Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/NfBOH367dChBXvwxpnwiSKshTLQ.roa
File: NfBOH367dChBXvwxpnwiSKshTLQ.roa (raw, json)
Hash identifier: LGRIWG6CbQfJAJxMxptqsc68VnJ4aoMj6RVicpTFKIw=
Subject key identifier: 35:F0:4E:1F:7E:BB:74:28:41:5E:FC:31:A6:7C:22:48:AB:21:4C:B4
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17CE1B4A
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/NfBOH367dChBXvwxpnwiSKshTLQ.roa
Signing time: Sat 01 Jan 2022 00:54:29 +0000
ROA not before: Sat 01 Jan 2022 00:54:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24921
IP address blocks: 213.175.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399383370 (0x17ce1b4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35f04e1f7ebb7428415efc31a67c2248ab214cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d2:1c:8a:94:6e:a4:c4:65:19:bc:71:11:e7:
49:c0:98:de:11:f9:9d:51:fe:71:44:90:9f:c8:32:
04:4f:d0:c6:8e:8c:db:78:71:55:7c:b8:b1:ea:ac:
70:b5:39:44:14:62:65:16:98:77:a5:a1:72:a7:0b:
ae:20:f0:d4:7f:bc:ab:f3:c0:fd:b9:4f:de:b3:97:
b6:7c:c0:24:14:5f:d3:ca:0d:4a:a6:7e:95:2c:c9:
10:f7:6b:f5:32:50:a8:39:46:26:2f:48:6c:a9:9a:
e9:7f:e4:14:70:22:31:a4:e5:d6:21:ec:66:41:05:
27:0d:9c:c4:97:a3:f2:5e:84:95:75:8f:ec:c2:32:
da:df:e8:07:e0:47:69:ca:d2:ba:1c:6a:d3:d9:69:
0e:5c:9e:0d:dc:38:de:97:03:cc:79:5a:23:96:39:
52:84:11:98:94:ad:3c:c2:66:12:81:c1:c0:fe:a4:
7e:7f:07:74:d8:d5:c5:67:55:a0:fc:5f:7a:7e:3f:
26:51:fb:1a:56:c5:12:c7:da:df:c6:36:f6:ba:cf:
8c:f6:38:6a:af:b9:6c:ad:6d:af:23:51:19:8d:0e:
eb:b9:7f:e6:58:a3:11:f3:51:b7:dc:e1:6d:5e:76:
2c:2b:8b:5e:c1:b4:e8:db:38:87:8f:60:43:bd:1c:
c6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F0:4E:1F:7E:BB:74:28:41:5E:FC:31:A6:7C:22:48:AB:21:4C:B4
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/NfBOH367dChBXvwxpnwiSKshTLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.79.0/24
Signature Algorithm: sha256WithRSAEncryption
45:29:f1:55:c8:40:13:35:be:64:ec:c2:c1:8d:d5:15:01:50:
74:b2:28:a2:ed:12:57:ce:c7:25:bb:69:e2:14:e8:3d:33:ae:
b3:45:68:20:ad:49:43:49:42:74:98:cc:88:a0:e0:ab:8f:db:
c2:21:1d:38:ef:19:18:f0:aa:26:ea:03:91:91:87:4c:91:51:
49:08:bd:56:a4:78:9e:81:e6:39:90:b8:5f:92:51:79:a4:e0:
61:48:74:37:82:f1:0b:60:e7:57:63:d2:52:cf:3d:27:5f:3a:
a7:1a:79:02:50:85:29:e4:89:5e:1e:c8:17:e0:8a:d2:5e:44:
0e:58:d7:73:9a:3d:89:c4:d6:e4:02:52:65:44:78:b7:15:1a:
9c:6d:0f:6a:18:34:ae:76:39:8f:2a:45:52:c8:e7:c4:54:83:
4b:6d:dc:c7:a0:74:95:7d:49:fb:e9:ed:35:6d:ca:38:0d:c0:
78:f9:03:e6:ab:d9:86:a6:e0:58:c8:93:3c:94:8c:ef:a4:40:
e5:6c:48:f4:d6:2a:21:fd:60:dd:49:d0:8a:93:da:20:dc:24:
0f:d2:58:cc:70:5d:4b:18:f9:85:65:2f:b5:b1:06:4f:9e:09:
e1:61:c1:f9:9e:d7:0b:63:da:5e:87:83:57:9c:fb:9c:62:b0:
33:e7:f4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org