Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/b96584-1f71-48bb-a021-a347b56f3b9a/1/F1Nld6PEGNOz27iFurzzEcd8css.roa
File: F1Nld6PEGNOz27iFurzzEcd8css.roa (raw, json)
Hash identifier: Gp4JHGsT1VuR3brray1/RWq4VtIbDKFCFVTdilGLunU=
Subject key identifier: 17:53:65:77:A3:C4:18:D3:B3:DB:B8:85:BA:BC:F3:11:C7:7C:72:CB
Certificate issuer: /CN=c4eb34dda2f8094968494892063351ee0f10e91a
Certificate serial: E719EE
Authority key identifier: C4:EB:34:DD:A2:F8:09:49:68:49:48:92:06:33:51:EE:0F:10:E9:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xOs03aL4CUloSUiSBjNR7g8Q6Ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/b96584-1f71-48bb-a021-a347b56f3b9a/1/F1Nld6PEGNOz27iFurzzEcd8css.roa
Signing time: Mon 17 Jan 2022 10:40:35 +0000
ROA not before: Mon 17 Jan 2022 10:40:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 152.89.228.0/22 maxlen: 23
45.80.250.0/23 maxlen: 23
2.58.176.0/22 maxlen: 23
141.98.68.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15145454 (0xe719ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4eb34dda2f8094968494892063351ee0f10e91a
Validity
Not Before: Jan 17 10:40:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17536577a3c418d3b3dbb885babcf311c77c72cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b9:55:d9:56:13:51:0b:50:93:32:1e:39:99:
a0:ca:52:c4:61:c9:bb:48:ed:59:0c:99:0f:c0:86:
be:b3:a6:08:1d:52:81:6d:4e:52:4d:c1:0a:2d:4d:
61:b4:3c:60:29:32:3a:d4:ee:50:89:ec:b4:89:b4:
3d:5d:47:f2:54:07:e1:a0:76:9d:59:be:de:c8:7f:
bc:4a:f4:1d:6e:1a:18:c9:0d:54:40:e0:ac:f2:7d:
94:f9:9d:73:c8:e8:2f:ee:44:4d:58:d3:a6:e5:f0:
9b:0a:68:41:ec:cb:93:23:18:e7:63:51:b6:c1:a5:
58:2c:1c:bc:ac:aa:a3:c2:96:48:ab:3b:bc:a4:d0:
f7:3f:c7:47:67:68:9c:54:46:a4:45:5a:60:74:8a:
a3:27:0e:1b:72:fd:eb:5d:44:86:81:15:28:a4:70:
54:50:81:c7:1c:97:ad:da:e6:05:9f:56:cf:9a:06:
3b:4b:e6:1c:d7:06:25:40:e0:87:6e:9e:0a:5c:01:
4b:13:fd:08:bc:48:24:f7:33:ad:0b:0e:f5:a9:54:
75:19:9d:e0:a5:be:80:54:e3:6c:c9:4f:30:d3:d6:
39:12:ce:69:f0:2a:f2:dc:f3:6d:87:ae:11:9c:59:
5e:06:84:1c:59:dc:ee:49:74:59:41:c6:e8:3a:02:
b1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:53:65:77:A3:C4:18:D3:B3:DB:B8:85:BA:BC:F3:11:C7:7C:72:CB
X509v3 Authority Key Identifier:
keyid:C4:EB:34:DD:A2:F8:09:49:68:49:48:92:06:33:51:EE:0F:10:E9:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xOs03aL4CUloSUiSBjNR7g8Q6Ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/b96584-1f71-48bb-a021-a347b56f3b9a/1/F1Nld6PEGNOz27iFurzzEcd8css.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/b96584-1f71-48bb-a021-a347b56f3b9a/1/xOs03aL4CUloSUiSBjNR7g8Q6Ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.176.0/22
45.80.250.0/23
141.98.68.0/22
152.89.228.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:44:5a:d6:08:1b:65:ac:c5:ba:eb:96:b0:89:6a:3c:0c:17:
6b:40:6c:4a:b6:20:1c:9a:40:5c:79:ed:ad:2e:9a:99:fc:d1:
ae:d4:15:32:e7:96:e9:5d:eb:52:24:c0:f4:be:87:0a:89:a2:
52:9e:0f:1a:e5:ad:d6:65:e3:43:d7:00:16:57:11:d3:0a:6d:
9a:dc:e8:c8:fc:c2:26:33:d3:a3:5e:76:1c:bc:3f:2a:f1:6b:
de:a0:1e:5d:b2:de:dc:7c:9c:d2:2f:49:3d:c8:97:86:95:a4:
bf:c0:5a:14:fa:61:b5:9f:97:5f:20:6a:85:ae:4a:0a:0b:98:
38:33:fa:5f:18:17:42:95:e3:76:5a:fc:da:3b:f7:fe:9a:96:
8e:bd:90:09:57:45:e4:22:f7:ff:bf:27:a3:43:15:52:4c:aa:
73:39:b5:eb:29:4f:1c:da:4a:38:3b:c8:d5:4d:75:96:13:e3:
0e:cb:dd:75:c4:22:6c:f5:42:a6:a2:c7:7b:3a:aa:2e:b7:62:
3a:31:5b:3f:4e:91:b3:db:f0:8c:cc:87:34:d3:b3:fa:07:96:
e0:4c:92:95:9b:88:41:31:8b:54:61:c2:de:4f:9f:85:34:04:
94:51:0d:41:ca:ab:9b:3d:9d:f8:d2:3a:7b:0e:24:e7:d4:90:
13:a6:30:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:22 2024 by rpki-client on console-ams.rpki-client.org