Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/mLjqDJ_jTIKsySngMYVKRmEoRwc.roa
File: mLjqDJ_jTIKsySngMYVKRmEoRwc.roa (raw, json)
Hash identifier: XY3glPT+d/Zt5ZF3Pr/LKnmTjUcF2VvEoLdxgRNT6RU=
Subject key identifier: 98:B8:EA:0C:9F:E3:4C:82:AC:C9:29:E0:31:85:4A:46:61:28:47:07
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10C67A28
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/mLjqDJ_jTIKsySngMYVKRmEoRwc.roa
Signing time: Sat 01 Jan 2022 13:02:23 +0000
ROA not before: Sat 01 Jan 2022 13:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204019
IP address blocks: 213.199.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281442856 (0x10c67a28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98b8ea0c9fe34c82acc929e031854a4661284707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:35:b9:61:7a:23:1d:4e:ca:1a:25:61:64:f0:
b2:01:12:11:28:90:78:59:1c:51:be:c7:f9:a2:38:
85:21:e7:23:76:df:8b:a2:b1:d2:1c:82:12:b4:12:
6c:49:8a:15:2b:47:63:9a:0e:e4:b3:9a:7d:2b:b9:
fa:49:66:64:f5:1f:2f:c4:60:66:61:71:e3:b5:8c:
31:3d:41:1e:2a:b9:d5:05:35:4a:17:93:b5:1a:1a:
d7:c4:91:70:c2:7d:69:c5:d8:84:df:2b:ce:5b:34:
50:97:08:19:00:7a:5b:ab:35:60:35:42:d2:01:f1:
04:8c:af:72:c5:6c:40:91:20:e9:7f:ef:a3:18:20:
6d:c4:38:15:29:3a:a8:02:3b:43:e8:94:f3:29:70:
65:30:89:0a:a2:00:40:06:6c:77:8e:06:22:96:e4:
9f:d8:c6:64:70:c2:07:e0:19:ad:7a:a3:75:aa:66:
ae:2c:cf:3e:36:94:4e:8e:ac:1d:dc:65:18:c3:af:
9e:4f:b3:45:a5:5d:87:6d:3a:aa:40:a5:7b:a0:1d:
4b:fe:c5:2c:36:d4:80:b2:9d:0c:35:7c:57:14:14:
79:d2:20:3c:94:3b:bf:85:26:04:a6:a2:81:7d:7e:
f0:3e:63:3e:3a:4a:12:12:17:0d:f0:0f:b9:99:35:
b8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B8:EA:0C:9F:E3:4C:82:AC:C9:29:E0:31:85:4A:46:61:28:47:07
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/mLjqDJ_jTIKsySngMYVKRmEoRwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.199.208.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b2:c6:ed:52:10:a2:fb:e1:4f:d9:e7:e8:3a:6c:b4:45:d9:
87:10:56:86:f5:21:5d:bb:9f:96:38:7d:33:93:8a:89:5f:68:
99:e2:66:65:48:96:43:26:69:80:d3:bd:dc:f0:86:f3:07:4b:
24:8e:b7:8f:38:b6:15:f7:fe:6c:0f:26:a1:97:0a:e2:39:f7:
b3:22:f8:86:d4:06:e4:60:d8:3c:7b:42:61:7a:87:37:66:12:
8d:34:70:04:c9:20:f7:ce:2c:14:f0:84:e2:13:f1:79:da:0c:
19:87:19:b5:f6:f5:b2:0b:ba:b0:ef:37:7c:94:18:2d:04:78:
2e:70:16:1e:09:0d:29:0b:8a:44:07:d3:ed:ad:8f:29:48:2a:
38:2f:96:fd:c2:0c:c1:0f:45:77:d9:d6:bb:57:81:dd:d2:eb:
64:63:2f:b6:1a:8e:fd:ad:82:64:81:64:2e:7d:80:5e:a9:cc:
91:07:c2:71:19:7a:b5:a4:b8:0e:42:a5:06:47:1e:67:ba:85:
1e:1f:7a:67:05:61:ed:46:d2:81:d6:ca:d0:d1:4b:85:12:cf:
1c:6e:67:11:ba:94:5a:99:9b:9d:62:3f:04:b3:64:4b:46:b3:
36:36:bc:c8:5b:4e:d6:61:65:b3:cc:d5:98:ce:0e:11:83:2f:
df:cc:c6:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:15 2024 by rpki-client on console-fra.rpki-client.org