Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/t5WUUf0caWXISLIARxtsO1lCtJI.roa
File: t5WUUf0caWXISLIARxtsO1lCtJI.roa (raw, json)
Hash identifier: ojL8fZgGmttuqgZt0x5zLa9FWcN5+72V7NOypyqsoA8=
Subject key identifier: B7:95:94:51:FD:1C:69:65:C8:48:B2:00:47:1B:6C:3B:59:42:B4:92
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10B736CD
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/t5WUUf0caWXISLIARxtsO1lCtJI.roa
Signing time: Sat 01 Jan 2022 13:02:16 +0000
ROA not before: Sat 01 Jan 2022 13:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25070
IP address blocks: 213.199.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280442573 (0x10b736cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7959451fd1c6965c848b200471b6c3b5942b492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:77:ee:32:0b:3a:36:bb:d7:9c:10:0a:14:72:
a8:d5:63:13:ce:48:92:6d:9c:9a:39:eb:c8:8d:8a:
28:45:fd:be:a6:a1:b9:87:91:6e:fc:1d:04:64:6f:
63:88:cb:a4:b7:c4:c3:ed:94:f7:57:9d:ca:b5:6a:
e1:52:f9:c8:17:31:10:02:ca:83:f5:15:5a:b1:5d:
76:f3:b7:7e:d6:8f:dc:4f:c4:d6:19:f3:cf:fa:a8:
4f:3f:3b:a1:76:e7:a9:70:79:a7:8c:e9:77:1e:e1:
ea:50:06:04:68:bc:f3:03:b1:e6:e8:c2:3f:d3:fc:
d7:f5:85:c1:7e:69:a6:14:17:85:45:74:67:f8:fb:
c7:0f:8d:2f:b9:51:2a:56:0d:db:20:32:56:f4:31:
6f:5d:d9:4a:3b:b2:02:b5:7d:3d:7d:76:54:13:01:
04:73:d5:f9:19:78:83:39:8d:ec:0a:69:c0:2a:84:
f3:4e:ec:45:6f:ae:3d:b5:b5:74:95:d6:9b:4e:1a:
d0:e8:da:0a:9f:d5:5b:1d:de:dd:91:f8:82:a3:25:
d1:70:f8:12:cd:0b:5f:2e:68:90:87:a3:64:c5:c1:
fc:54:de:ed:30:04:94:10:9b:86:95:fd:29:ce:4a:
c6:be:46:2a:f5:f4:20:1c:82:97:6a:f6:0f:80:5d:
90:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:95:94:51:FD:1C:69:65:C8:48:B2:00:47:1B:6C:3B:59:42:B4:92
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/t5WUUf0caWXISLIARxtsO1lCtJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.199.213.0/24
Signature Algorithm: sha256WithRSAEncryption
34:77:13:17:9a:1e:68:91:86:07:8f:92:14:45:c3:f2:f4:77:
7c:07:9b:59:ab:93:e4:a7:bb:36:ff:69:79:a9:28:78:1c:4b:
ab:a3:75:a3:fd:47:a0:32:92:5e:65:91:3c:63:89:d3:da:15:
d4:fe:f6:38:0f:9b:95:7a:68:85:6b:36:bb:58:4e:0a:93:8a:
66:44:a1:95:e3:f0:0a:6f:3e:5b:fd:7d:ea:2e:6b:69:8c:ba:
fb:2e:4d:0f:64:4e:f5:79:d8:86:29:48:d5:98:f7:93:74:e3:
11:16:e0:dc:9e:f8:5c:48:09:8e:31:a3:8f:41:69:bd:7b:e9:
79:cd:e9:02:9b:f6:e2:e9:df:7b:4d:92:3c:9f:bf:ec:9b:48:
34:d3:a9:95:26:38:a1:f1:e1:22:75:14:9c:15:d9:8e:ec:0f:
07:37:03:bf:9a:7d:7d:ca:25:a3:84:e8:e9:78:75:fd:af:4f:
e7:a1:e0:50:32:d9:e5:cf:7c:b1:2c:57:a4:d9:13:fa:49:a9:
77:6d:59:80:5d:fc:67:19:f8:fb:18:ba:87:45:df:9f:c3:ff:
3d:b4:0d:69:17:38:35:77:76:c8:12:92:10:54:87:e1:ab:ab:
17:4a:e3:70:a3:4a:2e:9b:a5:ce:02:f5:fe:e4:72:af:92:f5:
a4:4e:69:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:52 2025 by rpki-client