Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/93PSodxAI8_WoN8ithxuNfumA90.roa
File: 93PSodxAI8_WoN8ithxuNfumA90.roa (raw, json)
Hash identifier: gMPqihWH+Uo4NLXcsZc+pZ0SWco89fHqtfyg1OAojsk=
Subject key identifier: F7:73:D2:A1:DC:40:23:CF:D6:A0:DF:22:B6:1C:6E:35:FB:A6:03:DD
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 0184AE808C8FCD0AF15898D69A3819DA100C
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/93PSodxAI8_WoN8ithxuNfumA90.roa
Signing time: Fri 25 Nov 2022 11:16:10 +0000
ROA not before: Fri 25 Nov 2022 11:16:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36351
IP address blocks: 213.21.229.0/24 maxlen: 24
213.21.238.0/24 maxlen: 24
213.21.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:80:8c:8f:cd:0a:f1:58:98:d6:9a:38:19:da:10:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Nov 25 11:16:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f773d2a1dc4023cfd6a0df22b61c6e35fba603dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:98:e8:a9:aa:93:31:7d:cf:06:d7:57:f8:c8:
df:e7:b7:4b:1d:ed:93:55:52:53:30:28:a2:fc:7d:
27:45:38:3a:20:2d:e3:73:c0:5a:5e:2d:8f:87:d8:
26:f5:96:53:c2:f0:65:6c:98:f6:37:c1:5a:0a:b6:
33:ab:73:b3:7d:ae:a2:91:2d:29:fa:4a:72:91:8a:
1f:aa:63:29:b6:26:96:a2:f4:dc:69:9c:00:a3:d0:
41:bf:dc:d3:2a:0d:cc:b2:d6:14:3d:37:f9:4b:65:
b5:ab:c5:a1:73:d8:a0:e2:a3:17:2f:60:be:db:ff:
1c:b4:fc:34:7a:c8:b2:7e:1a:6f:ca:ec:d5:2c:75:
61:53:12:ff:a1:89:bf:fd:8b:7a:0f:63:6e:47:7f:
29:a8:d2:7d:02:a9:76:82:ce:8c:81:1c:18:26:fd:
bb:c8:6d:6a:33:0c:bd:26:f8:ac:9a:ae:db:c0:4d:
c3:61:ca:75:24:5f:a9:e8:eb:56:3c:c5:d6:64:d8:
46:ec:aa:67:18:75:79:e2:ee:16:56:2a:50:b1:01:
21:ea:10:ad:fa:17:57:68:c5:05:4c:e4:05:a8:08:
bb:6a:f6:80:14:9f:8f:d5:31:2a:39:c9:45:63:f0:
f1:de:5a:82:0b:f2:61:89:6d:ce:a6:db:e8:8b:5b:
bc:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:73:D2:A1:DC:40:23:CF:D6:A0:DF:22:B6:1C:6E:35:FB:A6:03:DD
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/93PSodxAI8_WoN8ithxuNfumA90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.229.0/24
213.21.238.0/24
213.21.248.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:9c:12:12:e2:c1:33:33:b2:5c:a0:4f:66:15:97:ef:ec:1a:
05:0b:d7:55:06:87:6f:57:fe:98:21:0c:18:39:98:85:2f:95:
a2:e2:7b:7b:35:21:35:d0:13:77:9b:a6:77:63:07:ce:30:a3:
5d:77:0c:7d:97:ed:91:99:8a:a0:6b:71:83:5c:91:60:e5:65:
b7:18:ad:83:a0:7a:17:84:0f:d5:44:28:45:17:b8:fe:02:e6:
a8:3a:46:59:7f:66:21:45:eb:ed:04:eb:16:e3:e0:f8:70:d1:
d3:1d:b2:99:fc:a3:7c:fc:12:85:9f:bb:48:2f:ab:f0:61:b3:
49:9e:63:cb:7c:70:ef:71:a9:70:c3:c0:37:40:f1:91:48:b5:
ad:19:26:7e:33:01:3c:52:43:c9:cf:3a:a6:60:e9:83:ff:ab:
94:26:2a:b1:22:e3:cb:f6:61:20:a3:0b:0a:d2:fb:d3:f9:36:
74:74:4c:4c:ea:60:ef:eb:76:21:1f:db:4f:6b:3d:c8:26:d4:
42:f5:2d:d5:cd:7d:85:36:5c:0a:e4:60:84:33:e0:d1:0a:86:
fd:c6:53:4d:6f:4d:dc:49:69:e8:65:54:c2:e7:3e:1c:17:71:
ac:14:79:05:71:1d:1d:31:d8:90:e2:49:00:19:78:8d:fa:3d:
11:d4:99:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:20 2023 by rpki-client on console-fra.rpki-client.org