Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/8976ed-da0a-49a5-a751-a871ecc212a6/1/vXXfMUhWtznTqyMqW529FiOK4Po.roa
File: vXXfMUhWtznTqyMqW529FiOK4Po.roa (raw, json)
Hash identifier: 1I6LSJNnvcgA0AttgVwKmeZ5KbnIKjV3OArvel5TjCY=
Subject key identifier: BD:75:DF:31:48:56:B7:39:D3:AB:23:2A:5B:9D:BD:16:23:8A:E0:FA
Certificate issuer: /CN=e8403b5e45cd58be5f6c5d33fa565ab49223e3db
Certificate serial: 373FC3BC
Authority key identifier: E8:40:3B:5E:45:CD:58:BE:5F:6C:5D:33:FA:56:5A:B4:92:23:E3:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6EA7XkXNWL5fbF0z-lZatJIj49s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/8976ed-da0a-49a5-a751-a871ecc212a6/1/vXXfMUhWtznTqyMqW529FiOK4Po.roa
Signing time: Sat 01 Jan 2022 05:59:18 +0000
ROA not before: Sat 01 Jan 2022 05:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16203
IP address blocks: 213.170.41.0/24 maxlen: 24
213.170.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 926925756 (0x373fc3bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8403b5e45cd58be5f6c5d33fa565ab49223e3db
Validity
Not Before: Jan 1 05:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd75df314856b739d3ab232a5b9dbd16238ae0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:97:04:78:de:d8:56:49:cb:ed:77:76:b5:95:
ff:8f:86:63:6b:9b:e1:4a:a9:99:91:59:69:93:bf:
53:7f:99:c9:65:3d:b9:a5:8b:0d:e0:b2:93:be:8e:
2a:52:e5:9e:36:b8:14:c8:e7:4e:4c:e8:0e:0a:4c:
49:55:46:27:e0:dd:5c:c2:58:82:10:34:a1:88:fc:
b3:17:84:1f:c8:77:5e:0f:f6:0d:3e:48:e6:09:c9:
72:13:fd:b6:e2:b6:e0:82:35:fb:2d:ab:d9:ae:57:
0d:70:a3:06:d0:74:b2:46:70:20:fc:62:7a:03:0f:
86:cb:8f:9a:2d:69:7e:86:72:41:66:ab:20:7b:2e:
9f:66:ac:d3:80:fd:25:8e:b9:7c:b4:21:3d:37:ac:
81:82:41:a2:13:6d:b5:d7:20:5e:61:56:73:1a:05:
79:7d:72:1b:3a:58:55:ab:52:65:21:92:36:7c:b7:
d3:44:a1:c6:d4:68:bd:8a:2f:b9:8f:3b:20:a7:5d:
38:ce:52:b0:cd:fb:6b:1c:1f:4e:31:00:3f:bb:5c:
13:23:20:62:7e:8c:96:36:aa:8c:77:1f:9a:14:f5:
e7:e1:dd:5e:f2:65:2e:35:76:f9:e4:42:16:f6:ae:
cf:0f:b1:c0:51:b0:58:2c:47:24:9a:66:dc:9d:41:
cb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:75:DF:31:48:56:B7:39:D3:AB:23:2A:5B:9D:BD:16:23:8A:E0:FA
X509v3 Authority Key Identifier:
keyid:E8:40:3B:5E:45:CD:58:BE:5F:6C:5D:33:FA:56:5A:B4:92:23:E3:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6EA7XkXNWL5fbF0z-lZatJIj49s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/8976ed-da0a-49a5-a751-a871ecc212a6/1/vXXfMUhWtznTqyMqW529FiOK4Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/8976ed-da0a-49a5-a751-a871ecc212a6/1/6EA7XkXNWL5fbF0z-lZatJIj49s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.170.41.0/24
213.170.46.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:14:e2:ba:96:77:47:6f:bf:84:35:1d:ba:19:80:ab:ed:b3:
ae:01:bd:69:9f:ee:9a:20:fa:6c:94:e8:ee:4f:50:ef:92:c3:
b5:c9:91:a8:2a:c0:9b:93:35:71:16:98:1f:4c:76:85:db:0e:
ad:1b:bd:e0:6d:2c:7a:92:71:89:b8:b6:79:d3:ed:7b:d1:d1:
6d:19:d6:86:58:f5:ca:7a:d2:53:00:95:e9:b0:4e:2b:8b:9f:
1d:9f:55:2d:e2:11:7e:65:5c:c2:61:3a:cb:20:36:bf:79:66:
87:8d:99:00:92:7a:d5:a1:bb:16:9e:f2:72:bb:68:e1:d3:d4:
20:d5:b4:78:78:fe:8e:17:a3:08:99:7f:79:d6:5d:90:b5:97:
6f:c7:e3:32:0b:80:d6:7f:d8:4d:01:6b:ec:7c:93:b1:bc:5b:
71:e7:d5:48:09:7a:c8:51:52:5e:20:0d:dc:cb:16:9e:0a:2f:
b3:6c:e1:fb:d7:09:5c:dd:44:21:68:36:ff:a2:01:06:8a:75:
6d:4d:99:3d:fb:b4:7f:95:8d:98:d2:c4:f5:4d:df:63:7d:ba:
fa:d3:d7:49:d6:4f:9b:29:90:c1:64:e6:97:c6:58:2e:9f:53:
c3:d4:db:83:01:ad:ba:37:27:41:17:ce:04:fe:e6:32:73:d3:
81:e9:86:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:43 2023 by rpki-client on console-fra.rpki-client.org