Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8b50e6-927a-4d3b-9422-e57fbdae5903/1/xUhUZo3eHOcs0pGG8qB2MhDZu5E.roa
File: xUhUZo3eHOcs0pGG8qB2MhDZu5E.roa (raw, json)
Hash identifier: kZyNxt5rejAFItrcfdizN6sUQSfZ207ulQ+sMGuGqx0=
Subject key identifier: C5:48:54:66:8D:DE:1C:E7:2C:D2:91:86:F2:A0:76:32:10:D9:BB:91
Certificate issuer: /CN=bc9ec8db59726075ee29f5efc90b61e73c07f7af
Certificate serial: 0184CC6B6363A934EC9175BFBFFF07CCB06F
Authority key identifier: BC:9E:C8:DB:59:72:60:75:EE:29:F5:EF:C9:0B:61:E7:3C:07:F7:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJ7I21lyYHXuKfXvyQth5zwH968.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8b50e6-927a-4d3b-9422-e57fbdae5903/1/xUhUZo3eHOcs0pGG8qB2MhDZu5E.roa
Signing time: Thu 01 Dec 2022 06:41:40 +0000
ROA not before: Thu 01 Dec 2022 06:41:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1926
IP address blocks: 153.1.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cc:6b:63:63:a9:34:ec:91:75:bf:bf:ff:07:cc:b0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc9ec8db59726075ee29f5efc90b61e73c07f7af
Validity
Not Before: Dec 1 06:41:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c54854668dde1ce72cd29186f2a0763210d9bb91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ce:c6:41:5c:40:87:c7:85:29:b3:a5:67:7d:
04:f7:7d:eb:30:10:51:cd:26:1b:eb:0e:3c:46:69:
2c:17:19:ef:bf:a1:7d:83:bb:dc:cc:78:df:c5:86:
b2:53:b4:2a:2d:06:dc:25:11:c1:39:3e:89:6e:fb:
79:f3:91:4d:ca:bb:9a:6f:2a:aa:d1:d8:e9:09:c0:
9d:6e:ea:00:62:25:d2:ae:bb:1e:57:c4:64:4e:83:
a4:1f:59:fb:a7:70:32:46:70:f6:4f:71:da:55:09:
d1:ab:35:24:ee:4c:df:ff:b1:08:ef:f4:e2:36:2d:
1c:d8:b7:3a:22:33:83:fa:39:ff:f6:2b:c7:1d:32:
50:fe:31:98:ba:cf:cc:1b:0a:3a:a9:61:02:cf:cc:
a3:3d:64:59:98:af:fe:4b:30:bd:b4:b8:e4:e8:eb:
7e:04:8e:df:4a:d3:11:da:62:a6:64:60:c6:86:ed:
18:9c:73:53:0e:39:d5:50:b0:63:e4:2b:69:2e:98:
7f:ee:a8:e7:d8:8f:3c:79:1a:1a:63:cc:2d:7d:67:
7d:4a:46:29:63:d4:b1:68:03:b9:fd:10:e6:39:ba:
88:c9:14:c9:9b:38:00:0a:21:04:81:98:37:8e:9e:
89:30:53:59:5d:dd:09:a2:7a:53:1b:51:f9:d0:b0:
52:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:48:54:66:8D:DE:1C:E7:2C:D2:91:86:F2:A0:76:32:10:D9:BB:91
X509v3 Authority Key Identifier:
keyid:BC:9E:C8:DB:59:72:60:75:EE:29:F5:EF:C9:0B:61:E7:3C:07:F7:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJ7I21lyYHXuKfXvyQth5zwH968.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8b50e6-927a-4d3b-9422-e57fbdae5903/1/xUhUZo3eHOcs0pGG8qB2MhDZu5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8b50e6-927a-4d3b-9422-e57fbdae5903/1/vJ7I21lyYHXuKfXvyQth5zwH968.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.1.0.0/16
Signature Algorithm: sha256WithRSAEncryption
24:28:4e:4a:39:4c:4a:b4:7a:22:cc:c8:2c:c1:e2:de:97:f5:
19:f9:dc:42:9a:bc:d1:29:fc:fd:1e:bb:60:44:eb:69:b5:c0:
20:01:a1:21:1e:32:a7:8d:48:7c:42:a9:d7:af:6d:ed:f2:7f:
f5:ef:e5:4d:d1:90:a4:4f:f3:4a:54:98:49:53:35:59:ea:ba:
ae:19:db:b3:13:31:90:b6:76:03:66:15:9b:79:62:96:0a:b9:
f2:a6:f5:e7:3d:72:c3:54:b3:3a:64:9f:34:2e:9c:0f:c0:10:
d5:49:d2:13:45:b3:21:69:af:bb:5b:00:54:28:bf:b3:1f:b8:
92:de:13:cc:15:ed:d4:a9:17:43:a5:7c:32:e7:95:08:61:08:
32:a3:8d:35:c3:2f:98:3a:d8:34:c9:04:86:c8:7c:6b:de:55:
c9:f3:a6:67:e8:e7:58:b7:3b:a5:1d:a7:c9:f4:71:07:be:34:
c1:62:59:72:70:b6:0b:45:14:ad:d6:b1:e8:24:19:13:b9:30:
88:6f:04:b5:3c:7d:37:e9:09:23:fb:4e:08:fc:f0:0f:64:5f:
6b:ed:af:c1:4f:0e:0d:a4:b4:4f:74:bf:1b:72:9f:58:44:91:
77:b4:3c:a4:4a:7d:c6:00:9c:14:7b:f6:fc:8a:e7:3a:4b:c9:
96:3f:89:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:04 2024 by rpki-client on console-ams.rpki-client.org