Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/51bb40-fd1c-4cf9-810c-b2d73171d1bb/1/s-atBqyJSbqebh9j0Z-yOCJficA.roa
File: s-atBqyJSbqebh9j0Z-yOCJficA.roa (raw, json)
Hash identifier: vL1mvcCk/uvucjgFmXjcdZjInfYXkAu4eNDUvuF9R2s=
Subject key identifier: B3:E6:AD:06:AC:89:49:BA:9E:6E:1F:63:D1:9F:B2:38:22:5F:89:C0
Certificate issuer: /CN=c3b18ede10d5f9c99b8f68b9086d2fb93ccb9978
Certificate serial: 014EB58F
Authority key identifier: C3:B1:8E:DE:10:D5:F9:C9:9B:8F:68:B9:08:6D:2F:B9:3C:CB:99:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w7GO3hDV-cmbj2i5CG0vuTzLmXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/51bb40-fd1c-4cf9-810c-b2d73171d1bb/1/s-atBqyJSbqebh9j0Z-yOCJficA.roa
Signing time: Sat 01 Jan 2022 09:04:23 +0000
ROA not before: Sat 01 Jan 2022 09:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63473
IP address blocks: 83.138.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21935503 (0x14eb58f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3b18ede10d5f9c99b8f68b9086d2fb93ccb9978
Validity
Not Before: Jan 1 09:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3e6ad06ac8949ba9e6e1f63d19fb238225f89c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:93:96:d8:39:90:c2:b7:e1:13:aa:57:ab:22:
3f:52:e0:2b:4c:6f:91:5b:c9:1b:1b:eb:88:45:d3:
65:99:a5:26:d7:e6:8b:3b:b6:09:1a:4b:11:05:96:
3e:ba:d3:00:85:69:3c:ec:c1:39:3d:03:ef:7b:c5:
26:c5:6c:79:84:be:7c:da:26:41:9e:62:88:49:99:
fc:c4:71:41:d8:af:e9:3b:12:93:7b:e7:45:cc:29:
3b:46:31:f5:7e:93:a2:cd:8f:f5:b9:49:b5:7e:13:
b3:5f:23:83:ce:90:42:1b:4a:8b:94:61:b7:38:c4:
54:00:64:86:cc:17:ba:7e:bd:4b:7f:cc:b1:65:46:
f7:6b:0f:9d:aa:33:bc:32:7d:bc:63:8e:d7:87:23:
cb:80:db:41:cc:c0:fc:32:9d:31:07:67:72:fa:4e:
5b:d3:21:5d:0f:47:c7:58:3a:be:7d:79:0f:57:ab:
5c:e2:45:fc:aa:65:03:b4:9e:c2:8c:07:fb:f2:bf:
e7:75:bb:af:40:44:9c:ea:b5:59:1f:77:77:ca:50:
b0:e6:d1:ef:04:5d:8d:36:1d:f9:30:f7:56:59:43:
76:b7:5a:3c:ad:f4:e9:d5:cd:af:c9:d6:fa:65:d5:
91:37:cc:58:60:97:d3:77:9d:f8:68:25:c6:ca:03:
30:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E6:AD:06:AC:89:49:BA:9E:6E:1F:63:D1:9F:B2:38:22:5F:89:C0
X509v3 Authority Key Identifier:
keyid:C3:B1:8E:DE:10:D5:F9:C9:9B:8F:68:B9:08:6D:2F:B9:3C:CB:99:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w7GO3hDV-cmbj2i5CG0vuTzLmXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/51bb40-fd1c-4cf9-810c-b2d73171d1bb/1/s-atBqyJSbqebh9j0Z-yOCJficA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/51bb40-fd1c-4cf9-810c-b2d73171d1bb/1/w7GO3hDV-cmbj2i5CG0vuTzLmXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.53.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:80:5c:da:eb:ab:62:60:d9:eb:87:40:ae:c1:1a:65:a2:11:
0e:57:80:6f:20:52:91:05:05:5d:4d:f3:16:f2:3f:0c:94:f2:
97:a0:98:e7:25:dc:93:25:ca:46:e2:c9:12:c8:32:52:eb:62:
70:cf:48:1a:ca:e7:5e:4f:57:c8:6b:80:dc:92:59:c1:cb:9a:
ad:fa:29:6d:07:e9:03:99:76:90:dd:90:e3:13:8d:eb:f5:e7:
fa:87:4a:c9:fc:7d:26:61:a4:2f:8b:99:c1:b7:ff:f7:13:0d:
85:03:f9:95:e7:37:81:3d:2c:ae:75:3c:10:f3:ab:4c:3e:62:
94:f4:b4:21:d2:83:d9:50:32:bd:a8:eb:0b:74:41:58:ca:ca:
8f:1a:3f:96:bc:e7:03:1b:de:48:71:bf:76:6c:f7:d0:2d:6f:
95:a6:25:6f:1f:54:89:7c:6d:b3:d2:2b:1d:b0:e2:82:74:2b:
a9:13:cd:3c:c7:b5:ad:f2:57:9d:b6:67:b7:95:da:26:e6:4a:
30:6e:38:dd:1c:33:d0:be:27:13:ee:35:2d:11:14:6e:3b:b9:
ff:dc:95:62:a7:d5:08:65:b1:5c:ce:2a:2f:b0:d1:51:a2:f2:
b6:b4:e0:36:b8:ae:de:b2:48:36:77:01:f7:b5:83:af:99:89:
69:a8:dc:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:24 2023 by rpki-client on console-fra.rpki-client.org