Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/46d1d2-a6c0-47be-8771-c3ab6b3466c0/1/7NcbF7v1XItbd24tqopDpdPY3tU.roa
File: 7NcbF7v1XItbd24tqopDpdPY3tU.roa (raw, json)
Hash identifier: VbjEJZGbFz7YSbm7u6tw9PhZrXwqIn/gtmDF0Ro1q7Q=
Subject key identifier: EC:D7:1B:17:BB:F5:5C:8B:5B:77:6E:2D:AA:8A:43:A5:D3:D8:DE:D5
Certificate issuer: /CN=aba835d060176ee8160c7930f87e693559090d78
Certificate serial: 07B02F7F
Authority key identifier: AB:A8:35:D0:60:17:6E:E8:16:0C:79:30:F8:7E:69:35:59:09:0D:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6g10GAXbugWDHkw-H5pNVkJDXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/46d1d2-a6c0-47be-8771-c3ab6b3466c0/1/7NcbF7v1XItbd24tqopDpdPY3tU.roa
Signing time: Sat 01 Jan 2022 00:55:28 +0000
ROA not before: Sat 01 Jan 2022 00:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9135
IP address blocks: 213.164.128.0/19 maxlen: 19
213.164.137.0/24 maxlen: 24
213.164.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128987007 (0x7b02f7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aba835d060176ee8160c7930f87e693559090d78
Validity
Not Before: Jan 1 00:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecd71b17bbf55c8b5b776e2daa8a43a5d3d8ded5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a8:92:5e:ce:18:8d:ef:89:42:75:88:bb:25:
57:59:21:d3:8d:55:2c:a8:8d:9c:17:a8:3b:51:4a:
42:1e:1e:49:8a:fb:b8:c6:1e:d9:96:47:e4:3e:f1:
54:a5:2a:ba:f1:f5:ad:f7:87:83:12:6b:24:3e:2a:
66:31:9e:de:03:3f:da:f1:7c:6d:49:eb:35:b3:cd:
db:50:bf:7a:5e:ac:11:5a:af:1b:b3:c2:6f:f8:cf:
09:63:e1:27:f1:31:f3:d5:17:16:b8:4e:7a:14:50:
16:f1:b7:94:8c:31:bf:21:be:ed:6c:2d:3a:48:be:
36:7d:35:65:50:ac:f9:b4:1d:ac:0f:4e:ba:f9:31:
58:04:11:e2:de:70:36:ba:ca:50:32:dc:d9:b5:19:
58:fd:e0:2b:a0:3c:c7:35:aa:0e:77:2b:96:d7:96:
96:45:60:f8:5b:6c:89:b2:b2:61:c7:12:d6:a1:20:
78:e4:c1:bc:ab:5c:c5:f7:fe:5d:01:02:89:e1:fe:
3f:79:e6:a7:0c:01:c7:88:e7:98:a1:ed:b6:17:f0:
ea:56:17:12:9a:df:7a:b2:8f:94:46:0d:25:44:af:
3d:a5:3f:fa:b2:b7:fb:fa:74:15:b8:58:20:c6:08:
02:7d:1e:b8:5b:42:e4:15:d9:e2:ed:b8:5b:34:f3:
fb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D7:1B:17:BB:F5:5C:8B:5B:77:6E:2D:AA:8A:43:A5:D3:D8:DE:D5
X509v3 Authority Key Identifier:
keyid:AB:A8:35:D0:60:17:6E:E8:16:0C:79:30:F8:7E:69:35:59:09:0D:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6g10GAXbugWDHkw-H5pNVkJDXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/46d1d2-a6c0-47be-8771-c3ab6b3466c0/1/7NcbF7v1XItbd24tqopDpdPY3tU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/46d1d2-a6c0-47be-8771-c3ab6b3466c0/1/q6g10GAXbugWDHkw-H5pNVkJDXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.164.128.0/19
Signature Algorithm: sha256WithRSAEncryption
86:5f:58:8d:c9:61:8d:80:db:10:2b:a7:a1:33:4a:2b:ac:c5:
e7:dd:0a:e1:8b:e5:8c:fb:b2:64:66:66:1b:8e:c6:1c:ff:f1:
fa:8f:62:6a:af:7e:5d:e6:30:3e:76:ad:6d:6c:e6:99:3f:26:
00:98:fc:17:55:97:c6:3c:65:d1:05:ba:df:27:11:1d:2a:b5:
62:10:c6:73:5d:e5:5d:b0:1a:ac:b7:e4:6d:eb:4c:cd:d7:e7:
69:43:9c:15:98:9e:a3:6f:1a:de:07:da:b8:23:f5:a7:ec:cf:
79:88:1a:20:99:5c:95:9e:67:7d:95:98:70:70:31:83:10:55:
5d:65:62:a3:9c:e7:16:03:c9:90:ba:79:84:49:ec:c5:27:ab:
5c:32:7b:ff:1b:43:26:ef:4f:3b:aa:43:de:be:b2:38:72:50:
63:0d:d0:53:d5:64:0f:55:79:aa:61:fb:eb:24:b9:53:29:b7:
cb:47:ff:b4:81:a5:de:f3:47:12:d3:19:68:73:12:be:37:8a:
68:43:f1:3b:4c:57:a5:9c:98:d1:1c:5f:e4:5b:3f:2b:01:5b:
8e:c7:86:ac:5e:e6:95:d3:20:f1:2d:4e:99:db:b2:95:6d:c5:
ba:61:c5:15:8d:61:be:26:0e:f2:38:88:72:38:1a:f4:09:d4:
73:19:6a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:37 2023 by rpki-client on console-fra.rpki-client.org