Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/1uQnfMLmE-yxdTlPq35gLsKLRWk.roa
File: 1uQnfMLmE-yxdTlPq35gLsKLRWk.roa (raw, json)
Hash identifier: KUV/MyEbGguaji0+gal+hLBoWKAsR0GJIHhIiMxQ6Xc=
Subject key identifier: D6:E4:27:7C:C2:E6:13:EC:B1:75:39:4F:AB:7E:60:2E:C2:8B:45:69
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 01852E9EF0921BF0C859BB4110BF5DA39DDA
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/1uQnfMLmE-yxdTlPq35gLsKLRWk.roa
Signing time: Tue 20 Dec 2022 08:20:46 +0000
ROA not before: Tue 20 Dec 2022 08:20:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8560
IP address blocks: 213.21.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2e:9e:f0:92:1b:f0:c8:59:bb:41:10:bf:5d:a3:9d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Dec 20 08:20:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6e4277cc2e613ecb175394fab7e602ec28b4569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:71:d3:07:a7:67:57:d3:4d:54:00:df:dc:fe:
02:4a:94:1d:77:a6:07:94:de:0e:38:4e:b5:8c:c1:
46:ee:64:9c:0d:8a:68:1c:a8:39:1a:4e:0b:13:e4:
bf:22:31:f4:fc:59:b4:bc:03:6b:80:5e:7b:27:1c:
4e:7d:4f:15:ed:ad:8a:51:97:eb:6b:f8:11:e5:dd:
13:40:cd:09:ec:58:22:aa:43:5d:93:0d:8c:63:88:
ed:68:48:a5:b2:ea:6a:e8:f5:c9:b2:52:ad:f7:ed:
94:95:4b:82:b8:5a:58:dc:a3:35:46:52:4d:19:b6:
71:6f:c9:50:b8:55:0b:df:f3:fb:a7:bd:e1:c1:a9:
b0:bc:dc:02:54:83:ce:84:0b:a8:07:99:09:8b:43:
f3:49:c2:29:23:55:ce:65:51:ce:44:67:08:c2:45:
21:76:56:5a:73:f2:f6:39:ac:d4:bf:82:0c:51:e8:
6c:d7:99:61:e2:5a:bc:f6:f6:13:83:0e:73:95:7c:
a2:38:ad:7e:5d:6b:40:62:cf:af:54:43:c3:d8:e0:
13:08:3d:e2:08:60:20:5e:d1:89:1b:7f:bc:4d:a5:
06:70:8f:71:39:e1:6f:03:bc:53:ab:f0:48:71:15:
37:b8:be:9a:27:d8:3f:24:40:d1:15:b2:64:f6:3a:
d1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E4:27:7C:C2:E6:13:EC:B1:75:39:4F:AB:7E:60:2E:C2:8B:45:69
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/1uQnfMLmE-yxdTlPq35gLsKLRWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.239.0/24
Signature Algorithm: sha256WithRSAEncryption
69:57:47:be:db:79:94:8c:42:75:cd:13:6e:ab:d1:00:36:c6:
16:8d:1e:34:15:90:bc:70:4c:bf:9e:de:28:dd:1c:1d:13:8a:
74:a1:51:1c:8c:4c:73:34:f3:cb:d5:25:f0:5d:17:a2:e6:fa:
b2:50:ec:89:43:32:ee:06:22:08:91:c4:8f:76:51:7d:7b:5d:
8b:32:6f:33:a8:9e:9a:6f:61:80:dc:5f:bc:39:86:e8:a2:b3:
02:64:97:fa:ac:b5:92:83:f6:e3:45:e9:53:ed:96:99:99:8f:
72:17:35:4f:98:c9:1f:57:0d:8e:f9:3f:6a:45:75:26:3f:b7:
d5:07:18:f1:bd:b4:b1:c8:95:ef:eb:31:d0:0b:cd:47:a9:21:
4a:7a:41:8d:8d:e7:bd:31:53:be:76:53:45:0e:b3:f9:aa:8d:
61:70:b1:88:05:e0:ac:ad:71:1e:b4:b8:d9:7f:c5:63:7c:e9:
21:b2:d3:b4:7d:9c:f0:4c:75:b6:34:bd:48:16:78:b1:3e:1a:
14:18:5c:51:64:33:c1:21:26:32:97:fb:b4:85:cd:8a:c9:d8:
60:8f:96:20:af:82:81:ba:ac:58:fd:5f:78:ec:50:81:f6:ea:
8f:20:8b:41:3d:23:95:01:42:c9:b2:50:20:27:5b:fd:3f:1a:
7c:eb:8a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:38 2024 by rpki-client on console-ams.rpki-client.org