Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/vyKn66e3sJqadBD9gema6LbhJ4E.roa
File: vyKn66e3sJqadBD9gema6LbhJ4E.roa (raw, json)
Hash identifier: /1V7gJCvqZdnGwNfsu/Hi4FwkTUlcC7ZIl43NQVHYTI=
Subject key identifier: BF:22:A7:EB:A7:B7:B0:9A:9A:74:10:FD:81:E9:9A:E8:B6:E1:27:81
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 06ED982B
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/vyKn66e3sJqadBD9gema6LbhJ4E.roa
Signing time: Sat 01 Jan 2022 13:02:51 +0000
ROA not before: Sat 01 Jan 2022 13:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 213.109.183.0/24 maxlen: 24
213.109.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116234283 (0x6ed982b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Jan 1 13:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf22a7eba7b7b09a9a7410fd81e99ae8b6e12781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f6:16:fb:53:3d:c6:e0:fa:66:77:34:41:7f:
83:c7:06:6a:9c:fa:a5:02:ca:ab:ce:17:d8:3c:d1:
6e:31:e5:a3:d8:32:a1:05:f1:0c:1c:39:55:03:7e:
dc:25:18:a5:44:55:ed:aa:ee:a3:e7:6f:84:33:dd:
8f:b8:95:43:1f:13:14:26:52:bb:2d:1e:7b:e6:ef:
8d:52:5d:6a:9b:21:03:56:3c:04:a0:db:05:0c:66:
20:ce:f2:6b:18:95:17:7a:1a:1b:9d:eb:a5:d5:fc:
a4:7b:29:ce:10:e5:cd:fb:03:f4:28:ec:92:b4:0c:
31:f1:ed:b9:05:9f:7d:86:8d:b8:b5:e7:39:32:fe:
86:ab:89:e6:07:a4:db:24:7e:fb:b8:81:6c:cd:6d:
e1:db:0a:45:c3:4d:8c:ce:dd:41:1e:cd:2f:8b:03:
b0:8e:cb:07:cb:a2:b0:99:3b:1f:0a:e2:88:c5:75:
32:8e:16:da:e2:58:02:8b:a6:56:88:85:89:61:87:
2c:fd:bd:66:8a:46:bb:fc:86:0d:3e:d0:c1:bc:56:
a2:7b:1c:7c:eb:cc:5b:f0:b7:37:81:9a:20:f5:f9:
48:22:3e:d1:b4:37:15:df:82:45:de:40:a3:2b:27:
18:a9:48:a9:17:d4:dd:12:2e:1a:36:c8:9a:ae:60:
1e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:22:A7:EB:A7:B7:B0:9A:9A:74:10:FD:81:E9:9A:E8:B6:E1:27:81
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/vyKn66e3sJqadBD9gema6LbhJ4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.180.0/24
213.109.183.0/24
Signature Algorithm: sha256WithRSAEncryption
08:fa:3d:6d:82:a0:b7:91:40:81:eb:a8:8c:42:06:9a:1b:cc:
1e:c6:fd:c9:6c:3e:44:b8:20:1c:ec:d4:49:b6:d7:60:c6:83:
c4:ad:17:e9:5e:00:3e:2b:14:6a:e7:c8:88:b9:dd:7f:56:95:
82:50:df:68:65:8d:bb:8e:61:6f:39:d0:62:0d:90:be:25:9b:
86:21:b4:d7:18:15:ff:bd:8d:da:0a:e4:51:9a:97:3c:fa:a7:
db:ea:b9:6c:cf:ed:d1:8b:67:ac:b5:57:c4:40:24:f8:cf:2d:
0e:78:5e:9c:f1:e0:5f:2f:e3:de:59:f5:97:4d:a4:e0:83:c8:
11:40:9f:a7:e9:4b:c8:40:3b:6c:a4:2b:f2:c6:8d:7b:e0:0c:
68:98:ea:04:d9:c8:44:48:be:6b:62:75:6e:9e:75:b2:f6:dc:
0e:65:d4:35:c8:3f:f7:6b:38:0b:31:ae:80:8b:47:a8:1a:75:
ba:f6:9e:22:63:b7:b6:ec:c1:ad:f4:9b:ad:2a:17:f4:42:53:
89:25:a0:18:82:3f:51:ef:19:9e:74:3b:c8:a4:0e:0b:bb:97:
f0:55:a8:83:a8:a0:dd:ab:08:60:ed:96:fe:b6:16:11:17:ec:
53:bf:26:61:8f:7e:bc:48:dc:63:26:26:d1:6f:02:28:73:77:
ad:c5:fa:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org