Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/3iUJ9lKQUoV9PC1FeIWFPMh2cu8.roa
File: 3iUJ9lKQUoV9PC1FeIWFPMh2cu8.roa (raw, json)
Hash identifier: 5k/msAkdHnPO70szTE8u3zSX4wIVjiNujfHFwx0R/to=
Subject key identifier: DE:25:09:F6:52:90:52:85:7D:3C:2D:45:78:85:85:3C:C8:76:72:EF
Certificate issuer: /CN=18e1732f2c80e3ea4d7279d252b874a6164c35b4
Certificate serial: 0182BFAC98A0E21D1C494F2FD167E41A8250
Authority key identifier: 18:E1:73:2F:2C:80:E3:EA:4D:72:79:D2:52:B8:74:A6:16:4C:35:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOFzLyyA4-pNcnnSUrh0phZMNbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/3iUJ9lKQUoV9PC1FeIWFPMh2cu8.roa
Signing time: Sun 21 Aug 2022 09:12:15 +0000
ROA not before: Sun 21 Aug 2022 09:12:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213220
IP address blocks: 2a0e:c147::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:bf:ac:98:a0:e2:1d:1c:49:4f:2f:d1:67:e4:1a:82:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e1732f2c80e3ea4d7279d252b874a6164c35b4
Validity
Not Before: Aug 21 09:12:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de2509f6529052857d3c2d457885853cc87672ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:21:98:91:67:cd:8a:76:2f:de:10:aa:95:d8:
1e:73:7d:d8:43:df:7c:48:05:a2:d4:3b:ec:92:3e:
a3:fe:d2:50:2a:21:58:65:02:b8:40:49:4b:52:5c:
d8:93:9a:65:78:56:f2:2a:59:3f:a4:23:b0:a3:3d:
dc:6e:a0:53:1d:9c:d4:91:e7:e4:13:0b:d9:7b:b9:
62:ed:4f:15:4b:80:60:b7:34:58:7c:1c:8e:83:f8:
5c:04:6d:09:24:48:59:8f:8a:b5:4c:c5:bf:ee:d4:
8e:bc:73:1f:f0:e1:fb:71:c2:8a:5c:ab:bd:d0:16:
2e:91:8c:ef:bc:16:3e:ee:d5:fe:e1:de:ff:fe:13:
68:6b:d8:08:c0:4f:0b:a8:76:12:87:fa:fe:c7:07:
cb:f9:14:6a:28:76:bf:43:a4:fa:da:c0:9a:90:15:
02:da:b8:d5:f8:77:80:0a:17:76:4a:8f:25:9e:99:
44:c4:a4:36:d2:d8:26:a9:fc:73:63:b0:02:1c:25:
27:ed:0c:db:b1:b8:13:d6:47:2f:eb:f3:19:21:bd:
18:b4:fe:b3:66:53:57:a8:ec:9d:f4:87:0d:a0:b9:
60:06:78:96:5d:c3:05:22:3a:33:54:a0:ca:ba:d6:
04:48:ee:dd:ea:05:bd:be:80:df:b1:76:e6:f9:49:
be:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:25:09:F6:52:90:52:85:7D:3C:2D:45:78:85:85:3C:C8:76:72:EF
X509v3 Authority Key Identifier:
keyid:18:E1:73:2F:2C:80:E3:EA:4D:72:79:D2:52:B8:74:A6:16:4C:35:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOFzLyyA4-pNcnnSUrh0phZMNbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/3iUJ9lKQUoV9PC1FeIWFPMh2cu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ace18f-ed7c-479f-855d-e409260015ef/1/GOFzLyyA4-pNcnnSUrh0phZMNbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:c147::/32
Signature Algorithm: sha256WithRSAEncryption
53:c1:6b:a1:ac:db:61:46:3b:59:d1:ce:fe:a3:0c:a1:ca:a2:
3a:05:51:f3:55:b9:27:0e:12:3c:8b:7f:70:a8:92:bb:bd:73:
07:ae:e1:3b:d9:94:97:41:2e:13:d2:0f:fa:59:bc:d0:25:5d:
25:cf:72:df:79:0d:f9:d0:3d:e7:8b:3e:67:db:de:f0:55:90:
1d:b1:81:7d:c4:f0:f7:ce:9f:d5:36:57:c2:55:03:99:9c:82:
ef:0a:21:da:1c:49:bb:d1:d1:78:34:d6:bf:22:7f:2c:19:a1:
92:c4:4b:93:ea:36:fe:4f:0d:4e:4a:2f:22:17:c6:d5:3b:00:
74:32:12:88:2a:5e:ec:6a:53:7f:2d:a4:ba:c3:fc:f3:ed:3d:
30:e5:15:d3:c3:f8:d6:6b:0a:49:d2:8c:da:5e:d8:f9:1d:d0:
79:92:30:8f:18:d6:b8:4b:75:0e:78:50:cd:e1:32:b5:8a:3f:
f5:2f:a2:b4:44:a3:1c:75:26:e8:db:4d:e8:8e:94:f5:2e:4f:
cd:79:52:2f:fa:73:08:40:e6:b2:85:fa:ad:dc:91:75:a2:e6:
1c:8c:e1:ac:97:52:18:82:e9:dd:50:10:82:29:1b:1a:3b:31:
ca:65:36:e4:b7:0a:b5:65:a9:fc:3c:27:66:9a:48:99:b6:19:
fb:4e:ee:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:58 2023 by rpki-client on console-fra.rpki-client.org