Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rfs83OEtckCeEiKL3p0Ab_9z07w.roa
File: rfs83OEtckCeEiKL3p0Ab_9z07w.roa (raw, json)
Hash identifier: VxAbTwiW8rMlenHzlOzr7E10LerC7/MTS9bGQJ/uWuo=
Subject key identifier: AD:FB:3C:DC:E1:2D:72:40:9E:12:22:8B:DE:9D:00:6F:FF:73:D3:BC
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0183F3BF710C0ACFB607C5FB49276E2BFB13
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rfs83OEtckCeEiKL3p0Ab_9z07w.roa
Signing time: Thu 20 Oct 2022 04:55:53 +0000
ROA not before: Thu 20 Oct 2022 04:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 188.253.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f3:bf:71:0c:0a:cf:b6:07:c5:fb:49:27:6e:2b:fb:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Oct 20 04:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adfb3cdce12d72409e12228bde9d006fff73d3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8e:17:cd:7e:70:6b:7c:89:dc:3b:54:8f:9a:
a7:05:e5:d1:3d:6e:98:1e:f6:99:24:dc:62:28:d5:
dd:d8:c7:f6:79:67:93:95:b7:59:8d:2a:39:06:bb:
b1:a6:75:9e:9d:29:da:09:2b:bb:75:70:9b:56:52:
ba:dc:3a:9e:c9:0d:84:0d:c3:31:7b:88:27:80:a6:
1a:77:1c:a1:b2:ee:79:44:a4:dd:a9:5e:f5:30:36:
ed:20:14:94:1b:b2:b6:d2:73:bc:db:b4:33:86:27:
21:4f:39:70:8e:e9:44:08:86:7e:89:19:46:9a:75:
d2:26:18:aa:ee:14:39:65:27:29:cc:54:3c:55:b1:
39:13:8d:66:ec:42:b2:da:68:62:a1:29:38:c0:85:
95:99:c0:cb:16:8c:a9:05:7b:81:5f:5a:7f:99:48:
16:46:24:01:d9:35:e2:49:10:bb:87:4c:cb:e7:1c:
bd:de:17:9f:bb:83:eb:34:8f:93:1f:48:0d:db:11:
84:93:96:e3:1f:84:5c:3a:db:62:59:2e:a5:11:75:
49:f9:00:3f:5e:34:85:91:4a:df:aa:3f:57:cf:52:
46:4c:f9:52:b1:ff:f0:ee:8c:c9:bc:8c:be:38:12:
ca:17:2a:03:9a:be:69:79:40:c7:db:d2:27:53:ef:
51:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:FB:3C:DC:E1:2D:72:40:9E:12:22:8B:DE:9D:00:6F:FF:73:D3:BC
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rfs83OEtckCeEiKL3p0Ab_9z07w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.253.16.0/20
Signature Algorithm: sha256WithRSAEncryption
d5:1d:9c:7d:1b:ea:a8:1b:1b:4f:c7:3d:95:1d:79:46:be:1b:
cc:ee:54:a8:a1:c2:27:ae:ee:6c:f3:c0:21:8a:74:fb:3d:e0:
66:3d:6b:1e:ac:2f:a2:2f:e3:b2:24:ad:51:f8:4f:73:30:c4:
52:bf:0c:fb:35:00:cc:0f:c8:8c:6e:88:ae:6f:95:19:86:32:
55:8a:09:2a:91:65:f6:e7:1a:3b:e0:95:e2:87:c2:b0:7b:d9:
5b:26:52:c9:aa:6c:ab:aa:0a:58:fe:1f:7e:46:22:12:be:84:
72:7d:c4:c5:c6:16:8b:6c:e3:29:5c:fd:ea:fa:bc:8d:60:6b:
5b:63:c3:86:de:31:49:55:4b:f0:6f:c6:cb:88:e9:7b:67:6b:
7e:56:b3:79:d0:ac:74:ce:fa:ec:47:bc:d7:0f:90:25:02:50:
0e:32:eb:cf:85:16:61:41:de:d4:9b:0e:ef:16:90:2f:05:97:
02:36:d6:eb:da:e9:60:33:37:c7:91:bf:9e:a5:5b:1c:24:9b:
7c:cf:d0:9d:95:d8:10:ef:ef:65:46:11:77:e6:b7:32:cb:17:
a2:2c:c9:ea:d0:b7:b4:77:00:5f:6e:08:be:31:1d:87:dc:ea:
69:7b:0b:33:9a:8c:28:2c:dd:ec:06:fa:a0:47:15:27:5b:b4:
1a:1a:43:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:25 2023 by rpki-client on console-ams.rpki-client.org