Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/qrKDBnzR2_w4gU5-tFO8NE78tHg.roa
File: qrKDBnzR2_w4gU5-tFO8NE78tHg.roa (raw, json)
Hash identifier: e7M/P8s10idq+DZOZgKwZe8S7O68nDAhYhv6m11/anA=
Subject key identifier: AA:B2:83:06:7C:D1:DB:FC:38:81:4E:7E:B4:53:BC:34:4E:FC:B4:78
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 01826E02A47E084E96F23C60E24FEF56D210
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/qrKDBnzR2_w4gU5-tFO8NE78tHg.roa
Signing time: Fri 05 Aug 2022 12:37:23 +0000
ROA not before: Fri 05 Aug 2022 12:37:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58271
IP address blocks: 213.21.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6e:02:a4:7e:08:4e:96:f2:3c:60:e2:4f:ef:56:d2:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Aug 5 12:37:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aab283067cd1dbfc38814e7eb453bc344efcb478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6a:31:a1:af:8f:1e:fb:ff:2a:e3:f7:40:57:
14:e6:73:e5:c7:b0:b4:d2:bc:47:3b:10:62:a0:ad:
b2:98:d6:10:ec:b6:06:ed:f1:97:43:2f:b7:65:bc:
5d:78:1e:fe:96:9c:ed:01:3d:32:e9:4c:98:c6:b3:
05:e6:df:99:4e:f5:cb:22:d0:ab:5a:30:4a:c7:5c:
89:d4:8b:a9:c1:2c:57:0c:9d:9f:9f:25:e3:1e:c1:
22:16:90:91:4d:bd:11:df:6e:ba:16:f1:35:8b:f8:
14:68:1b:44:d2:61:94:bc:5e:0f:30:00:ad:44:47:
0d:59:ba:a9:49:0b:8c:fd:ab:9b:7f:66:16:3c:07:
6d:cf:e4:cd:ea:7d:5b:49:cd:be:b3:90:b7:7c:e2:
17:40:24:25:3d:fb:db:36:51:05:e8:30:f9:89:74:
db:90:01:7d:11:79:c2:4d:d8:4f:5a:dc:80:dc:e8:
41:0a:f4:0f:21:cf:5d:9e:8f:96:f6:de:4b:6a:c0:
49:cb:33:14:07:f6:cb:77:52:be:31:62:e0:f0:1a:
47:a2:2b:5b:6e:35:50:ac:16:77:ce:f6:a4:8c:f3:
85:7b:89:7b:40:6e:36:2c:c2:d7:1c:52:9a:31:2c:
28:1e:a7:f9:17:7d:19:c9:ae:c9:a7:9b:7b:f5:97:
88:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B2:83:06:7C:D1:DB:FC:38:81:4E:7E:B4:53:BC:34:4E:FC:B4:78
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/qrKDBnzR2_w4gU5-tFO8NE78tHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.21.237.0/24
Signature Algorithm: sha256WithRSAEncryption
87:a2:31:6f:3e:30:d2:42:65:2e:3b:1f:b4:d1:d9:59:33:31:
02:3a:ae:88:d0:4e:50:e7:c4:25:e2:fe:fd:1d:8b:d5:b6:22:
a9:2c:b1:ff:61:c9:3f:03:a1:6b:96:89:16:1d:7e:03:fa:1c:
70:f1:ea:fb:4b:a2:6f:3a:a9:49:51:fc:0a:d2:5b:06:54:8d:
f0:d7:36:07:61:ac:73:ee:da:d4:30:aa:80:fc:0b:fe:6e:a1:
fb:72:bd:1c:73:70:5b:23:f9:a6:0e:57:68:67:66:3c:19:a3:
d8:ef:d4:c5:85:11:24:10:9a:6e:b3:1a:91:b6:ad:e0:86:f7:
a2:07:03:42:62:6b:af:70:19:fa:36:8d:e0:3a:4c:a1:bf:1a:
e5:e9:94:9d:38:d1:71:8c:e6:c3:5c:5d:d8:ed:82:a5:21:8f:
b7:97:16:9e:c3:84:68:e6:25:27:28:19:ce:51:05:10:d1:31:
f8:23:9e:67:23:1c:d7:bc:4f:ad:6d:df:8a:0a:cb:76:4c:ed:
0b:ca:6f:23:39:61:a8:8a:5a:e3:25:ff:e3:64:7e:8f:e9:24:
23:cc:10:5f:9f:4a:26:aa:d4:5e:21:e2:10:2e:ed:5b:8d:78:
d5:4d:a9:a4:c9:d6:26:44:12:02:53:91:2e:23:d0:e9:97:11:
96:9e:0b:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:38 2024 by rpki-client on console-ams.rpki-client.org