Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/fR58ImagCiznHQ9KkKn3nWnLh_I.roa
File: fR58ImagCiznHQ9KkKn3nWnLh_I.roa (raw, json)
Hash identifier: 08ljSm2GQdMx8lUCB4bJFFaOQlNAZPzDb3YgiEmy51k=
Subject key identifier: 7D:1E:7C:22:66:A0:0A:2C:E7:1D:0F:4A:90:A9:F7:9D:69:CB:87:F2
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17DE7C81
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/fR58ImagCiznHQ9KkKn3nWnLh_I.roa
Signing time: Sat 01 Jan 2022 00:54:37 +0000
ROA not before: Sat 01 Jan 2022 00:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48680
IP address blocks: 94.100.3.0/24 maxlen: 24
213.175.103.0/24 maxlen: 24
213.175.102.0/24 maxlen: 24
213.175.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400456833 (0x17de7c81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d1e7c2266a00a2ce71d0f4a90a9f79d69cb87f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:41:3a:56:ad:65:eb:02:5f:03:e4:c4:14:f2:
a1:eb:6f:c7:e4:91:cc:c9:fa:4d:c3:12:fb:ce:b2:
b2:8c:a7:f8:b9:1b:cf:4f:09:da:d3:d1:84:54:f3:
20:42:d8:55:94:8b:75:65:00:7c:55:d0:7e:37:56:
4e:47:e3:2c:c4:9f:cb:d5:91:ee:06:51:2c:01:48:
8b:06:d6:bb:6a:16:51:6a:76:8e:0e:25:73:ab:2e:
df:aa:fa:df:da:1b:61:79:b3:a0:06:60:e3:9f:d7:
83:2b:96:f4:56:29:30:cb:ce:f8:57:a1:aa:04:96:
1a:51:9d:ce:73:2c:f2:39:61:0d:61:bb:17:6c:d5:
a4:ea:d1:1e:fd:9c:78:a7:6d:a5:df:54:c7:35:7c:
6b:d0:be:73:51:f7:f4:16:f4:69:1a:c3:92:11:25:
bf:60:4a:80:91:45:15:2c:59:c4:d7:e5:d8:b6:74:
2f:eb:e9:69:f8:f1:ff:0e:25:0d:7e:76:fc:65:62:
be:30:89:91:84:40:5e:08:5a:c1:e8:47:64:45:5a:
58:02:87:7c:eb:ce:8e:18:26:24:d5:b9:21:4e:98:
e5:99:67:65:f4:87:80:34:f3:e7:e2:51:02:d0:94:
87:22:a6:4d:7b:91:16:41:f7:de:c0:6a:a3:aa:1e:
a1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1E:7C:22:66:A0:0A:2C:E7:1D:0F:4A:90:A9:F7:9D:69:CB:87:F2
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/fR58ImagCiznHQ9KkKn3nWnLh_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.100.3.0/24
213.175.72.0/24
213.175.102.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:9a:97:2d:1c:d4:b8:b0:11:75:d2:fb:db:5c:dd:d8:41:06:
a3:f5:7e:1f:2c:07:c7:82:82:01:31:d8:21:f1:0d:e5:ad:73:
87:a4:fd:2f:1c:4c:bc:83:a0:6a:72:5c:ca:bf:39:48:5d:d0:
81:3c:1a:df:fd:6f:b8:f5:4c:df:43:2b:b8:37:46:f1:46:35:
82:ef:5c:b4:29:98:4b:f9:b8:ca:98:c1:3a:cf:91:58:ff:b0:
71:c8:f0:7b:74:52:87:0c:31:9c:56:01:83:1d:c0:26:ac:44:
e8:4c:1c:49:f8:df:ec:4e:e8:b5:d2:52:7a:83:6c:9b:ea:06:
be:30:0d:fe:41:80:95:34:c4:5a:e9:43:a9:78:2d:75:ad:c1:
68:8a:63:4d:52:60:6a:90:01:94:9f:d1:77:3d:f9:b8:ce:8e:
df:e0:d2:23:a6:97:49:2a:79:93:39:b8:7e:01:9f:98:7c:c7:
52:21:8d:0a:1a:f4:06:9d:f0:7c:a0:a9:f1:33:b0:aa:18:e0:
af:4f:09:80:de:46:b8:4e:cd:01:17:bc:50:27:22:01:91:72:
6b:0a:21:34:dd:2e:16:36:f8:c2:8b:49:a9:0f:6d:b8:e5:bb:
a0:7a:dd:a2:cf:86:78:2d:c9:c5:2b:09:22:5d:b9:48:f8:f3:
0a:60:55:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org