Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/urj5Y07Mqs-7gnBGENeqHydkWso.roa
File: urj5Y07Mqs-7gnBGENeqHydkWso.roa (raw, json)
Hash identifier: np5A0/prhMWN5nQHpkP6y2CRa1Nwf8xingB6NmFQ7SE=
Subject key identifier: BA:B8:F9:63:4E:CC:AA:CF:BB:82:70:46:10:D7:AA:1F:27:64:5A:CA
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 087867D4
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/urj5Y07Mqs-7gnBGENeqHydkWso.roa
Signing time: Sat 01 Jan 2022 00:53:34 +0000
ROA not before: Sat 01 Jan 2022 00:53:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205686
IP address blocks: 213.190.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142108628 (0x87867d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bab8f9634eccaacfbb82704610d7aa1f27645aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:bd:5e:8a:64:c7:72:57:6c:af:a0:83:70:ed:
ef:4d:e7:3d:68:2f:73:2e:29:5f:5f:cb:df:20:c7:
82:a3:dc:3d:ee:9c:fa:dc:bb:c0:8f:76:70:f8:79:
cb:51:c7:37:e7:50:30:3b:b9:89:0a:13:1f:38:d8:
88:67:09:7f:79:79:67:97:73:b6:13:bf:b0:75:41:
bc:8d:e5:5b:9f:d2:f6:81:78:fc:f7:33:22:ca:05:
a5:08:3f:07:be:a3:72:ad:63:36:4b:56:79:99:78:
53:97:22:3a:1e:8d:11:7e:38:a3:b4:09:45:98:dd:
2d:65:4c:0e:17:62:72:30:d3:c8:a3:3b:69:79:43:
92:99:0c:8b:a7:da:a3:54:bf:95:29:f9:f6:b7:c7:
ee:dd:76:43:04:f4:17:28:6b:bb:b2:43:5a:85:59:
ae:ab:42:dc:9f:ba:fe:6a:a0:ee:84:05:8e:2a:62:
2e:63:67:13:1e:d1:1b:fc:91:ad:c6:9b:73:e2:4f:
b7:f8:78:44:76:e4:5a:e1:4e:9f:e1:3c:c9:b2:72:
40:7c:6f:90:46:07:70:3a:49:c1:2e:4b:ca:b7:df:
7c:65:85:75:b5:e5:d4:15:cc:2d:e0:e8:35:fb:c3:
0c:72:12:08:39:bc:c0:49:4d:6f:f4:d7:83:18:3e:
58:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B8:F9:63:4E:CC:AA:CF:BB:82:70:46:10:D7:AA:1F:27:64:5A:CA
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/urj5Y07Mqs-7gnBGENeqHydkWso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.190.34.0/24
Signature Algorithm: sha256WithRSAEncryption
89:8f:ba:b8:8c:6d:6b:02:b5:a9:3a:80:74:b3:d1:b1:a5:7e:
14:ed:2a:2e:4c:e9:92:ad:93:db:58:b4:fa:dc:d4:66:66:10:
a2:8a:02:0b:be:3c:f4:d2:a8:ef:6c:6f:44:b2:27:0b:52:7b:
b7:17:87:09:26:2e:ff:31:c1:8d:00:d8:b0:31:90:87:89:c8:
f0:d9:c8:56:46:e2:19:51:4a:4f:5a:79:c3:be:13:9b:36:45:
f3:9c:a5:36:d8:a3:c9:46:9b:b7:de:c8:bb:a6:bd:19:f2:72:
c5:aa:c3:2f:c3:2e:03:b1:5b:60:97:cd:13:fa:f6:ca:85:a0:
db:30:00:31:f6:5c:09:a1:e0:07:56:02:79:23:6c:98:c6:0e:
44:41:78:c6:71:73:cd:89:1f:6f:7e:a8:ce:b7:19:08:9e:6d:
06:d2:74:a6:0f:dd:42:99:9a:7d:19:60:ae:a7:1f:c3:02:de:
4d:2f:a0:55:53:8f:8f:13:41:1c:51:2a:d3:83:20:c5:a7:4d:
f6:49:84:30:85:db:9d:3b:73:92:a0:fb:8d:46:38:13:14:46:
ff:4c:fb:c3:c9:99:90:b1:1b:14:d5:80:bd:9b:59:b7:61:f6:
01:d0:3b:6c:ae:0b:3d:c5:6a:af:26:94:83:b3:5b:71:51:4a:
e7:08:bf:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:56 2023 by rpki-client on console-ams.rpki-client.org