Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/ErqU10cRgHYmgugWhwD_vttzUCc.roa
File: ErqU10cRgHYmgugWhwD_vttzUCc.roa (raw, json)
Hash identifier: L6Mmgay5AEzNiX0W9meiyyKftCoJNHTXcsbSYhPsbbc=
Subject key identifier: 12:BA:94:D7:47:11:80:76:26:82:E8:16:87:00:FF:BE:DB:73:50:27
Certificate issuer: /CN=fbf43fe9fd3af2bcf4ba7a83f111e6559125f3fd
Certificate serial: C14E12
Authority key identifier: FB:F4:3F:E9:FD:3A:F2:BC:F4:BA:7A:83:F1:11:E6:55:91:25:F3:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_Q_6f068rz0unqD8RHmVZEl8_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/ErqU10cRgHYmgugWhwD_vttzUCc.roa
Signing time: Wed 22 Jun 2022 14:24:32 +0000
ROA not before: Wed 22 Jun 2022 14:24:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43366
IP address blocks: 213.109.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12668434 (0xc14e12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf43fe9fd3af2bcf4ba7a83f111e6559125f3fd
Validity
Not Before: Jun 22 14:24:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12ba94d7471180762682e8168700ffbedb735027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:65:49:4b:4c:11:85:d7:58:a2:2a:5d:4d:7e:
20:33:7d:b1:d9:41:9b:ca:1d:63:1c:cd:b5:b1:15:
c5:55:56:f6:8f:5d:f1:14:12:c5:22:81:47:43:bd:
dc:af:60:52:5c:24:8f:cb:0c:67:1c:c5:e3:11:31:
a0:69:0e:50:7c:48:73:5b:82:fc:c3:86:e7:d4:81:
ef:89:b0:3f:24:29:c2:57:70:ea:c6:47:63:3d:7e:
fb:ae:6d:bd:6d:01:ec:54:6b:a3:96:25:19:6d:f6:
48:aa:61:46:e6:83:49:4f:7e:96:5d:6f:f1:ac:af:
f2:04:b5:f1:34:fc:ed:3c:93:ca:0a:ca:95:e5:f7:
5d:dc:78:a1:05:84:7d:9e:83:c3:5b:29:39:8a:0f:
17:aa:df:1d:2f:d7:08:9e:fd:16:df:ce:45:01:91:
c5:d9:c0:3e:10:73:92:1e:e5:00:c1:63:ab:44:54:
c6:26:f7:39:00:7e:ac:43:3d:78:eb:f0:5e:29:97:
01:39:29:7d:4f:62:85:46:75:20:d6:ed:81:d5:ad:
b3:57:9c:1d:4e:0b:68:61:cd:4e:b9:98:d2:4e:43:
b1:05:5d:e4:2c:79:ae:92:ad:36:c0:b5:3a:da:6d:
12:ef:2d:da:51:ce:bf:0a:10:89:da:e9:e7:1c:58:
79:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BA:94:D7:47:11:80:76:26:82:E8:16:87:00:FF:BE:DB:73:50:27
X509v3 Authority Key Identifier:
keyid:FB:F4:3F:E9:FD:3A:F2:BC:F4:BA:7A:83:F1:11:E6:55:91:25:F3:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_Q_6f068rz0unqD8RHmVZEl8_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/ErqU10cRgHYmgugWhwD_vttzUCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/1-_Q_6f068rz0unqD8RHmVZEl8_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.150.0/24
Signature Algorithm: sha256WithRSAEncryption
86:90:65:97:4a:f3:bd:40:82:c8:c3:d5:ef:38:96:16:60:8c:
04:d1:d8:15:4b:ac:4a:88:4a:7f:dd:9e:3e:87:8f:81:13:c1:
fe:c1:21:15:d0:d5:99:58:24:d6:d2:09:9e:bd:53:c9:ae:ec:
fb:da:43:a2:33:98:50:12:38:f0:dd:72:e0:f5:2e:aa:f8:66:
a8:dc:ea:b0:d4:b7:3e:c8:ed:3b:b8:ee:3b:9b:df:fe:b4:2f:
2e:ed:5d:5e:37:61:35:46:9f:09:5f:03:2b:5f:a9:c4:26:8f:
1f:1c:d6:7c:cf:8a:41:ab:8b:0b:e3:06:d6:a7:a0:b9:03:c2:
d5:bd:40:b2:f6:c9:55:71:da:f6:63:0a:e5:37:6c:4c:2f:8b:
9e:f0:fb:94:74:7e:71:fe:bc:4e:18:ef:b1:b8:93:2c:0c:15:
cc:35:69:b9:3d:ec:88:19:1b:f2:78:94:45:70:eb:e9:c5:52:
f4:de:89:a8:c0:ca:f2:9f:38:c7:57:f5:24:ce:9f:bc:78:38:
ed:d8:19:44:fe:e0:80:6a:74:45:53:6a:cf:4c:5e:03:8a:00:
fc:9a:fd:cc:5a:bf:ef:27:fe:a9:cd:bd:71:1b:4f:60:bc:eb:
ad:a7:3a:c8:95:ec:72:18:96:33:a2:4a:80:1b:0b:cf:cc:47:
42:5d:c7:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:05 2023 by rpki-client on console-fra.rpki-client.org