Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/KPRuPU2LPseRVLUE_FFjhDC-sy4.roa
File: KPRuPU2LPseRVLUE_FFjhDC-sy4.roa (raw, json)
Hash identifier: QfUXguUv/XQtpyUiXqkOMF2u9v4Zt5oxSYPJzNLY/wI=
Subject key identifier: 28:F4:6E:3D:4D:8B:3E:C7:91:54:B5:04:FC:51:63:84:30:BE:B3:2E
Certificate issuer: /CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Certificate serial: 0806CA1E
Authority key identifier: F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/KPRuPU2LPseRVLUE_FFjhDC-sy4.roa
Signing time: Sat 01 Jan 2022 11:54:13 +0000
ROA not before: Sat 01 Jan 2022 11:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16125
IP address blocks: 213.252.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134662686 (0x806ca1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0dd81a833d9b043c7ffd635a5987f536971180d
Validity
Not Before: Jan 1 11:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28f46e3d4d8b3ec79154b504fc51638430beb32e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5d:10:c0:5d:cc:6b:30:46:23:94:9c:48:79:
ae:12:ee:0f:b7:f6:73:a5:88:e1:5d:f2:27:b4:92:
3c:c1:16:49:8f:92:11:a9:2f:4c:d5:81:e1:cf:4d:
83:d1:87:5f:89:52:87:3c:55:3e:3f:61:ad:08:30:
ee:1c:02:52:58:16:23:42:fa:8e:71:09:da:43:22:
17:04:6e:a6:61:a4:33:a1:ab:8c:6d:9e:05:7d:58:
db:bc:ff:6e:54:cc:fb:ae:47:95:5b:39:41:96:cb:
31:47:73:bb:69:84:06:62:a9:eb:ed:f5:ae:dc:bc:
18:8d:42:bd:c1:3e:13:04:e3:c7:d8:a3:ad:86:04:
1f:65:93:a4:24:b3:d1:b4:36:0a:07:0e:04:fe:84:
fb:06:f0:90:99:6f:7b:ca:d9:68:0d:95:b4:6d:7f:
47:12:d9:a1:79:a0:50:4a:ff:e3:7f:77:57:de:d5:
7d:e2:22:24:5b:36:d9:25:fd:ce:fc:00:c6:7c:9f:
c6:63:05:a4:9a:5c:93:d2:e7:f6:c0:7e:1e:8f:d3:
60:23:c2:3a:fb:f2:a3:d1:93:06:91:39:a3:12:9e:
ea:69:ef:0c:51:a2:9c:7b:c3:b6:f5:9e:2a:60:2c:
66:6c:14:67:6a:b1:2b:dd:4b:6e:69:b4:07:ad:b7:
8c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F4:6E:3D:4D:8B:3E:C7:91:54:B5:04:FC:51:63:84:30:BE:B3:2E
X509v3 Authority Key Identifier:
keyid:F0:DD:81:A8:33:D9:B0:43:C7:FF:D6:35:A5:98:7F:53:69:71:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/KPRuPU2LPseRVLUE_FFjhDC-sy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/a8ebe4-d0b3-4e7d-af25-0468042486dc/1/8N2BqDPZsEPH_9Y1pZh_U2lxGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.252.248.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:48:c3:1d:49:36:55:94:a9:db:c0:fa:38:78:43:03:ef:e6:
2c:d4:08:76:5c:59:d4:99:b0:5c:5c:73:1a:8d:d9:f6:51:58:
0a:e5:7f:e7:c1:ba:0e:fb:bf:a8:85:93:50:6d:c3:c4:a2:a4:
d4:b6:e5:2c:ca:f7:8b:43:2b:a1:82:c6:f2:ee:cb:a3:5a:cb:
a9:b3:81:c0:a0:cd:5b:37:c2:1a:1d:da:08:5a:35:68:2f:ee:
35:26:0f:63:b2:ea:40:7c:03:f0:85:9d:85:74:db:77:f1:d2:
c6:d4:25:0f:4a:34:dd:82:d4:38:a7:34:1d:45:42:88:a8:87:
36:f6:ed:3c:e0:e5:e7:b4:c0:e2:a8:c9:ec:16:fe:04:47:de:
09:fc:7b:fb:30:bc:38:33:a8:9c:22:ca:c2:7e:10:56:bb:83:
10:8f:92:38:c2:48:0a:7d:7b:68:51:7e:c5:19:a6:4d:82:83:
5c:f9:ca:b9:21:a0:80:e9:e7:b4:a3:47:77:ac:93:d8:cf:20:
50:1c:9a:fe:f5:f9:30:f4:ec:93:a0:c0:7d:59:8f:e4:ba:ae:
58:20:e5:0f:01:65:32:e9:d5:b0:4c:87:71:c4:9e:8a:09:80:
e0:7d:37:87:36:22:6b:fa:81:af:8b:7a:fd:15:24:fc:ec:27:
38:8a:50:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:06 2023 by rpki-client on console-ams.rpki-client.org