Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/tauPGKi94VwlmfuuZ9gjCCR4hCI.roa
File: tauPGKi94VwlmfuuZ9gjCCR4hCI.roa (raw, json)
Hash identifier: NTnj3/Tj/BEL4MGW5x9FvpPI1Cfbhkp0lrBGzFAt4ak=
Subject key identifier: B5:AB:8F:18:A8:BD:E1:5C:25:99:FB:AE:67:D8:23:08:24:78:84:22
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 0FEB2144
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/tauPGKi94VwlmfuuZ9gjCCR4hCI.roa
Signing time: Sat 01 Jan 2022 07:00:29 +0000
ROA not before: Sat 01 Jan 2022 07:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2259
IP address blocks: 134.158.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267067716 (0xfeb2144)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Jan 1 07:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5ab8f18a8bde15c2599fbae67d8230824788422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d4:7d:c5:18:ae:98:23:70:a5:7c:d1:f3:0a:
46:39:c6:42:9e:14:76:2b:71:5a:6f:33:40:4e:6a:
e6:0a:3c:b4:f5:72:b5:1f:ef:95:ac:e0:7b:51:4b:
a9:c1:5b:a7:21:5e:98:4e:43:80:85:21:21:41:0e:
c3:a2:d0:4e:5e:7a:c0:0c:97:18:1e:15:4d:dd:0c:
bf:84:97:71:5f:02:78:8d:f8:f0:b5:10:fe:3e:87:
dc:50:1c:fd:72:44:bb:29:88:44:79:45:44:a4:b3:
4e:14:17:b2:b9:c3:e4:ea:66:05:77:e8:a5:a3:b3:
52:47:24:e2:7b:9d:9f:27:30:25:6e:41:ef:fd:d3:
9b:20:5c:61:fe:9b:4f:f4:94:c5:9f:65:c9:b5:1a:
ce:de:3d:b7:48:fb:4e:e7:46:8d:a0:c5:f7:4b:c1:
91:75:3c:1d:f3:d6:00:8c:ac:94:03:9b:29:f5:1b:
e1:82:87:93:f9:1d:de:cd:c6:6b:c0:4b:a5:d1:b5:
65:ce:5d:de:fa:ec:b6:1e:14:77:bf:78:20:90:cc:
a3:3f:08:dc:24:4f:e5:5e:d0:f5:f4:f6:35:96:4f:
27:15:a5:77:20:94:8b:87:a1:1a:04:0d:39:1d:4a:
65:4c:20:93:51:39:11:ee:d1:a0:a2:fb:78:be:ae:
ff:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AB:8F:18:A8:BD:E1:5C:25:99:FB:AE:67:D8:23:08:24:78:84:22
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/tauPGKi94VwlmfuuZ9gjCCR4hCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.158.144.0/21
Signature Algorithm: sha256WithRSAEncryption
02:fa:d0:6f:ff:6c:11:87:5c:05:f8:1a:7b:7e:26:b6:65:df:
52:e0:a5:4a:36:19:2c:ae:2d:56:8d:a0:cd:b6:ab:ee:e2:77:
91:8a:f8:24:9b:06:ea:cf:78:44:2f:ff:1c:37:59:60:1d:1b:
e1:75:5f:85:56:e2:08:49:e9:bd:8b:10:e0:59:f9:1a:b3:c2:
fe:95:1f:12:e6:bf:0c:24:49:fe:67:18:8f:ca:36:a8:eb:1f:
19:d5:4d:49:74:cb:f5:16:37:33:56:88:14:a4:91:f7:12:3e:
93:a3:ae:59:11:b3:84:85:6c:3d:72:05:9b:1d:6b:72:3e:a3:
47:b2:8c:06:69:c1:42:71:aa:0b:c1:ca:fe:a2:44:ef:ca:96:
3c:6c:09:70:6a:7d:db:65:5a:cb:fe:ee:26:cb:3b:51:45:0b:
c5:93:38:5c:d5:44:42:dc:f1:13:47:db:d5:10:b0:54:72:06:
14:02:7a:55:da:d2:8a:2e:2e:93:e1:1e:7c:00:6c:46:e0:5d:
31:c9:86:09:59:35:83:c9:ab:74:97:25:54:ec:d5:2c:6b:fe:
81:64:9d:0e:8c:49:30:6c:9b:a7:06:b1:9b:8b:9b:47:e9:5c:
e7:a6:bf:f6:ea:63:53:e0:56:a8:80:71:9e:99:89:4a:d0:4e:
e2:fd:bf:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:01 2024 by rpki-client on console-ams.rpki-client.org