Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/a8rP3LXzqCyF13AUSKFnpsX3IDA.roa
File: a8rP3LXzqCyF13AUSKFnpsX3IDA.roa (raw, json)
Hash identifier: N7+SUuMXdhqqXf2X4I2+yRDgEYoqbgdjd4NJlTFJEg0=
Subject key identifier: 6B:CA:CF:DC:B5:F3:A8:2C:85:D7:70:14:48:A1:67:A6:C5:F7:20:30
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0321E837
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/a8rP3LXzqCyF13AUSKFnpsX3IDA.roa
Signing time: Sat 01 Jan 2022 16:04:19 +0000
ROA not before: Sat 01 Jan 2022 16:04:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 213.108.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52553783 (0x321e837)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bcacfdcb5f3a82c85d7701448a167a6c5f72030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:74:b9:31:75:f3:d7:37:c3:1a:1a:54:f4:f0:
9e:33:dc:b9:94:fa:69:86:67:60:60:19:a3:eb:34:
46:c6:4d:b3:04:23:09:bb:1f:7d:36:17:ac:8c:aa:
47:b8:57:5c:a5:ad:38:3b:b6:39:49:f3:b8:a9:81:
5d:55:e9:56:2d:44:dc:b0:2a:ba:19:3a:23:36:9c:
5d:3e:8e:7b:ae:30:d7:c3:ba:d7:c9:73:b2:3f:c9:
8c:a4:db:ce:c2:b2:f6:b9:4a:bd:e0:d5:18:74:02:
89:9f:03:5a:77:57:6b:a1:a2:ec:bb:ff:53:03:64:
9d:ca:21:a1:08:a8:d6:16:05:38:3f:5f:0f:6f:c8:
18:69:85:b1:46:48:c0:86:89:02:29:52:d4:4c:cb:
cb:56:27:98:22:ec:4d:0b:3c:bc:36:49:30:67:70:
d8:8c:52:c8:36:13:7e:45:b2:02:21:7a:2c:d5:a1:
74:00:5e:24:46:9e:99:81:75:e1:d6:a7:76:3d:0e:
ef:02:d0:53:93:72:2e:bb:57:b8:35:f1:92:f0:69:
aa:50:8e:99:39:ad:c5:d6:eb:cb:c2:92:57:ca:bb:
14:bb:6a:ed:31:30:94:f1:fa:fc:6c:18:b5:92:38:
3b:49:a3:cf:ce:6d:e1:f4:d6:67:01:89:78:e2:8f:
30:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CA:CF:DC:B5:F3:A8:2C:85:D7:70:14:48:A1:67:A6:C5:F7:20:30
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/a8rP3LXzqCyF13AUSKFnpsX3IDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.108.199.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:a2:fe:05:18:e8:dc:49:71:30:1e:e6:81:40:c4:97:75:62:
65:a3:07:b3:70:05:55:52:98:58:84:7a:f1:eb:06:50:11:8f:
ed:60:f1:c2:c2:9b:5c:65:ed:d6:8d:53:23:6a:b1:ea:36:91:
f2:2d:e6:d2:23:e9:52:c0:8c:94:69:3c:0c:89:2c:de:4c:61:
65:3d:19:4a:c6:76:9b:3a:08:95:13:a0:b3:f2:6e:5b:03:b0:
ad:26:09:09:20:0b:d1:07:6c:0c:a5:f6:e9:1c:ea:94:94:4d:
8b:21:ec:25:24:3e:3c:11:7b:f4:7a:4a:0a:e0:92:a3:b1:c2:
13:c0:60:a4:b5:77:cf:37:a3:ce:19:4f:8c:61:7f:f7:b7:09:
47:33:84:20:38:d0:72:3e:1d:45:a2:3e:7b:63:25:ea:c3:04:
05:18:82:45:65:dd:84:3f:4f:af:a4:89:40:d4:3e:d7:28:ad:
a4:63:e4:28:e2:c0:c6:7d:a7:48:d5:f4:5a:7f:8e:45:5b:45:
a0:9d:f7:ed:09:d2:b5:86:d8:aa:a1:3d:58:86:d4:b2:18:f3:
b2:23:50:0c:44:f2:81:2c:da:1f:39:20:38:a8:c7:cb:a5:85:
08:87:ea:b8:1d:2b:11:41:e9:ea:aa:c4:28:cb:91:5e:14:c7:
02:ac:75:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org