Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/FPkQphy8leyyDqrbfAljWoUkygE.roa
File: FPkQphy8leyyDqrbfAljWoUkygE.roa (raw, json)
Hash identifier: ngpoZhd1OsyLdD/o7Do0rZTu+eVTWsEXx8FfUGXE8JE=
Subject key identifier: 14:F9:10:A6:1C:BC:95:EC:B2:0E:AA:DB:7C:09:63:5A:85:24:CA:01
Certificate issuer: /CN=a8010ceb20f2e076a3f000271a5c375761bec2f5
Certificate serial: 018534A166BB54A9F7435AB335D0A04A25DE
Authority key identifier: A8:01:0C:EB:20:F2:E0:76:A3:F0:00:27:1A:5C:37:57:61:BE:C2:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qAEM6yDy4Haj8AAnGlw3V2G-wvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/FPkQphy8leyyDqrbfAljWoUkygE.roa
Signing time: Wed 21 Dec 2022 12:21:10 +0000
ROA not before: Wed 21 Dec 2022 12:21:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 213.175.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:a1:66:bb:54:a9:f7:43:5a:b3:35:d0:a0:4a:25:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8010ceb20f2e076a3f000271a5c375761bec2f5
Validity
Not Before: Dec 21 12:21:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14f910a61cbc95ecb20eaadb7c09635a8524ca01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:6e:43:f6:ac:28:66:50:b3:e7:b9:b9:f6:b0:
bd:2d:38:ab:c8:58:b3:35:8c:57:c8:c2:a4:08:aa:
90:c2:93:a9:d3:4c:2e:1e:6a:98:88:8c:90:81:d1:
05:48:50:14:5e:31:e6:62:fe:88:96:e3:06:a4:e6:
04:e4:7d:96:7f:aa:21:71:c4:3f:14:67:4f:1a:67:
05:3d:50:86:ff:f1:29:57:69:39:08:68:fa:8c:b3:
8c:e8:10:39:d1:e5:8d:19:9c:3f:89:81:aa:27:60:
63:e6:89:3f:66:66:fd:d3:cb:7d:1c:04:7f:6e:97:
ce:07:7f:f7:e6:96:bf:1e:0b:4f:2a:11:21:d3:4f:
d0:c2:79:eb:d3:12:f7:16:20:5f:2b:ec:fb:16:3c:
39:46:52:d5:a2:b7:0c:02:08:24:54:29:e5:2e:91:
30:eb:ca:6a:32:cb:90:d7:2d:25:c3:c8:54:1c:d5:
f3:00:11:81:18:e2:df:d8:e3:c0:a1:3c:0c:06:2d:
af:0c:82:97:f5:d3:cc:8c:d2:79:75:b9:d3:84:d1:
06:c9:5f:a7:92:93:6e:4f:f9:45:04:e1:37:9c:07:
f4:5b:7b:78:fb:32:92:cb:58:c2:92:72:89:60:0f:
c2:29:1e:22:8a:d8:80:f5:f6:b4:4f:cb:7d:27:48:
f6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F9:10:A6:1C:BC:95:EC:B2:0E:AA:DB:7C:09:63:5A:85:24:CA:01
X509v3 Authority Key Identifier:
keyid:A8:01:0C:EB:20:F2:E0:76:A3:F0:00:27:1A:5C:37:57:61:BE:C2:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qAEM6yDy4Haj8AAnGlw3V2G-wvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/FPkQphy8leyyDqrbfAljWoUkygE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f444aa-ae8c-4d14-a3a3-49f65c6a48bf/1/qAEM6yDy4Haj8AAnGlw3V2G-wvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.134.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:13:60:51:a1:99:88:d0:f9:14:a4:4f:d5:5a:50:29:3e:10:
98:2f:71:02:4b:b1:aa:4a:2e:17:4e:f7:01:a8:c5:a7:61:13:
24:f9:73:f9:84:83:21:16:f8:9d:b5:83:b1:93:c6:a5:c2:46:
bc:27:f3:6b:cf:14:bf:42:1b:60:d1:d4:97:06:71:32:4c:95:
02:f5:1f:e6:44:ba:c1:1f:52:dd:ce:8c:cf:7b:4e:b5:3a:a9:
94:2f:7e:0b:a2:39:24:70:56:e4:26:cf:68:22:34:19:ed:bd:
4a:7f:c0:8f:0a:86:60:ff:ec:af:8e:6b:b1:47:9f:0e:37:d4:
f0:d2:97:37:9a:4a:a2:ad:e6:11:b1:c5:3a:d5:ee:3d:82:f8:
92:6c:56:a1:45:fc:61:fb:4f:cf:c1:8f:b2:b8:c1:fd:09:89:
5d:58:0c:52:69:d5:b9:f2:8f:62:21:52:02:f1:8b:fc:e0:ac:
57:7a:67:c6:aa:e0:95:01:e7:70:43:e7:3c:a4:40:50:71:74:
9d:3a:1c:37:60:26:d3:d0:81:bc:30:65:31:72:61:90:8c:b4:
31:e0:8d:0d:ac:0c:38:8d:a6:bc:45:a6:0e:f8:33:bb:3a:de:
7e:dd:fa:67:08:78:a7:31:ee:01:1c:ab:4b:84:5b:ab:65:b2:
29:6c:2f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:35 2023 by rpki-client on console-fra.rpki-client.org