:af:e4:67:38:92:2c:44:65:5f:c9:77:41:7a:98:
40:a6:f3:97:da:b3:d5:06:e9:9a:21:80:a6:18:95:
2e:a7:2a:cc:2a:1b:8c:88:99:16:ab:67:25:c9:9c:
07:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DD:8C:25:EE:04:83:7F:D5:49:B1:9D:EE:1D:FE:81:E3:9F:B8:D2
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/Sd2MJe4Eg3_VSbGd7h3-geOfuNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.144.0/24
Signature Algorithm: sha256WithRSAEncryption
26:f6:b3:ec:4e:5a:1c:4f:13:03:ca:1f:15:af:2e:27:6a:90:
29:50:bd:79:b6:cc:1d:fd:51:c6:48:e1:20:bc:a9:f6:ba:5a:
e7:8c:a6:70:f3:04:af:ee:20:32:af:74:2f:7c:cc:28:e3:fe:
fa:21:0f:9a:38:58:4e:d3:52:a9:41:a8:29:af:66:f5:38:4d:
75:02:8f:54:ab:a0:9f:c0:34:20:e4:03:e8:86:d1:d6:6c:47:
cb:d7:bc:d6:02:2c:91:4f:4e:2b:60:71:27:40:5e:35:39:19:
45:70:80:4b:0b:a5:14:36:1b:82:86:e1:e2:79:bf:71:0b:83:
43:a6:63:fd:3d:54:ba:bc:32:c6:a1:ed:ed:1c:d9:fc:e6:9d:
7d:b0:5d:ff:51:b5:8b:e8:2f:c8:ae:de:a7:93:3b:20:c5:0e:
11:1b:d4:ae:ef:8c:93:c5:ef:60:40:6c:0f:c2:79:a0:6f:a7:
ea:bd:62:2e:2f:d0:a2:29:ce:26:7d:03:fd:86:e9:d7:0e:80:
37:30:8d:1c:73:41:09:2d:6d:83:69:ba:51:cf:6e:64:3b:5c:
c9:16:83:8a:12:9e:07:cb:c3:ac:ab:83:88:a9:29:60:27:8b:
27:c7:89:30:f0:01:40:d2:80:c8:49:9b:ac:00:e0:9e:83:d0:
b4:db:c4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:23 2023 by rpki-client on console-fra.rpki-client.org