Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/A6TYcEyCQRyDpuPdFg4itvnrWYo.roa
File: A6TYcEyCQRyDpuPdFg4itvnrWYo.roa (raw, json)
Hash identifier: FGV2QaekSUrbJ+U1eTdKV31TYsGiusKtpOcVIm4HGOE=
Subject key identifier: 03:A4:D8:70:4C:82:41:1C:83:A6:E3:DD:16:0E:22:B6:F9:EB:59:8A
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17CB95E0
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/A6TYcEyCQRyDpuPdFg4itvnrWYo.roa
Signing time: Sat 01 Jan 2022 00:54:27 +0000
ROA not before: Sat 01 Jan 2022 00:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8605
IP address blocks: 213.175.96.0/20 maxlen: 20
213.175.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399218144 (0x17cb95e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03a4d8704c82411c83a6e3dd160e22b6f9eb598a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:08:72:0d:76:89:a1:d7:5b:05:d3:fa:f4:0d:
f9:f3:7e:7f:2d:1f:d4:bc:f3:22:56:c8:8b:88:71:
9c:1e:4c:c1:ae:3e:ca:6c:2d:0f:aa:82:7a:85:ee:
78:8e:0b:18:bb:e5:be:31:23:8a:d5:bb:52:ac:c4:
e3:8a:67:ee:16:66:ee:ee:8f:54:58:18:3f:dd:c1:
4b:c3:93:da:0a:ee:af:4e:8b:1a:9b:b7:18:46:24:
d0:f9:6c:db:91:df:39:63:ad:77:59:6c:37:1b:6c:
e5:82:a6:d3:16:05:28:ee:d8:ea:d2:c5:e7:d4:07:
7e:7e:28:6e:15:e2:85:f1:a9:bc:1e:e9:b9:33:8e:
4f:70:74:f5:4d:d4:74:30:c2:4f:34:a3:cd:d1:ff:
9d:08:7f:07:cd:24:08:f4:a9:26:2d:28:b2:cd:86:
b0:5c:29:c8:c7:dc:76:cf:51:f3:f5:b1:78:1c:17:
c7:6c:e6:1b:8c:39:1d:f1:cb:60:e8:91:15:8d:bf:
cc:b2:80:02:b5:25:e6:d5:01:aa:47:c6:f1:aa:d3:
2c:82:f3:e8:7d:86:9c:95:c9:ec:f9:ed:46:eb:18:
ed:4b:ee:84:af:42:f7:3e:37:d5:91:f7:5b:45:35:
40:cb:4a:2a:79:8e:c6:7d:d6:4c:1a:3f:ca:50:97:
f5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A4:D8:70:4C:82:41:1C:83:A6:E3:DD:16:0E:22:B6:F9:EB:59:8A
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/A6TYcEyCQRyDpuPdFg4itvnrWYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.96.0-213.175.115.255
Signature Algorithm: sha256WithRSAEncryption
b1:8d:f7:4c:c0:75:e0:f2:94:cf:c2:71:7b:14:90:2e:ab:55:
c5:85:a6:5a:a4:18:d1:25:7d:98:86:61:2e:4f:7d:9e:2c:11:
fd:75:b0:33:f8:04:37:f0:13:22:e7:be:83:86:46:af:72:ff:
00:c6:83:3e:5f:ca:b3:3d:54:a1:a0:07:c6:56:42:17:e5:4a:
e0:70:1e:90:53:40:69:77:8a:bd:06:1d:99:d3:c7:1b:09:b2:
9e:e2:8b:6c:92:1e:ac:89:2a:1d:98:7a:6d:d6:9b:d3:24:a2:
1d:09:56:07:6c:c0:f5:19:79:01:bd:1f:38:35:6f:92:ae:36:
0c:ff:da:56:79:a8:f8:11:c7:88:13:ea:1f:1d:44:28:dd:6b:
8d:2a:dc:9c:43:95:66:5d:4d:92:5b:98:bd:58:be:3e:62:e0:
dd:1a:f4:b4:92:66:21:0c:9d:e8:93:66:62:d8:e1:81:7a:ff:
25:ed:3c:70:29:11:db:98:fd:ed:e6:70:49:ff:10:61:a2:05:
dd:d1:e2:7f:be:40:7a:34:10:a6:5a:3c:d0:d9:de:ee:03:b2:
d4:26:fc:70:7c:c3:66:22:94:65:3d:8d:7f:7f:e9:56:1f:48:
64:4e:4d:14:20:33:17:af:c9:ab:8d:7b:55:0f:8e:3d:d3:72:
4a:63:c5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org