Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/FxDro0kfaSqiIEZ9JGoEa7uWRng.roa
File: FxDro0kfaSqiIEZ9JGoEa7uWRng.roa (raw, json)
Hash identifier: 1d7FJiTxRSmeZv21erDiVEefs/g57EhlQCzAFmyEa/o=
Subject key identifier: 17:10:EB:A3:49:1F:69:2A:A2:20:46:7D:24:6A:04:6B:BB:96:46:78
Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Certificate serial: 09ED08C5
Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/FxDro0kfaSqiIEZ9JGoEa7uWRng.roa
Signing time: Mon 27 Jun 2022 12:09:02 +0000
ROA not before: Mon 27 Jun 2022 12:09:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12574
IP address blocks: 213.160.64.0/19 maxlen: 24
2a00:17d8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166529221 (0x9ed08c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be
Validity
Not Before: Jun 27 12:09:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1710eba3491f692aa220467d246a046bbb964678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:58:91:16:f9:c3:a3:ba:47:65:02:6e:2c:9a:
e7:8f:2c:f0:3d:1b:cf:53:4a:08:3b:42:21:7f:22:
e2:42:b4:62:f2:0d:9e:c3:ee:59:f5:27:fb:cc:b1:
2e:96:e8:9e:0e:a3:4e:b3:72:27:8d:4b:9a:08:23:
0a:5e:93:2f:ad:f1:3c:6b:b6:66:3d:95:9b:a9:58:
d8:db:6b:7a:ad:13:28:3a:3c:d4:43:3a:5c:94:6c:
57:7a:1b:c2:3b:25:a4:6d:20:ff:00:e6:0d:20:a3:
69:a9:d5:6f:17:4b:ba:1f:fd:1c:00:39:98:29:77:
b8:12:b2:8b:8c:09:f3:22:dc:d6:2a:14:54:43:af:
9d:01:71:c9:c0:93:6f:34:23:3d:b3:32:15:39:d0:
ba:85:17:a2:48:b8:07:75:5c:54:bc:32:28:91:ec:
c1:66:a9:5a:50:f7:de:55:b2:12:63:81:ae:a7:f8:
49:0d:bf:42:21:df:0e:fa:71:a8:e3:49:3c:73:9f:
c7:55:80:e7:03:57:a8:e6:0c:a4:94:82:80:51:0a:
cf:de:2b:7a:57:b8:93:fe:da:6b:e6:5d:5b:07:80:
1a:a5:2c:a7:d4:94:05:72:2e:e4:16:63:7d:49:5b:
d4:fc:2b:10:c9:8c:cf:cf:c2:9b:14:85:07:82:57:
dc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:10:EB:A3:49:1F:69:2A:A2:20:46:7D:24:6A:04:6B:BB:96:46:78
X509v3 Authority Key Identifier:
keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/FxDro0kfaSqiIEZ9JGoEa7uWRng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.160.64.0/19
IPv6:
2a00:17d8::/32
Signature Algorithm: sha256WithRSAEncryption
3f:b7:cd:41:28:1d:fa:05:1b:7c:28:0c:9c:b5:65:4f:01:a9:
70:4d:f7:fd:91:28:2a:c0:7e:b5:bf:d2:4e:d7:17:a7:9c:1a:
75:6a:fb:7b:cf:68:90:60:f1:0b:aa:11:ec:04:6f:80:4a:5b:
d8:13:23:c8:77:85:f8:69:5b:1e:e6:30:2d:f7:b7:ca:48:50:
ff:00:6e:24:d1:99:4b:bd:c2:7f:f5:10:79:3c:3c:09:c9:9c:
63:f2:e4:ad:d3:ec:8a:e8:7e:16:c6:17:79:e2:ab:3b:9f:6f:
59:a8:3c:cd:35:79:e8:34:1f:59:e2:1c:ec:aa:32:60:d6:38:
02:da:86:b7:6e:0f:96:53:da:5a:69:a0:b1:6f:30:cf:36:8f:
a4:54:4a:ae:e2:3b:d6:da:9b:9b:09:1b:94:c2:17:e8:62:66:
f5:ec:24:d6:4d:8f:b1:42:a5:92:8e:f7:82:86:c8:04:71:e4:
df:0c:b6:eb:00:6c:90:ce:10:29:8d:68:bd:b9:92:39:4c:b5:
f9:74:8b:5d:62:03:b5:c0:1f:84:b2:81:47:0e:c1:95:bd:49:
22:28:7a:ca:ad:46:2b:e6:80:87:da:85:c9:74:23:44:78:14:
10:22:2a:26:47:37:87:ad:02:35:28:63:9e:fc:c4:10:da:79:
d4:34:e9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:41 2023 by rpki-client on console-fra.rpki-client.org