Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/3h4xN8sew3KL8hW5nXwP2JgQCXQ.roa
File: 3h4xN8sew3KL8hW5nXwP2JgQCXQ.roa (raw, json)
Hash identifier: NmHreT6BBgHq+TgJIYmHuzajp8uMzW0NhLDLIfQh5c4=
Subject key identifier: DE:1E:31:37:CB:1E:C3:72:8B:F2:15:B9:9D:7C:0F:D8:98:10:09:74
Certificate issuer: /CN=000d0fee2cd566965ca08db550663cb20b412343
Certificate serial: 01825A0ADB638510C6A81E36DD4905D8BD6A
Authority key identifier: 00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/3h4xN8sew3KL8hW5nXwP2JgQCXQ.roa
Signing time: Mon 01 Aug 2022 15:33:57 +0000
ROA not before: Mon 01 Aug 2022 15:33:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208623
IP address blocks: 83.138.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5a:0a:db:63:85:10:c6:a8:1e:36:dd:49:05:d8:bd:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000d0fee2cd566965ca08db550663cb20b412343
Validity
Not Before: Aug 1 15:33:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de1e3137cb1ec3728bf215b99d7c0fd898100974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:01:e7:8b:41:43:69:a9:63:8c:8c:f5:cf:41:
13:77:c9:c1:86:fb:ad:8d:f9:7e:3c:30:91:80:ca:
e7:c0:e3:ec:d7:e7:90:8b:0a:22:5d:b1:0a:96:5f:
70:f7:89:b0:67:bd:30:13:e3:40:5a:7a:99:54:ee:
b1:c2:89:f3:51:ef:1b:19:f3:1a:58:fc:c1:14:ce:
85:ba:e9:f2:16:df:85:1c:58:2a:e2:23:9b:5e:a8:
d1:fa:59:95:88:34:2f:38:82:e5:fe:0b:2a:62:a3:
c4:5b:00:cb:7c:00:d3:65:bf:3a:48:40:57:6b:19:
49:b9:27:d1:f7:35:83:1c:b4:82:0b:1d:98:d3:fa:
c9:16:e5:8e:e8:51:b3:8f:9c:54:af:53:7b:e8:48:
06:5e:51:86:59:e2:2d:e2:a5:52:00:dc:26:28:0f:
5e:2f:dd:e6:30:1f:00:34:ba:2d:1d:a0:9e:45:85:
d2:16:95:50:67:c2:03:94:99:5b:ec:92:c5:04:60:
1b:2a:e2:11:12:69:bd:c5:9e:bc:3f:c5:b8:8f:17:
2b:2a:1e:e3:67:02:8b:72:c8:da:3a:a4:ae:0a:42:
09:71:6b:5a:a7:56:a3:f3:2e:18:92:e1:75:7c:b8:
e8:b3:66:2a:d5:f1:33:8d:14:db:b7:3a:ab:2d:f8:
ed:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1E:31:37:CB:1E:C3:72:8B:F2:15:B9:9D:7C:0F:D8:98:10:09:74
X509v3 Authority Key Identifier:
keyid:00:0D:0F:EE:2C:D5:66:96:5C:A0:8D:B5:50:66:3C:B2:0B:41:23:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AA0P7izVZpZcoI21UGY8sgtBI0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/3h4xN8sew3KL8hW5nXwP2JgQCXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e6fe09-c22d-45b7-a599-b941ba921b3f/1/AA0P7izVZpZcoI21UGY8sgtBI0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.18.0/24
Signature Algorithm: sha256WithRSAEncryption
30:26:af:5c:9c:97:d9:a5:f5:9f:95:5c:d5:fb:a5:4a:91:1b:
17:63:66:a2:78:22:67:fb:71:a0:a4:e1:8f:01:07:08:c9:36:
9c:60:77:dd:bb:bc:ea:92:b5:e2:f6:36:92:f4:ba:a8:0a:93:
90:9c:ee:da:d3:bb:f7:1f:4a:65:45:cc:0c:23:69:83:88:3a:
12:b6:da:ce:6b:fa:9c:57:02:16:a9:2e:13:57:b6:1f:26:e0:
f5:47:d7:b8:a6:cd:49:4e:de:46:77:ba:de:c9:02:18:6d:89:
cc:46:64:c9:32:37:82:84:3f:2e:05:2a:00:38:b3:db:56:31:
85:05:86:34:a1:cc:28:bf:fb:0e:f9:01:fe:f5:da:fd:bc:f7:
e6:3e:95:e5:3b:72:6a:28:a7:8d:d7:d4:9d:43:18:26:c1:6f:
cc:21:0e:92:b4:eb:08:09:13:72:92:ff:39:c4:51:42:66:32:
a9:ec:08:21:cf:1e:fc:72:27:71:7d:60:a1:e9:61:a2:6f:8a:
60:2a:42:39:44:87:57:3f:c8:61:a1:a2:b4:60:d4:cb:03:fb:
7c:fd:68:4e:ff:0b:07:27:0c:9a:c1:ca:9b:2a:62:b3:fe:f4:
7b:7c:83:56:93:ac:86:8d:1f:3d:09:d6:e4:c2:54:dd:20:4e:
dd:d5:3b:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-fra.rpki-client.org