Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/NFrCUWOVVx3R9RpTQxAE6rEMrBw.roa
File: NFrCUWOVVx3R9RpTQxAE6rEMrBw.roa (raw, json)
Hash identifier: PoL72nPumwMVcBeZ8yAH/5X/vLix8HNERjvi3IeGTBY=
Subject key identifier: 34:5A:C2:51:63:95:57:1D:D1:F5:1A:53:43:10:04:EA:B1:0C:AC:1C
Certificate issuer: /CN=03452c9dbfc9e4193c7e55e0d2016568d9465285
Certificate serial: 018503F3FEF2C697406A9E886770AC1F0C83
Authority key identifier: 03:45:2C:9D:BF:C9:E4:19:3C:7E:55:E0:D2:01:65:68:D9:46:52:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0Usnb_J5Bk8flXg0gFlaNlGUoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/NFrCUWOVVx3R9RpTQxAE6rEMrBw.roa
Signing time: Mon 12 Dec 2022 01:30:00 +0000
ROA not before: Mon 12 Dec 2022 01:30:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 213.232.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:03:f3:fe:f2:c6:97:40:6a:9e:88:67:70:ac:1f:0c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03452c9dbfc9e4193c7e55e0d2016568d9465285
Validity
Not Before: Dec 12 01:30:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=345ac2516395571dd1f51a53431004eab10cac1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:10:68:42:d8:1f:74:c7:c1:9f:88:e4:2b:f3:
31:9e:78:9a:2a:34:fe:14:81:42:4a:03:ca:c1:85:
54:3c:55:03:e9:cb:80:ee:b3:3e:d5:02:c1:95:c2:
49:da:7a:1a:59:a9:3d:a7:13:0f:1a:78:5c:2e:83:
f5:b3:1b:04:b7:75:fb:96:b5:7a:09:a5:1f:8b:77:
e0:ab:1b:60:92:7d:b8:01:0f:58:84:c5:0e:f5:09:
02:2d:47:46:e8:70:da:4b:cb:3b:9b:0b:56:d6:1e:
5a:f9:10:99:4a:93:ea:9e:ea:ec:b2:49:3e:e2:4a:
78:bf:2b:bb:e8:6c:b0:2a:d3:0c:a4:53:36:fd:43:
e4:80:b7:ae:45:40:6e:44:6b:6c:7d:85:ea:64:d2:
95:3b:c8:5d:8b:d7:54:5f:d5:69:84:87:bd:72:9b:
25:dc:77:55:f3:6a:03:81:80:f6:a1:1a:19:c0:36:
22:c5:18:f4:df:3a:23:4d:e6:32:e7:b5:66:95:f7:
d3:02:66:d2:60:e4:4b:e1:28:9e:42:18:11:0b:ac:
2c:e2:35:40:89:d5:7f:15:5c:00:87:5b:ec:1e:0a:
36:dc:95:32:52:4b:2d:10:9f:25:6c:a4:1f:8c:93:
91:81:9d:09:bc:a1:45:55:71:dd:9c:9c:68:ac:c7:
a8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:5A:C2:51:63:95:57:1D:D1:F5:1A:53:43:10:04:EA:B1:0C:AC:1C
X509v3 Authority Key Identifier:
keyid:03:45:2C:9D:BF:C9:E4:19:3C:7E:55:E0:D2:01:65:68:D9:46:52:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0Usnb_J5Bk8flXg0gFlaNlGUoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/NFrCUWOVVx3R9RpTQxAE6rEMrBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/5fddcb-632d-439e-aa69-d3ee98fc2776/1/A0Usnb_J5Bk8flXg0gFlaNlGUoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.252.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:2e:29:96:27:35:ed:ce:48:ef:ac:ea:5a:21:8b:34:f5:aa:
84:d3:9c:95:cd:a0:19:e6:d0:3f:30:cb:d6:2d:7b:42:ad:99:
eb:ce:52:4e:b0:38:cc:8e:86:6c:bb:9c:60:e9:25:1c:c6:63:
ad:0e:a0:86:75:df:16:2b:88:05:f3:09:b6:8c:65:a8:65:e9:
f4:d2:eb:2e:1d:67:ba:51:dd:8e:7a:fd:24:7d:05:b8:8a:03:
e8:04:52:39:2c:23:67:6e:87:6e:36:28:6f:2f:07:28:12:f5:
a6:07:ab:0c:a8:d9:ef:58:ef:6c:3c:f0:30:1b:9e:d9:01:80:
98:92:9b:7d:db:2f:ec:db:17:98:cd:82:39:7f:1f:81:e0:24:
89:c3:4c:a0:17:9a:20:67:a2:4e:5f:1a:e1:a8:16:c9:4d:67:
43:87:6f:dd:ae:f4:72:f7:af:b9:7b:e7:5c:c9:ec:d9:82:04:
2d:b8:8e:c6:3b:ae:a9:6d:40:85:13:99:2e:35:5d:7f:92:11:
d2:18:e5:b0:9d:69:c5:e7:09:75:01:06:9c:5d:4a:9d:4d:65:
9d:40:5b:05:49:a5:af:b9:5b:13:5c:23:db:be:07:22:85:1e:
04:26:5c:49:e0:38:bb:90:3a:1b:3c:8e:48:25:a3:53:ae:9f:
33:46:f7:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-ams.rpki-client.org