Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/iR6T5J162Pm5RepOI74v7b-82uM.roa
File: iR6T5J162Pm5RepOI74v7b-82uM.roa (raw, json)
Hash identifier: CTmoe+0+QMqeFB8tuU89kHWb42CwGaICBPaGhyvLFjI=
Subject key identifier: 89:1E:93:E4:9D:7A:D8:F9:B9:45:EA:4E:23:BE:2F:ED:BF:BC:DA:E3
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 17E13889
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/iR6T5J162Pm5RepOI74v7b-82uM.roa
Signing time: Sat 01 Jan 2022 00:54:39 +0000
ROA not before: Sat 01 Jan 2022 00:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197417
IP address blocks: 213.175.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400636041 (0x17e13889)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 1 00:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=891e93e49d7ad8f9b945ea4e23be2fedbfbcdae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:7a:44:dd:d2:9e:99:b4:7a:ad:16:2a:09:06:
f7:cf:5a:4a:70:4f:62:85:c5:1b:3f:92:96:57:33:
97:c0:f2:74:91:b0:6d:12:d3:eb:3f:4c:64:40:da:
20:2a:9b:37:a5:1c:5c:5b:54:63:0f:da:64:44:93:
69:30:3e:eb:37:cc:ec:91:53:b9:ef:26:0b:75:c1:
c8:99:83:99:b1:2a:41:eb:3d:49:bd:61:1e:00:c0:
a2:7a:ee:e8:8c:20:67:b6:66:49:c7:c2:76:f9:50:
6b:c7:13:b5:fe:11:32:2e:12:a2:0b:0a:4d:b1:f7:
09:1f:67:ba:0c:bb:bd:9f:d5:07:96:1d:4b:b6:fa:
c9:bd:f1:3c:68:4f:34:d4:5e:c0:6b:02:ad:e7:4b:
9a:8d:ff:03:a0:bd:ad:da:83:60:bb:5f:4a:dd:81:
67:60:7b:dc:ea:0b:3f:dd:ee:6f:3b:2e:8c:f0:04:
1a:36:a3:48:d1:92:f9:17:cb:eb:e1:f4:5e:85:3d:
a5:23:2e:34:b9:de:ca:40:07:c1:45:74:99:2f:00:
c9:d8:6a:45:76:61:ab:60:16:2a:88:44:ed:48:61:
4b:a3:63:9b:db:dd:b2:e8:ee:91:59:c3:33:b9:61:
a5:e4:0b:e5:92:d8:f0:07:ca:d3:18:35:a9:7c:92:
21:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:1E:93:E4:9D:7A:D8:F9:B9:45:EA:4E:23:BE:2F:ED:BF:BC:DA:E3
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/iR6T5J162Pm5RepOI74v7b-82uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.175.86.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:63:b5:3a:96:99:fe:27:9c:42:47:9e:82:17:da:94:e2:65:
ed:a1:9f:67:88:25:f6:50:e9:98:a6:61:32:c1:62:80:6c:cc:
3f:31:c6:ca:c2:a6:9b:1c:b9:ae:79:0b:24:be:70:be:6f:d4:
de:f4:aa:f3:fa:f1:02:fd:3b:0b:20:69:06:f1:ec:5d:da:b4:
50:75:fd:dd:91:99:44:10:38:92:3e:b0:03:6f:5d:81:4c:e3:
24:63:4d:fc:31:64:9c:a3:ea:f4:2a:73:5d:01:e2:4f:bc:37:
0e:76:67:90:89:d2:cd:a9:20:9f:62:2f:56:64:01:12:0f:a6:
72:52:9a:3e:1f:63:e5:e7:80:06:01:b1:19:d9:29:eb:e8:8e:
cf:4e:3b:43:86:52:85:07:55:08:ed:e9:9d:1e:e1:2c:71:0e:
8d:99:2c:1f:56:6c:22:c5:4b:0c:1d:9c:ea:d4:e3:4b:64:d7:
59:df:8b:8d:4c:91:45:ef:81:fc:a4:8a:61:e1:a4:6c:20:3f:
aa:7f:5a:89:f3:46:2f:14:be:c5:5e:4d:69:6e:ac:ef:b0:f1:
c7:35:82:1e:2d:22:7c:37:b1:97:a1:08:4e:f4:df:fb:40:50:
18:69:ac:e3:8c:27:db:ad:c0:c9:d6:3e:7f:d1:62:a7:16:2f:
cf:68:3d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org