Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/006d43-3dbf-4cf8-815d-5dc2fa6a3503/1/vpHdkuI38RhhpeZeC-vLfPXCB0Y.roa
File: vpHdkuI38RhhpeZeC-vLfPXCB0Y.roa (raw, json)
Hash identifier: LZLgiMEZiKLLiyJqdDwbGOLSbmWZEpb0VF2oiL+QZko=
Subject key identifier: BE:91:DD:92:E2:37:F1:18:61:A5:E6:5E:0B:EB:CB:7C:F5:C2:07:46
Certificate issuer: /CN=cd65ee23bff42ccf679d7377fe4da695d341aef0
Certificate serial: 09D49F87
Authority key identifier: CD:65:EE:23:BF:F4:2C:CF:67:9D:73:77:FE:4D:A6:95:D3:41:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWXuI7_0LM9nnXN3_k2mldNBrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/006d43-3dbf-4cf8-815d-5dc2fa6a3503/1/vpHdkuI38RhhpeZeC-vLfPXCB0Y.roa
Signing time: Tue 10 May 2022 09:11:11 +0000
ROA not before: Tue 10 May 2022 09:11:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51013
IP address blocks: 213.188.152.0/22 maxlen: 22
213.188.156.0/23 maxlen: 23
2a02:250:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164929415 (0x9d49f87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd65ee23bff42ccf679d7377fe4da695d341aef0
Validity
Not Before: May 10 09:11:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be91dd92e237f11861a5e65e0bebcb7cf5c20746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:21:51:ad:16:b9:f9:b8:eb:f4:ac:2d:9d:0b:
c3:13:67:fd:fb:1e:99:7f:bf:94:43:46:0e:05:e5:
0c:22:86:44:2a:13:5c:e2:6f:ab:71:0c:38:a0:af:
9c:9a:ba:aa:30:18:f6:78:fb:30:54:fd:ec:1b:3e:
8c:4a:1c:e0:c6:3f:6c:df:e7:8d:e4:11:a1:5d:f2:
0e:fd:a6:f3:2c:61:dc:8a:82:4a:e6:b9:92:74:74:
f5:41:4f:df:49:66:db:dc:52:16:2d:c7:12:1c:04:
3d:fc:2d:d3:ac:82:61:0f:48:6d:e1:bf:19:91:50:
95:f7:c6:98:c0:cc:9a:67:ff:b1:59:0e:e8:8c:8c:
9c:fd:de:7d:da:9c:b4:7f:d9:36:d5:af:3e:57:f4:
db:82:fc:d9:08:22:34:37:1d:db:09:96:ec:16:95:
a2:2b:9b:f4:bb:60:f8:a9:75:1b:04:19:3d:47:f0:
89:e5:60:e3:f3:89:77:37:58:ea:a2:3a:0e:14:84:
16:bc:0f:9f:be:fe:d8:de:65:7f:6c:72:46:5f:40:
f6:78:17:66:2f:3b:a1:68:01:00:7c:d6:76:f6:08:
39:34:1f:ec:48:2d:e4:18:42:3f:71:0e:b4:03:a9:
85:f7:67:6b:cd:17:b7:77:de:a2:47:de:3c:3b:52:
aa:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:91:DD:92:E2:37:F1:18:61:A5:E6:5E:0B:EB:CB:7C:F5:C2:07:46
X509v3 Authority Key Identifier:
keyid:CD:65:EE:23:BF:F4:2C:CF:67:9D:73:77:FE:4D:A6:95:D3:41:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWXuI7_0LM9nnXN3_k2mldNBrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/006d43-3dbf-4cf8-815d-5dc2fa6a3503/1/vpHdkuI38RhhpeZeC-vLfPXCB0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/006d43-3dbf-4cf8-815d-5dc2fa6a3503/1/zWXuI7_0LM9nnXN3_k2mldNBrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.188.152.0-213.188.157.255
IPv6:
2a02:250:2::/48
Signature Algorithm: sha256WithRSAEncryption
bd:e4:34:d9:5b:50:c5:ba:1b:9a:73:0d:24:3c:8d:82:c5:e0:
e0:fb:04:22:b8:6f:16:bf:8c:be:36:54:03:fc:40:f4:59:e9:
6e:f0:b5:d4:f5:4f:32:07:ef:01:f1:53:96:09:51:ab:37:99:
fb:63:ae:46:5b:b4:5d:47:4f:b1:5a:7a:8a:4b:f0:f1:75:a6:
bc:4a:37:04:af:19:c5:13:fa:a0:17:d7:de:e8:5f:59:47:a6:
94:c1:a0:ce:47:77:51:78:cf:42:2e:be:01:57:0d:1c:3a:e5:
39:1e:b6:46:86:4a:a3:9d:b9:6a:93:7c:db:e9:3d:6b:fd:07:
48:df:b2:92:71:ae:53:35:c8:32:f4:ff:9c:9f:01:37:c4:42:
d0:62:89:9d:bf:ae:ac:c8:79:11:f4:71:9e:bd:a3:4e:72:2b:
6b:d2:22:cf:74:16:a2:10:e9:58:40:48:23:14:f2:41:66:08:
7e:eb:9b:5a:ed:95:16:2e:1c:b3:44:95:41:70:61:cc:0b:22:
41:22:74:c8:d1:97:03:14:4a:e8:c8:0e:46:7e:1e:55:1a:81:
55:46:e0:56:18:94:fb:84:38:c3:c2:2a:e5:c7:f3:d0:46:6b:
06:d5:76:64:e6:08:b8:a4:57:16:f9:a7:cd:b2:d4:dd:59:9d:
40:5d:94:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:03 2023 by rpki-client on console-ams.rpki-client.org