Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/4Phh_0hyQT8tnt4o6WDiOyITILY.roa
File: 4Phh_0hyQT8tnt4o6WDiOyITILY.roa (raw, json)
Hash identifier: h43UFcNb0KPdmBMS32Yrtbio2igkw5D02cEsecBcR7E=
Subject key identifier: E0:F8:61:FF:48:72:41:3F:2D:9E:DE:28:E9:60:E2:3B:22:13:20:B6
Certificate issuer: /CN=943e3f4856dac2a005c3a52347114dec453934b8
Certificate serial: 3DEF853A
Authority key identifier: 94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/4Phh_0hyQT8tnt4o6WDiOyITILY.roa
Signing time: Sat 01 Jan 2022 06:58:06 +0000
ROA not before: Sat 01 Jan 2022 06:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60633
IP address blocks: 213.3.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1039107386 (0x3def853a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=943e3f4856dac2a005c3a52347114dec453934b8
Validity
Not Before: Jan 1 06:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0f861ff4872413f2d9ede28e960e23b221320b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:99:3b:1d:2c:d2:30:dc:77:a2:64:16:84:6a:
0c:78:6b:35:ce:ee:c9:6e:de:58:ce:30:0d:c8:c3:
91:83:dd:54:5b:f3:54:36:35:7a:72:49:d6:86:d6:
05:61:77:fb:20:da:f2:db:ea:87:1e:8d:3d:0a:23:
0f:f1:07:76:3a:a4:0f:36:84:b0:cf:29:46:8f:3b:
3d:a3:d8:1c:3c:ad:2a:8e:f5:57:08:58:cc:f2:4d:
0f:7a:bd:24:f0:f0:63:cc:ac:2e:e8:c3:e1:f0:c3:
5b:29:9c:81:94:42:39:dd:3f:e0:a0:0f:a9:0f:d2:
e8:3c:35:d4:a0:06:9e:fc:18:b1:ac:cf:fb:f6:5c:
75:dc:93:ee:cb:50:10:ab:c1:5d:c2:c0:df:b6:5f:
73:0d:a5:96:b2:99:e7:ae:cb:70:0a:5b:55:03:00:
d5:ef:b8:c3:04:4c:7f:d4:97:2b:89:39:97:c1:9c:
6c:50:5f:28:51:56:85:35:a0:61:28:de:80:94:ae:
51:ee:3f:65:95:2f:92:33:52:e1:d2:44:12:38:09:
bc:ad:87:59:d7:69:89:7c:62:8c:9a:97:f2:74:83:
d6:4a:01:ea:79:0f:e0:b9:86:17:da:34:af:4b:da:
37:40:a8:85:9e:cd:72:97:63:17:46:bc:7c:5b:a0:
88:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F8:61:FF:48:72:41:3F:2D:9E:DE:28:E9:60:E2:3B:22:13:20:B6
X509v3 Authority Key Identifier:
keyid:94:3E:3F:48:56:DA:C2:A0:05:C3:A5:23:47:11:4D:EC:45:39:34:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lD4_SFbawqAFw6UjRxFN7EU5NLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/4Phh_0hyQT8tnt4o6WDiOyITILY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c1544-7cf2-4871-a1df-0253d04fb8ff/1/lD4_SFbawqAFw6UjRxFN7EU5NLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.3.80.0/21
Signature Algorithm: sha256WithRSAEncryption
01:88:04:28:1f:9c:fd:f7:e5:94:6f:b6:d2:c8:f0:2c:98:f8:
8f:88:a9:73:2b:81:f1:c2:a3:15:9b:71:da:44:c3:ac:1a:1e:
97:20:fd:e5:d8:43:a1:ce:3b:f4:66:57:cf:37:81:12:37:b6:
5e:10:50:d8:70:59:c0:44:1f:71:71:f4:8f:07:f8:8c:6d:c7:
4b:01:c3:ef:e7:d5:e0:fa:fe:c5:66:c2:69:13:4a:95:6d:63:
cd:87:76:7d:9d:dd:9f:ba:ef:ca:35:a2:d0:4d:59:88:c8:b1:
73:88:42:84:c1:fb:a0:8f:48:09:47:f0:b0:c2:a8:b1:fa:0d:
66:fd:27:7c:21:4d:67:22:53:9e:21:08:44:e5:5e:41:a3:5b:
1a:32:0b:43:54:a6:65:7d:5f:98:fe:62:d5:38:11:24:ca:e4:
c0:5b:5a:02:be:60:ce:d3:57:df:49:f6:4f:70:a3:ba:d7:af:
27:d7:3d:e7:63:41:75:14:ac:61:9e:0c:68:f6:67:46:af:2a:
b1:41:c6:48:98:fe:49:81:a4:00:f1:8f:ee:f2:6c:0f:7a:64:
9b:02:8f:5a:95:c8:b2:f1:62:9b:2b:85:aa:4e:fd:f4:22:cc:
6f:13:8b:70:1a:64:6a:06:23:48:db:bf:7b:c6:90:df:99:8a:
90:eb:ed:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:32 2023 by rpki-client on console-fra.rpki-client.org