Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/adZbhndFnO3CcungAPpjOMAiBSA.roa
File: adZbhndFnO3CcungAPpjOMAiBSA.roa (raw, json)
Hash identifier: 7W98XbQtObXEZzskEDptX0xs3KbbjPNQaFZ4E01hdkw=
Subject key identifier: 69:D6:5B:86:77:45:9C:ED:C2:72:E9:E0:00:FA:63:38:C0:22:05:20
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F43683
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/adZbhndFnO3CcungAPpjOMAiBSA.roa
Signing time: Sat 01 Jan 2022 13:06:25 +0000
ROA not before: Sat 01 Jan 2022 13:06:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34829
IP address blocks: 213.135.90.0/23 maxlen: 23
213.135.88.0/23 maxlen: 23
213.135.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351549059 (0x14f43683)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69d65b8677459cedc272e9e000fa6338c0220520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:83:73:fc:35:33:22:51:ab:f0:58:68:ca:75:
ad:2f:1d:c6:e4:a2:1c:a3:79:8e:87:ab:9f:8e:6b:
ec:3c:3b:12:a9:57:de:c5:96:b1:4d:3d:14:90:4b:
c2:7e:81:5c:91:0e:88:c4:27:df:c1:a8:fc:d0:a2:
e9:e2:19:33:f7:91:c0:84:5f:54:7e:15:ba:fa:29:
25:3c:1b:85:28:c8:ec:a4:e9:19:b3:b9:0b:5c:d5:
21:c5:ab:87:59:16:fa:e9:03:0a:b9:15:41:d6:30:
3f:48:56:2d:73:c3:75:04:69:3d:ad:8e:b1:c2:8a:
a7:41:be:b6:f1:9b:0d:33:d0:fc:51:d0:3b:c0:0b:
d4:1c:f0:36:a0:06:29:e0:22:08:b1:3f:53:f5:d3:
d9:95:ce:e7:64:9a:e3:e6:48:dd:d7:ad:84:3d:d0:
35:a9:0a:73:58:a6:70:55:7a:c7:fa:e0:fa:12:45:
20:07:f0:46:dd:f1:7a:2c:93:7b:4e:b2:2c:4c:45:
bd:a3:1a:9e:32:91:37:e3:ad:69:8f:aa:49:59:6d:
91:79:f0:1e:a1:85:04:98:58:8d:f9:42:1a:1d:b3:
74:d2:18:cd:a8:ef:e2:1e:71:cf:8d:2b:23:e6:5c:
2f:fc:a4:e4:65:dd:ec:13:00:d5:7c:87:b2:8a:6f:
8d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D6:5B:86:77:45:9C:ED:C2:72:E9:E0:00:FA:63:38:C0:22:05:20
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/adZbhndFnO3CcungAPpjOMAiBSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.88.0/22
Signature Algorithm: sha256WithRSAEncryption
14:47:34:ad:3d:ed:cb:bc:44:fd:59:0d:c9:0d:ee:d8:8d:40:
5d:3c:0b:75:83:81:0a:80:15:e3:0f:fb:bc:38:6d:2f:74:41:
db:fe:0c:0e:38:e1:7e:9f:cb:30:3b:3f:67:97:85:b0:8b:b2:
9d:2d:77:ae:7f:7b:18:12:4d:62:40:81:fb:7c:c6:a1:b3:90:
51:39:b6:a0:b6:2a:8a:c2:f1:98:7a:3f:c6:75:e3:ac:0a:bc:
0a:73:56:07:48:99:02:6d:0d:59:07:a0:c9:3e:43:8a:b4:ec:
6f:86:c8:5e:e1:33:c3:15:bb:4b:3e:72:2c:d6:d5:c0:7a:80:
1e:6a:06:c7:75:34:c1:5f:83:6d:05:89:cb:88:63:db:c4:2c:
9d:b9:46:79:ec:2d:c7:db:a5:6e:9c:e8:b4:40:eb:1e:67:db:
06:aa:fa:87:73:c7:c7:48:84:38:1e:13:22:9e:1a:07:40:21:
68:38:45:fa:39:4b:5a:b9:32:b9:9d:86:91:35:79:37:61:ab:
c7:f0:c8:dc:87:60:65:5a:8a:f4:f2:f8:f5:bf:dc:6f:8f:be:
a2:e9:d5:06:ac:40:ee:5e:c5:66:aa:59:b9:12:34:93:f8:38:
4d:08:de:70:e1:bd:d0:aa:2b:79:72:eb:2c:82:68:dd:cb:37:
17:fe:85:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:03 2023 by rpki-client on console-ams.rpki-client.org