Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/CMvSgxelgU_JlQBDg5AFT4oU_0s.roa
File: CMvSgxelgU_JlQBDg5AFT4oU_0s.roa (raw, json)
Hash identifier: 5CGG+YmKrJ+aARXtzqYuTMJ9kQh83Cn4LCwam3kszSM=
Subject key identifier: 08:CB:D2:83:17:A5:81:4F:C9:95:00:43:83:90:05:4F:8A:14:FF:4B
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 0882B925
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/CMvSgxelgU_JlQBDg5AFT4oU_0s.roa
Signing time: Sat 01 Jan 2022 03:50:52 +0000
ROA not before: Sat 01 Jan 2022 03:50:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16142
IP address blocks: 213.215.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142784805 (0x882b925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08cbd28317a5814fc99500438390054f8a14ff4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:c2:b0:b4:a0:b4:70:4e:f0:2e:a7:ff:b6:
63:3b:e8:85:f2:08:83:fa:b2:25:d9:3c:d0:d5:80:
bb:9f:02:84:f7:d6:2a:d2:23:50:38:56:78:e6:24:
b3:65:4a:85:93:08:41:62:b5:89:6a:a7:54:45:59:
b7:9a:d7:e9:3e:2f:16:ff:bf:80:8b:6c:02:e4:73:
83:4a:7d:4d:41:90:c2:24:bf:56:55:74:b2:d1:b3:
9e:af:a7:65:23:d7:8f:32:b1:29:67:eb:26:d1:a7:
2a:78:37:fd:70:fa:64:1a:18:20:7a:7d:17:f1:69:
bc:a4:68:2a:9e:ca:1c:08:02:c7:9d:bd:fe:5a:a7:
e8:e7:29:69:90:3c:6a:a2:b6:03:54:51:2c:bf:14:
03:db:8f:f2:5b:24:02:42:45:a8:3c:9f:e9:a9:cf:
3f:64:4b:ca:45:21:5f:32:90:a2:1f:05:d7:bb:50:
1e:b3:4e:06:34:de:11:da:17:9e:26:63:56:cf:b4:
e6:bb:d8:4a:43:2a:1e:68:63:6f:de:9d:69:5f:9f:
4a:02:03:10:20:00:cd:1b:c7:2a:cb:fd:c5:db:e3:
c5:ca:61:eb:f7:cc:a8:8d:9d:63:df:6c:ce:ed:e9:
0d:af:f5:fe:48:40:c4:6f:31:d3:ce:99:22:15:75:
c6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CB:D2:83:17:A5:81:4F:C9:95:00:43:83:90:05:4F:8A:14:FF:4B
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/CMvSgxelgU_JlQBDg5AFT4oU_0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.215.65.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:79:9d:8c:f3:15:e2:03:29:22:8d:3b:5c:da:11:4f:b8:d6:
e9:16:9e:40:ff:64:c9:b6:6a:6c:7d:9f:b5:c2:e9:4d:c8:65:
38:f9:fb:b5:50:38:33:d4:83:f0:5e:77:a7:16:4a:33:6e:bb:
53:e4:c6:5e:61:b4:47:66:f9:fd:b1:53:dd:3f:a1:06:fe:66:
82:b9:4b:4d:4a:c1:b4:5c:66:53:d9:97:d5:1a:61:40:2a:d7:
1d:50:ce:20:c6:12:9c:3c:60:84:4f:d4:d7:4e:94:8f:eb:4b:
78:b2:0f:8b:13:52:9c:44:d0:fb:9a:0f:69:2c:dd:78:1e:49:
cc:a2:d6:4f:c5:74:39:17:66:9a:10:9d:0f:00:f6:b0:72:5c:
96:1a:06:42:3f:6f:8c:ba:07:a3:e7:bd:35:34:f2:85:68:e5:
3b:70:cb:65:8e:90:9f:d9:df:9c:17:9f:2e:d9:94:cf:d3:73:
e4:cd:bb:d3:a4:03:14:db:6e:72:c1:b3:aa:ae:66:fe:a1:39:
46:7d:95:23:87:bd:20:c0:2f:23:ce:34:8f:ed:61:81:96:28:
d9:43:d8:97:0b:58:8c:25:9c:60:7c:bc:f1:0c:9f:be:a1:18:
89:b5:8c:ac:41:1b:93:ef:4d:05:8c:50:85:e2:6f:35:23:0e:
4c:85:c9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:23 2023 by rpki-client on console-fra.rpki-client.org