Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/68e857-e2e9-42d5-864e-cc7ad16d1b0c/1/DLNCv2h5Eb6GSKnAMCGI_FiDZh8.roa
File: DLNCv2h5Eb6GSKnAMCGI_FiDZh8.roa (raw, json)
Hash identifier: t1oF0aOSFhZH7t/8pypu8psgXARXJvZpXhmqEYiXKMg=
Subject key identifier: 0C:B3:42:BF:68:79:11:BE:86:48:A9:C0:30:21:88:FC:58:83:66:1F
Certificate issuer: /CN=d39696a7680e955291feafa1efba9fbcff2f888b
Certificate serial: 02239911
Authority key identifier: D3:96:96:A7:68:0E:95:52:91:FE:AF:A1:EF:BA:9F:BC:FF:2F:88:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/05aWp2gOlVKR_q-h77qfvP8viIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/68e857-e2e9-42d5-864e-cc7ad16d1b0c/1/DLNCv2h5Eb6GSKnAMCGI_FiDZh8.roa
Signing time: Sat 01 Jan 2022 15:00:21 +0000
ROA not before: Sat 01 Jan 2022 15:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 702
IP address blocks: 213.208.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35887377 (0x2239911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d39696a7680e955291feafa1efba9fbcff2f888b
Validity
Not Before: Jan 1 15:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cb342bf687911be8648a9c0302188fc5883661f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d1:b6:4f:37:c4:c0:16:51:82:51:aa:11:ad:
0a:91:49:f6:98:92:fc:8e:9f:0d:c7:80:3e:e3:e4:
ae:6f:f8:b4:58:75:ee:e1:a8:9a:f3:d6:fb:21:24:
f3:92:3b:8e:88:51:0a:25:89:b9:c7:42:2a:72:bf:
8a:e3:f3:c7:31:2a:8b:cd:bb:84:e2:a5:fd:8a:bf:
d8:43:d7:ec:f3:30:f7:a9:c1:9e:72:cd:db:b3:bb:
3b:f9:4a:ed:a6:a3:1b:db:60:56:07:57:7c:2d:a3:
0a:f5:e6:fa:d4:31:57:ac:e3:66:28:59:ac:b7:bb:
18:e4:6d:11:c3:14:91:13:51:43:0a:ae:b9:05:76:
d2:05:be:59:23:03:a9:6a:4e:29:6c:cb:47:a0:56:
22:28:c6:f0:1b:c4:15:b1:45:60:1f:97:16:dd:c9:
64:66:79:6e:c4:3c:b6:70:3b:59:3d:0c:2c:66:61:
15:2c:1e:4a:8d:bd:ac:52:63:4d:ad:15:45:1b:2d:
12:4d:2f:43:77:2b:c7:90:65:d6:e2:1d:e6:68:63:
b9:5b:26:d8:36:91:dd:9b:20:2f:8a:21:17:36:3e:
8b:1e:de:0f:11:40:be:58:75:95:ae:1d:7b:16:c6:
ce:61:02:13:ce:c7:b6:ad:37:fc:92:6a:ad:b3:b5:
94:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B3:42:BF:68:79:11:BE:86:48:A9:C0:30:21:88:FC:58:83:66:1F
X509v3 Authority Key Identifier:
keyid:D3:96:96:A7:68:0E:95:52:91:FE:AF:A1:EF:BA:9F:BC:FF:2F:88:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/05aWp2gOlVKR_q-h77qfvP8viIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/68e857-e2e9-42d5-864e-cc7ad16d1b0c/1/DLNCv2h5Eb6GSKnAMCGI_FiDZh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/68e857-e2e9-42d5-864e-cc7ad16d1b0c/1/05aWp2gOlVKR_q-h77qfvP8viIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.208.0.0/19
Signature Algorithm: sha256WithRSAEncryption
63:82:a0:2a:b0:00:65:a8:03:6a:9e:81:aa:d8:9d:83:0e:dc:
4e:dc:f2:9c:30:63:f4:43:0d:86:af:26:f5:79:a5:1f:3d:d9:
29:4b:e1:10:84:69:ff:c8:4e:33:6a:56:87:93:66:b7:8c:89:
36:2f:a3:25:94:70:61:cb:a5:81:e8:09:29:87:f6:cc:f2:18:
fa:c4:cb:11:b4:16:b7:12:d9:04:9f:0d:83:e6:88:e3:5f:32:
72:53:ea:98:61:e9:32:b1:36:4d:09:bd:98:3e:b2:63:f1:59:
6f:44:35:f6:ec:09:bd:1e:25:16:f5:fc:0b:a7:44:37:98:7d:
38:01:cf:67:e7:1a:e7:14:b1:a4:24:9a:08:bf:b3:d5:b9:f0:
6e:12:6d:95:a4:61:8c:78:3c:57:8a:31:4b:85:77:a8:36:5f:
1d:4d:07:30:89:3a:f0:aa:13:70:5d:de:0a:2e:50:82:08:0f:
24:dd:92:16:24:f6:3a:0e:2c:e7:b7:18:5f:95:d1:27:84:79:
72:fa:03:81:6e:2d:4f:38:f6:e2:2c:ba:60:01:ed:10:c8:b5:
24:4d:5a:e1:86:01:30:87:3d:81:5c:03:b1:9e:ac:9d:b9:14:
41:13:29:e8:56:42:d8:49:09:9c:8f:12:d6:50:3c:64:9f:05:
1c:88:23:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:01 2023 by rpki-client on console-fra.rpki-client.org