Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/ejcLqOJCDgXCett2-JtlYqaHeew.roa
File: ejcLqOJCDgXCett2-JtlYqaHeew.roa (raw, json)
Hash identifier: T0jzkVFMX5RqCDcg3+Xo0vHG1NqvqRO6yQ7JPFMDXIA=
Subject key identifier: 7A:37:0B:A8:E2:42:0E:05:C2:7A:DB:76:F8:9B:65:62:A6:87:79:EC
Certificate issuer: /CN=fbf43fe9fd3af2bcf4ba7a83f111e6559125f3fd
Certificate serial: 5659
Authority key identifier: FB:F4:3F:E9:FD:3A:F2:BC:F4:BA:7A:83:F1:11:E6:55:91:25:F3:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_Q_6f068rz0unqD8RHmVZEl8_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/ejcLqOJCDgXCett2-JtlYqaHeew.roa
Signing time: Mon 28 Mar 2022 12:08:40 +0000
ROA not before: Mon 28 Mar 2022 12:08:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44439
IP address blocks: 213.109.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22105 (0x5659)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf43fe9fd3af2bcf4ba7a83f111e6559125f3fd
Validity
Not Before: Mar 28 12:08:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a370ba8e2420e05c27adb76f89b6562a68779ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:81:5d:3a:68:50:0e:36:72:ab:4d:b0:5a:55:
ae:68:93:04:1b:ff:46:c0:48:02:80:73:c9:10:9e:
80:c5:d4:83:6c:f1:31:d0:f6:1b:17:5d:cf:84:dd:
77:29:43:36:42:82:48:b6:70:8b:82:36:06:b8:c2:
8f:c1:16:1e:45:c2:4a:42:3f:c5:e7:27:db:d1:52:
17:67:af:84:92:02:f2:6c:80:9c:9c:6b:20:6b:cb:
d4:8b:d5:f3:66:71:14:53:e1:3e:02:85:fa:88:bd:
16:bc:50:f4:2c:bb:50:b8:e1:bf:98:45:bc:a2:f4:
c2:cd:58:88:56:30:ed:9b:e9:1d:f6:28:21:0f:6b:
9d:51:62:1f:b9:69:0f:49:a6:4e:6b:30:c7:1a:e4:
2e:09:de:ed:ce:f0:31:cc:8a:b5:c4:c4:7d:74:df:
2f:78:3b:cd:61:30:4d:10:fd:7d:ea:cc:a8:d7:71:
97:31:6f:57:41:79:29:f1:83:b9:eb:30:57:13:af:
2d:0d:92:e4:ac:6f:ff:2b:6c:b2:79:b5:00:1f:f7:
df:40:92:cc:8d:4f:f9:6f:b1:d0:8a:f7:6c:67:2d:
13:ef:30:20:23:49:fb:8f:1c:5a:dd:72:65:a8:f9:
56:54:43:d1:4a:ac:3d:9d:59:99:07:68:4f:09:65:
b4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:37:0B:A8:E2:42:0E:05:C2:7A:DB:76:F8:9B:65:62:A6:87:79:EC
X509v3 Authority Key Identifier:
keyid:FB:F4:3F:E9:FD:3A:F2:BC:F4:BA:7A:83:F1:11:E6:55:91:25:F3:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_Q_6f068rz0unqD8RHmVZEl8_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/ejcLqOJCDgXCett2-JtlYqaHeew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/8c97fe-3f8c-4db4-ab93-752d81cdda40/1/1-_Q_6f068rz0unqD8RHmVZEl8_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.150.0/24
Signature Algorithm: sha256WithRSAEncryption
99:2c:d8:2b:0a:80:57:66:65:cd:ff:c5:20:77:37:ae:84:22:
78:4d:f4:69:85:2e:60:b6:91:f1:29:ab:cd:c5:95:11:3a:9a:
57:af:5b:6e:16:04:b1:0f:04:dd:ce:b8:05:ea:d8:92:c4:43:
ce:38:bb:cd:c4:e3:89:9f:63:c5:3f:fc:31:62:64:7a:79:c7:
05:5d:61:03:1b:2f:3a:19:a2:78:28:6f:8b:a9:f0:72:34:4e:
5b:91:b6:80:6b:03:aa:bd:22:9f:75:a8:b8:09:d2:d1:ab:e8:
e7:e4:b5:6f:39:4f:55:75:0c:45:02:e4:45:9c:2d:37:ac:75:
3d:69:1c:f6:ba:a1:8d:10:ab:0e:dc:35:5f:34:48:74:45:bc:
56:1b:64:a5:83:fd:27:ad:b3:82:05:d3:e4:8d:3a:f4:9d:1d:
e7:a9:d4:4d:26:25:f7:e7:61:18:a2:c2:9a:20:38:2b:1d:75:
86:1b:86:57:24:c1:9d:44:df:2b:2e:bc:6f:2f:d0:20:e9:d9:
e8:de:df:72:6f:75:bd:37:e2:ec:ae:6b:98:21:c4:73:b9:7a:
5b:ea:39:bf:13:7e:58:87:be:8b:76:6c:f3:1a:52:fe:40:a8:
ee:d5:11:ca:3c:6c:a2:88:29:6b:bb:cb:b8:8e:f7:44:af:aa:
74:94:68:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:05 2023 by rpki-client on console-fra.rpki-client.org