Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PeFvx6NvcBa4nMVRFFD0HBGe0_4.roa
File: PeFvx6NvcBa4nMVRFFD0HBGe0_4.roa (raw, json)
Hash identifier: uajBEpwievAav6Np9LcgBLA5v/J8n21EFaLTG6biBeU=
Subject key identifier: 3D:E1:6F:C7:A3:6F:70:16:B8:9C:C5:51:14:50:F4:1C:11:9E:D3:FE
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 15252C70
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PeFvx6NvcBa4nMVRFFD0HBGe0_4.roa
Signing time: Mon 30 May 2022 11:58:13 +0000
ROA not before: Mon 30 May 2022 11:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 213.173.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354757744 (0x15252c70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 30 11:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3de16fc7a36f7016b89cc5511450f41c119ed3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d0:b2:a3:61:a0:39:a9:0e:03:cd:bd:c3:15:
8c:01:15:d7:91:31:e2:90:ff:a6:e6:5c:51:bf:37:
48:6e:67:bc:77:23:10:fa:0f:0a:09:b5:ef:13:b4:
27:f7:58:b2:99:19:cb:13:50:65:d7:64:71:4e:25:
68:92:0c:03:d1:94:36:55:53:1b:79:38:8e:d6:be:
69:fc:6d:33:94:23:09:bc:fe:6e:d5:30:f9:78:1e:
d5:9e:5e:86:40:8a:da:9d:b1:1f:ac:c7:5f:0b:f7:
29:bf:fd:f7:4c:ac:2a:9f:32:e1:c7:26:b7:be:0d:
8c:8b:51:10:7b:b9:37:45:ee:d8:3f:57:19:a0:51:
fc:04:8f:f4:09:b0:f6:9a:65:07:d4:8c:7e:28:58:
7d:9b:ab:90:31:c3:3e:4c:4c:38:2a:8a:a4:81:ed:
a7:94:a2:9d:6a:9d:4b:5d:24:8d:1b:63:67:5d:aa:
6c:7c:b7:72:b0:4c:cc:95:59:6f:41:9d:58:02:0b:
0a:07:1a:aa:0e:72:67:40:1b:01:06:74:db:83:1c:
0b:64:38:1d:a6:f0:46:5b:f0:09:3a:04:bb:aa:9e:
f3:08:c7:e6:14:e3:68:99:f9:62:26:04:99:25:c9:
ef:7e:de:71:b7:97:e0:ba:39:a1:28:28:73:ef:29:
36:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E1:6F:C7:A3:6F:70:16:B8:9C:C5:51:14:50:F4:1C:11:9E:D3:FE
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/PeFvx6NvcBa4nMVRFFD0HBGe0_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.173.32.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:7b:d7:d0:1d:8e:8f:d9:f0:71:33:dc:66:c8:b9:de:1f:21:
07:d3:f6:c9:1d:12:87:e5:4c:04:73:fd:aa:7e:74:ec:14:68:
88:de:57:d5:6d:10:bc:0c:4b:06:a8:21:70:cd:8a:ef:09:05:
57:93:d5:77:fc:9d:90:98:9b:3d:3c:a9:b7:97:ce:7a:f1:be:
0b:7c:9a:54:ba:c8:cd:63:c7:b3:f1:4d:7e:2a:64:52:63:d1:
2b:85:a9:2f:de:51:15:3b:d9:6b:e2:a2:c9:c1:df:4a:39:a9:
f7:3e:81:3e:c3:31:e3:71:3e:b5:66:b9:0d:fd:58:61:2a:6d:
49:2f:8e:55:29:1a:db:e8:df:34:94:67:b4:08:cd:0c:28:dd:
e7:3e:64:93:8c:c8:f1:62:31:19:f4:82:53:5c:f7:59:e2:a5:
cd:40:13:6f:42:94:05:78:0d:2c:1f:60:da:1c:7a:c2:8f:4c:
b7:4b:67:a1:6d:55:66:ad:04:5d:cc:7e:b4:a5:be:42:f7:eb:
3a:fc:2e:60:41:72:16:54:29:c3:e8:3f:d8:40:71:8e:86:ab:
ec:6e:15:27:2c:e5:27:6f:1d:16:58:8c:9d:62:47:5e:57:53:
07:c3:92:16:19:97:34:b3:0f:be:b7:1d:74:d5:c7:bc:86:9c:
49:7a:9a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org