Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/p8hVq_DmkopQ_5m8SwDfeleowvc.roa
File: p8hVq_DmkopQ_5m8SwDfeleowvc.roa (raw, json)
Hash identifier: 5UvysMfu6KkOo72KqnoWWWOcHRhLqK2yqxHiTFTmrZE=
Subject key identifier: A7:C8:55:AB:F0:E6:92:8A:50:FF:99:BC:4B:00:DF:7A:57:A8:C2:F7
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 018236C6526AD63582AAD5D339BB69E61CC9
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/p8hVq_DmkopQ_5m8SwDfeleowvc.roa
Signing time: Mon 25 Jul 2022 19:12:23 +0000
ROA not before: Mon 25 Jul 2022 19:12:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58271
IP address blocks: 213.21.232.0/24 maxlen: 24
213.21.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:36:c6:52:6a:d6:35:82:aa:d5:d3:39:bb:69:e6:1c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Jul 25 19:12:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7c855abf0e6928a50ff99bc4b00df7a57a8c2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:99:69:06:28:1f:6b:13:e5:9a:45:7a:38:14:
c0:af:20:2d:69:3c:8c:c1:ca:6a:07:17:42:10:52:
e2:ee:e5:0e:a1:fc:5b:2e:73:34:b3:2f:e7:b6:72:
9c:0a:a8:40:27:8f:3d:28:8c:4e:4e:44:e9:c6:20:
e2:fd:34:05:9d:ad:d6:df:a9:84:ff:3e:02:66:f0:
c0:1f:be:5d:c4:29:4c:50:e3:22:c8:d8:d6:c0:aa:
c8:8c:eb:45:cf:64:76:03:ac:13:0d:d8:25:a8:0b:
80:36:0e:7c:5b:76:d0:75:cf:de:12:41:58:27:d9:
9c:80:ab:51:9f:6d:97:a3:f8:4a:8a:72:92:ff:19:
f0:0c:8d:b0:81:b0:21:5f:69:16:1e:e1:5b:7d:8c:
4c:0d:0f:45:68:ce:38:a9:21:e1:8b:44:29:22:fb:
5a:98:50:1d:4b:a1:28:98:14:65:84:85:92:22:9d:
67:36:5c:14:35:97:cf:5d:7e:70:4b:8e:49:b0:25:
6d:58:70:f7:b5:10:48:87:00:68:a0:6b:59:64:b0:
63:2a:7b:66:04:f8:f7:04:c0:2a:3b:8e:09:fa:ca:
97:7c:9a:2b:d2:df:a8:3a:f6:c7:22:57:a4:b4:67:
b2:10:00:62:6b:9d:1f:8e:56:44:ca:03:ce:3c:0d:
b2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C8:55:AB:F0:E6:92:8A:50:FF:99:BC:4B:00:DF:7A:57:A8:C2:F7
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/p8hVq_DmkopQ_5m8SwDfeleowvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.232.0/24
213.21.244.0/24
Signature Algorithm: sha256WithRSAEncryption
06:18:4d:02:71:7b:9a:ee:6f:fc:6c:41:7f:9f:b6:71:6a:6a:
26:ee:70:63:58:06:31:16:45:e3:6d:e1:f4:85:53:96:28:63:
26:7b:ba:a3:4a:a0:08:6e:7b:2b:7d:78:8e:1b:d2:c4:6e:a9:
b5:1d:a7:d0:27:b7:f5:b6:5a:23:e2:ad:6d:56:d2:fe:c4:b3:
e9:c7:67:7a:a2:53:f8:b0:cb:4c:22:6b:14:99:65:4c:5b:7b:
a0:b1:2d:ba:b2:f1:c7:9d:78:ac:d3:ad:ee:25:83:6e:1f:5b:
12:a0:85:b4:b5:0b:b1:0d:9f:07:3a:93:2e:0c:09:96:da:19:
71:1d:0d:80:db:fe:97:7c:15:9a:1b:f6:ca:19:86:1e:9b:df:
e2:6f:76:98:4a:27:7d:f3:0b:1c:42:8b:05:7b:cf:fd:ae:8b:
17:9e:fe:d1:e5:26:fa:ba:11:65:ea:d1:29:5a:e8:1c:5e:f8:
69:fd:45:5e:66:fc:19:9c:fe:33:94:54:ea:38:d2:a3:80:e0:
7a:04:26:54:e2:39:f4:51:43:68:63:6f:b3:ac:99:97:59:87:
78:0c:97:aa:18:7d:b9:45:c4:8b:e8:b4:df:62:b3:b0:b2:62:
9c:1e:74:10:89:75:73:af:fa:2f:3d:bf:12:aa:ee:b1:9a:0d:
1c:c5:89:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:20 2023 by rpki-client on console-fra.rpki-client.org