Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/1jAZBgPhQTTMVupt84EfXEPnA4s.roa
File: 1jAZBgPhQTTMVupt84EfXEPnA4s.roa (raw, json)
Hash identifier: uoG4djXClbIocXCsEmVl0bAP6EsskqMtVhUbXkwFuR0=
Subject key identifier: D6:30:19:06:03:E1:41:34:CC:56:EA:6D:F3:81:1F:5C:43:E7:03:8B
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 23735320
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/1jAZBgPhQTTMVupt84EfXEPnA4s.roa
Signing time: Sat 01 Jan 2022 03:54:19 +0000
ROA not before: Sat 01 Jan 2022 03:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 147.161.253.0/24 maxlen: 24
147.161.255.0/24 maxlen: 24
147.161.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 594760480 (0x23735320)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: Jan 1 03:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d630190603e14134cc56ea6df3811f5c43e7038b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:96:30:0a:45:61:19:c2:8f:4b:dd:98:d1:2d:
52:6c:25:eb:2f:a4:78:8d:f7:ab:9b:36:9a:a8:db:
c5:a7:14:cc:9d:22:ea:51:ae:f5:52:b1:15:bb:36:
64:e0:73:5b:5a:e0:9c:2b:75:89:59:a2:ca:a0:88:
d0:f6:9d:79:99:c9:ed:58:96:f0:0b:6f:58:04:0b:
ed:79:57:a6:08:95:df:9b:72:df:ff:91:67:7c:d4:
c5:7a:60:f6:9a:c5:c3:f2:72:43:89:b6:a9:22:38:
70:13:c8:1a:0c:61:3e:c9:fc:a0:66:5c:dc:96:bb:
49:ef:af:35:bd:a9:7e:00:31:a1:1f:93:c4:49:64:
17:cf:8e:8c:c2:9c:ac:c7:f1:18:77:39:56:10:8d:
a4:38:68:40:62:96:93:34:58:4d:e8:e8:44:80:48:
18:be:14:d2:ae:01:2c:73:77:56:aa:cf:c1:d6:4e:
fa:a0:95:61:56:85:e4:7f:8f:f3:26:96:74:65:83:
0f:4c:71:b1:89:5d:a7:ff:fa:5a:94:d9:98:df:cb:
88:26:36:e8:d9:43:8a:95:91:c8:64:52:10:fd:72:
14:e3:3b:be:d2:e7:d1:19:03:10:ae:08:60:5c:c2:
ad:4c:20:eb:de:75:57:e1:2f:f2:77:75:a1:4c:2e:
4a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:30:19:06:03:E1:41:34:CC:56:EA:6D:F3:81:1F:5C:43:E7:03:8B
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/1jAZBgPhQTTMVupt84EfXEPnA4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.253.0-147.161.255.255
Signature Algorithm: sha256WithRSAEncryption
07:64:0a:6c:a0:b6:86:29:b9:f5:c3:11:a8:39:c6:6a:0b:aa:
e3:57:9f:71:bc:6b:b6:6f:b2:ef:fe:f2:d4:67:c8:ab:1d:c0:
5b:60:4f:bd:32:c8:96:6d:23:75:f7:95:a6:70:9e:88:ed:a6:
9b:62:6e:c3:c2:95:d3:a4:4b:37:15:c6:e5:bd:8b:3c:1d:b4:
d5:aa:64:03:64:12:f3:2c:6a:f7:ed:99:ce:93:ed:78:4b:ce:
f7:e9:a9:db:fe:b9:0b:35:6f:4f:83:78:68:7c:17:75:9c:d5:
89:bc:40:ef:ae:22:4c:7d:34:3a:42:22:b1:57:13:98:12:53:
16:c5:ca:45:1b:31:f8:fc:23:04:97:55:ab:ea:03:c7:bf:7f:
b5:f3:be:32:41:be:0c:5a:b7:2d:79:85:85:e2:68:e9:3e:ec:
b7:11:86:74:31:9b:9f:7d:3a:46:1c:27:65:6f:81:47:e7:6b:
d9:c7:69:e6:2b:65:1a:5d:c7:69:8b:41:0b:82:50:73:ff:16:
af:e8:9b:a6:c0:21:7e:d6:37:21:88:eb:7b:fc:4d:a2:dd:65:
4e:a7:c0:7e:f2:e0:d0:1f:23:b0:68:2a:b9:5b:cb:03:85:9c:
ca:a7:9d:bb:66:86:fe:c3:d7:d7:99:bb:10:58:22:95:6f:e1:
11:48:7b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:09 2024 by rpki-client on console-fra.rpki-client.org