Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ce96f4-d85c-4fc5-9e98-500b8834289e/1/l7mDpQa3Cixc8hAaabWBT1PUtCs.roa
File: l7mDpQa3Cixc8hAaabWBT1PUtCs.roa (raw, json)
Hash identifier: OxdwMfDcmISCgtG8hsAjhM6gV6pKrAMMaYlPWqAo1BI=
Subject key identifier: 97:B9:83:A5:06:B7:0A:2C:5C:F2:10:1A:69:B5:81:4F:53:D4:B4:2B
Certificate issuer: /CN=fef329360c1b6fcafbf5253a657e3e9d7f224f7e
Certificate serial: 0185305EA2CF455F0189AF66478287A42C0C
Authority key identifier: FE:F3:29:36:0C:1B:6F:CA:FB:F5:25:3A:65:7E:3E:9D:7F:22:4F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_vMpNgwbb8r79SU6ZX4-nX8iT34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ce96f4-d85c-4fc5-9e98-500b8834289e/1/l7mDpQa3Cixc8hAaabWBT1PUtCs.roa
Signing time: Tue 20 Dec 2022 16:29:46 +0000
ROA not before: Tue 20 Dec 2022 16:29:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 213.204.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:5e:a2:cf:45:5f:01:89:af:66:47:82:87:a4:2c:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fef329360c1b6fcafbf5253a657e3e9d7f224f7e
Validity
Not Before: Dec 20 16:29:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97b983a506b70a2c5cf2101a69b5814f53d4b42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:89:a4:3b:8d:e2:ff:ef:cd:83:d1:4f:70:ef:
b1:2a:5c:3e:24:05:49:40:68:3b:ca:e7:2d:54:9d:
1f:3c:14:09:51:37:44:e1:c1:49:8b:0c:1e:28:06:
49:a5:95:9b:9a:37:be:d1:bd:00:95:e5:4a:8e:bd:
21:ff:f9:eb:8a:36:cb:48:b2:a0:07:67:ed:62:af:
65:5b:49:45:47:e5:06:1a:59:68:1e:74:a7:1f:5b:
84:ff:81:b8:de:d7:57:8a:38:60:2d:a6:5d:c1:bb:
99:ad:b5:5f:a2:78:9a:d3:4a:1f:a2:62:57:94:63:
39:84:a6:15:27:2f:e1:4e:e1:00:8a:d3:2a:14:09:
e0:88:07:c9:fc:11:c6:3f:49:83:3f:90:c3:79:c2:
df:82:85:3e:a3:91:31:fc:a3:18:ef:d3:ee:af:3d:
b5:38:9c:b7:ab:e2:ab:00:7e:88:7f:c4:ea:35:96:
fa:28:48:1c:fa:5d:1c:77:b5:31:fb:79:4f:94:ec:
b4:4a:f3:5f:5d:43:ef:6c:e3:56:55:8a:54:18:2d:
44:b8:23:2c:88:13:b7:3a:e0:ec:b8:19:b8:8e:67:
07:7b:7f:42:32:f6:61:d0:cb:09:5e:5e:7d:ab:91:
2a:d3:c8:a5:62:4a:5e:4a:c4:37:14:92:03:de:fc:
db:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B9:83:A5:06:B7:0A:2C:5C:F2:10:1A:69:B5:81:4F:53:D4:B4:2B
X509v3 Authority Key Identifier:
keyid:FE:F3:29:36:0C:1B:6F:CA:FB:F5:25:3A:65:7E:3E:9D:7F:22:4F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_vMpNgwbb8r79SU6ZX4-nX8iT34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ce96f4-d85c-4fc5-9e98-500b8834289e/1/l7mDpQa3Cixc8hAaabWBT1PUtCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ce96f4-d85c-4fc5-9e98-500b8834289e/1/_vMpNgwbb8r79SU6ZX4-nX8iT34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.204.16.0/24
Signature Algorithm: sha256WithRSAEncryption
27:f8:db:6f:60:40:ea:a1:8b:4e:d2:22:68:c5:9f:cb:ba:f5:
54:00:20:24:95:c2:b5:1c:36:6d:e9:87:40:6e:e3:ec:9b:5a:
59:8c:6d:c9:70:c7:b9:2b:88:57:34:b8:ad:77:bd:bb:98:6b:
47:02:b0:1c:f4:fc:ad:96:23:b3:91:6a:35:79:3c:d0:f3:2b:
6b:9a:ac:99:a6:7c:57:29:9c:d9:8c:20:ac:e8:24:d5:10:4f:
86:1c:f7:30:f4:b7:18:af:1a:98:64:71:f4:7b:f0:0d:46:56:
74:2c:0c:c3:89:6a:33:66:ec:6a:eb:40:c1:82:d6:57:1f:b4:
6e:43:54:4f:b3:07:40:04:41:51:4b:5d:56:61:83:c1:3e:bb:
8c:72:6f:97:e2:cd:e2:e7:6c:a2:1c:62:2e:b5:91:66:dc:1f:
cc:8c:5c:d8:d1:6c:28:24:c3:af:0f:bc:4c:4f:22:c9:04:a3:
d2:63:49:b2:aa:b6:b4:5c:cb:ba:eb:3d:a6:b6:bc:0e:97:a9:
dd:c7:2b:41:f8:c3:99:7b:4d:40:a7:96:e4:90:18:77:7d:1d:
96:f8:d3:09:db:f1:c4:a5:70:13:0a:d4:55:9b:cf:0c:bc:7e:
19:28:d7:70:5f:e7:fd:fd:01:e4:c1:18:fb:61:3b:d6:cc:45:
56:a1:8c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:38 2024 by rpki-client on console-ams.rpki-client.org