Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/XVdcFcCypIXCicG5KaaQeoJDxlU.roa
File: XVdcFcCypIXCicG5KaaQeoJDxlU.roa (raw, json)
Hash identifier: Nc+2K3KftwvUytf87jHe1LwGbIy69dArkMX6a6LtFGQ=
Subject key identifier: 5D:57:5C:15:C0:B2:A4:85:C2:89:C1:B9:29:A6:90:7A:82:43:C6:55
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A6983045421FDA3F9320995B8151313
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/XVdcFcCypIXCicG5KaaQeoJDxlU.roa
Signing time: Wed 20 Jul 2022 07:01:38 +0000
ROA not before: Wed 20 Jul 2022 07:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208082
IP address blocks: 213.33.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:69:83:04:54:21:fd:a3:f9:32:09:95:b8:15:13:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 07:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d575c15c0b2a485c289c1b929a6907a8243c655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:b4:fe:03:81:93:84:45:11:ad:d9:15:fa:92:
f1:0f:bf:b9:a3:d3:a7:e5:60:a6:e0:b1:0d:bc:51:
f2:09:3e:fc:86:5c:3e:59:64:ef:58:6c:ba:25:1a:
3b:70:5e:86:9b:97:f8:54:cc:7d:10:b4:31:1e:b4:
ed:ac:a0:3d:18:f5:82:07:b3:26:3a:52:1e:c8:2a:
0b:89:2a:f3:73:ba:8f:36:84:8f:d6:88:c2:b9:ef:
4c:42:99:1a:53:63:b6:ae:67:ba:44:72:6a:20:be:
50:79:72:b1:d5:75:83:56:94:49:d0:e9:56:19:eb:
5f:0c:b8:b3:6f:90:a4:92:9b:77:54:07:77:62:7d:
f3:92:29:98:10:14:35:02:70:f1:65:e4:b8:cc:60:
0d:75:d5:62:66:eb:37:40:d8:5b:e1:fd:59:1a:53:
ac:70:e7:c0:ad:4f:c8:98:b8:58:80:9b:d0:96:27:
6f:25:6d:a4:d1:c8:24:e7:b3:a2:d3:36:48:a2:3a:
14:da:a3:a5:b8:a9:18:4e:fd:04:41:d6:a2:cb:58:
d2:45:79:5f:83:8b:4f:5b:cb:b8:ab:80:19:a6:f3:
81:1d:dc:98:c2:08:68:b7:c0:23:fe:f1:76:15:2b:
e0:b1:d8:1a:ab:c6:cc:b6:aa:e8:cc:12:a1:89:b8:
f5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:57:5C:15:C0:B2:A4:85:C2:89:C1:B9:29:A6:90:7A:82:43:C6:55
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/XVdcFcCypIXCicG5KaaQeoJDxlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.33.8.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:84:61:a0:ea:cb:ac:71:18:2e:91:1f:9c:7d:ab:63:5e:a7:
a9:b5:e8:08:16:3e:d8:a1:a6:a6:98:de:72:19:a2:47:1d:73:
bb:7a:a3:0b:5b:f8:c8:4a:3e:ec:e4:9b:b0:dc:16:94:c2:46:
4e:9a:33:88:5d:cf:73:e5:43:c9:f6:29:42:7a:22:fe:e1:55:
b7:92:6e:61:42:07:cf:e2:2d:b4:b6:a8:b0:9a:d6:5f:ad:da:
4a:2f:3a:79:70:d2:d4:3f:c1:5f:ba:07:1a:5e:1d:af:99:5b:
c4:f6:29:07:3c:5a:81:07:96:e8:db:00:53:ad:3b:14:73:b5:
4e:4a:cf:88:1f:44:d5:54:ee:0e:5f:9f:8a:fe:09:d4:89:3a:
90:ad:02:88:93:0c:72:ff:79:ed:49:a7:f6:d1:31:e1:20:79:
4e:fc:5b:0b:5b:1c:d6:99:38:48:7a:da:4c:69:9a:47:f9:45:
b7:84:69:c2:fd:44:9b:25:05:ec:36:9a:26:15:0b:f0:e2:6e:
5b:c3:5f:37:db:7c:8a:56:b6:1a:ca:50:59:1d:79:21:97:1b:
79:72:a4:36:6d:3b:41:32:f5:8c:bb:76:09:a8:ae:b4:4a:e5:
b4:f0:42:cf:aa:d6:fc:74:34:5b:83:e7:85:c4:c0:12:83:06:
0c:48:11:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:09 2023 by rpki-client on console-fra.rpki-client.org