Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/S3UlZUx1vrFMta5YVgzLCr6_tHs.roa
File: S3UlZUx1vrFMta5YVgzLCr6_tHs.roa (raw, json)
Hash identifier: fXcsbYMIawGo/HHybI0T9ORfZ9RcG2WhTC4qjngp/Ck=
Subject key identifier: 4B:75:25:65:4C:75:BE:B1:4C:B5:AE:58:56:0C:CB:0A:BE:BF:B4:7B
Certificate issuer: /CN=fbf43fe9fd3af2bcf4ba7a83f111e6559125f3fd
Certificate serial: C07203
Authority key identifier: FB:F4:3F:E9:FD:3A:F2:BC:F4:BA:7A:83:F1:11:E6:55:91:25:F3:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_Q_6f068rz0unqD8RHmVZEl8_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/S3UlZUx1vrFMta5YVgzLCr6_tHs.roa
Signing time: Wed 22 Jun 2022 14:22:32 +0000
ROA not before: Wed 22 Jun 2022 14:22:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44439
IP address blocks: 213.109.150.0/24 maxlen: 24
2a12:fdc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12612099 (0xc07203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf43fe9fd3af2bcf4ba7a83f111e6559125f3fd
Validity
Not Before: Jun 22 14:22:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b7525654c75beb14cb5ae58560ccb0abebfb47b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:73:b7:fe:76:05:d7:d3:c4:0c:bb:78:da:ec:
3b:a8:9c:da:b7:ae:69:f6:99:c7:de:98:13:42:08:
9d:f4:e1:b1:01:68:cf:df:d0:14:5e:74:cd:3d:12:
d3:a5:33:b4:aa:c0:f2:45:fa:5e:36:12:05:15:bd:
98:c1:8b:b5:78:26:44:57:6b:d8:c7:77:36:3a:d7:
92:72:9d:fc:66:2a:90:25:50:10:ed:49:25:16:ab:
f6:71:97:39:98:cc:ff:64:bf:42:66:35:dd:c9:da:
4f:0e:f4:a7:50:81:b2:ed:f1:3f:c5:de:8b:cf:62:
75:ec:2f:af:92:ac:66:4e:20:62:7b:d9:fb:6c:a8:
41:aa:06:a8:ec:22:e6:b7:b4:91:85:3e:1a:e1:c8:
02:3f:22:b2:79:2b:00:f7:5f:de:45:ff:56:3b:95:
52:f1:e4:02:00:fc:c6:f8:33:20:f5:53:f7:b5:bb:
f2:4e:3d:9d:14:6a:e3:ca:c9:ed:9c:f8:45:ca:8a:
d5:2d:2e:0f:40:98:f3:8e:e4:a4:b5:9c:81:fe:a3:
9c:c2:59:66:05:20:08:b3:db:11:cf:22:f7:f0:16:
42:a6:54:7d:31:59:d6:c4:b4:1d:1c:6f:a0:56:57:
e5:90:79:4b:03:b8:ae:79:6c:6c:03:4a:25:f1:4b:
ad:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:75:25:65:4C:75:BE:B1:4C:B5:AE:58:56:0C:CB:0A:BE:BF:B4:7B
X509v3 Authority Key Identifier:
keyid:FB:F4:3F:E9:FD:3A:F2:BC:F4:BA:7A:83:F1:11:E6:55:91:25:F3:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_Q_6f068rz0unqD8RHmVZEl8_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/S3UlZUx1vrFMta5YVgzLCr6_tHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/1-_Q_6f068rz0unqD8RHmVZEl8_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.150.0/24
IPv6:
2a12:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
6a:00:63:8a:61:26:f4:80:2e:1d:69:21:f4:81:bb:8d:14:a8:
ed:86:f3:7f:53:3b:2b:e7:c2:eb:e8:db:10:7a:ff:15:7e:f2:
d2:70:83:03:71:4f:e9:14:37:6a:be:ac:28:a0:98:c4:c7:b5:
4d:67:68:19:03:cb:c3:a2:9c:6f:8a:3f:11:35:53:70:f6:e2:
f6:b4:9f:6c:2a:f9:79:bb:25:1c:80:6b:f7:59:5d:9b:0c:21:
4f:d5:00:ac:bc:36:12:0a:af:d8:f6:75:79:0b:44:41:62:61:
6d:95:a5:c4:74:7b:75:46:53:a2:3c:30:8d:ef:ef:d0:c5:dc:
e9:ea:73:3a:a1:44:69:b3:83:26:37:db:a5:42:99:38:4c:cb:
03:97:6d:be:5a:c8:b8:34:c3:51:26:e9:d1:4d:16:b5:8e:0b:
74:a6:bb:f5:34:91:36:85:09:8a:08:81:2b:35:3c:34:45:0e:
6a:dd:38:16:07:be:d4:9c:d7:5f:f9:da:e1:83:48:b4:4c:64:
ad:93:22:32:fe:3f:70:c2:6b:01:03:fd:cd:20:e0:13:99:53:
f7:5a:e8:b2:3c:3b:40:ad:2b:93:c9:7e:cd:64:8a:ec:04:0e:
22:8a:c6:98:d6:6d:77:79:4b:ec:0f:41:aa:c0:92:cb:91:13:
e3:30:b0:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:05 2023 by rpki-client on console-fra.rpki-client.org