Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/elq8bhyy2S3AbJ_kjRBzJUo4VZY.roa
File: elq8bhyy2S3AbJ_kjRBzJUo4VZY.roa (raw, json)
Hash identifier: jdipwH3Qb6s+4zbH5MTPdM1e6R6UicvyWsKAYpbovhE=
Subject key identifier: 7A:5A:BC:6E:1C:B2:D9:2D:C0:6C:9F:E4:8D:10:73:25:4A:38:55:96
Certificate issuer: /CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Certificate serial: 018323810C974E5302DDEED8CE7ACC1C663A
Authority key identifier: 3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/elq8bhyy2S3AbJ_kjRBzJUo4VZY.roa
Signing time: Fri 09 Sep 2022 18:26:43 +0000
ROA not before: Fri 09 Sep 2022 18:26:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 213.209.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:23:81:0c:97:4e:53:02:dd:ee:d8:ce:7a:cc:1c:66:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b476e12e8987e5b302cdc24bdd9db3fe83c8449
Validity
Not Before: Sep 9 18:26:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a5abc6e1cb2d92dc06c9fe48d1073254a385596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b8:06:ff:72:86:bb:29:46:c3:77:85:c3:4b:
dc:79:72:14:ba:26:24:c0:f1:99:70:fb:14:cf:e2:
69:60:ad:7b:1e:d9:6a:8f:40:fa:8e:06:72:73:48:
34:4f:f8:41:fe:67:da:03:55:a0:75:ab:46:71:02:
c7:da:3c:96:3f:fc:9b:2a:19:15:f2:4a:d8:17:3e:
3b:2e:4b:9d:a0:8d:0f:46:19:35:d5:3b:8b:5b:2d:
2c:2e:df:96:b1:79:04:94:4e:c4:07:e9:94:c6:20:
dc:b8:81:1f:e1:ce:99:d9:1a:e8:71:c4:37:3f:0e:
34:be:9e:40:1c:77:fa:d0:c7:08:0a:cf:af:a1:40:
40:b6:b2:73:16:65:18:4b:82:c8:a0:17:71:af:29:
8a:b0:93:bd:63:0f:07:ba:4e:ab:bb:48:13:31:94:
6f:67:72:a4:bc:70:94:73:ea:dc:c0:f6:97:37:43:
93:06:29:3c:69:c8:14:23:fc:4c:9f:2e:4a:5c:ee:
58:a3:81:f4:5b:d9:80:bb:23:c0:ce:a4:e2:39:72:
a3:b5:99:8e:3c:31:2c:dd:06:d2:17:86:19:33:42:
52:8c:25:e1:4e:d7:c9:91:94:f6:60:bb:2d:d6:a6:
65:57:0e:83:85:ff:23:40:0b:3f:73:13:f3:64:00:
1d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5A:BC:6E:1C:B2:D9:2D:C0:6C:9F:E4:8D:10:73:25:4A:38:55:96
X509v3 Authority Key Identifier:
keyid:3B:47:6E:12:E8:98:7E:5B:30:2C:DC:24:BD:D9:DB:3F:E8:3C:84:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0duEuiYflswLNwkvdnbP-g8hEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/elq8bhyy2S3AbJ_kjRBzJUo4VZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d90c6f-6576-46b9-8313-6cbff3c4da01/1/O0duEuiYflswLNwkvdnbP-g8hEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.137.0/24
Signature Algorithm: sha256WithRSAEncryption
18:79:b6:c7:76:91:4c:24:c2:7c:9f:65:14:4d:86:9f:68:0a:
4c:83:37:e4:60:e3:40:8f:a2:33:f6:1a:12:67:e2:ec:9c:ec:
61:cd:5b:e1:52:58:05:3c:87:74:59:51:2d:80:e9:c0:cd:b8:
62:c5:f2:27:1e:0b:df:67:65:ae:6f:86:ec:ca:0e:87:71:e1:
99:d9:bb:3d:05:b4:92:a6:d0:f3:54:2e:71:aa:b5:b5:bd:df:
1d:ff:0c:f2:ce:d3:f4:7f:7e:11:68:73:c9:a4:7e:57:5c:a7:
ae:6d:f4:11:22:20:80:3f:26:c5:4f:3f:c9:12:9e:79:c9:13:
25:90:00:16:28:fc:ab:db:d2:24:e9:0b:11:f5:da:a9:d4:8d:
49:8a:09:8a:c3:d4:cc:d3:94:ed:cb:3e:6a:d6:39:d3:ed:5d:
41:c9:68:37:45:c3:35:c8:be:f2:b2:29:6f:4c:74:54:8e:e6:
ef:2f:b6:6e:ef:91:89:47:e0:27:3e:0f:d5:82:c0:e5:d5:5b:
e9:c0:05:0f:ac:6e:44:8b:85:56:57:0c:04:6a:b2:05:08:64:
91:6f:cc:df:ff:a4:57:2e:31:6d:73:ff:f9:38:0a:4d:f6:87:
fa:d5:fe:2d:7c:f5:ca:75:ac:09:a5:58:97:c8:f2:01:44:d7:
7a:d2:21:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:08 2023 by rpki-client on console-ams.rpki-client.org