Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/_S6HI9gQg-wWId6M3cQT-_lWN-Y.roa
File: _S6HI9gQg-wWId6M3cQT-_lWN-Y.roa (raw, json)
Hash identifier: fbQ2lWxaf+6nDQ4FgbPF9PRp2+sCfRSHMtYnZl6jX3k=
Subject key identifier: FD:2E:87:23:D8:10:83:EC:16:21:DE:8C:DD:C4:13:FB:F9:56:37:E6
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0489B80D
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/_S6HI9gQg-wWId6M3cQT-_lWN-Y.roa
Signing time: Tue 26 Apr 2022 06:29:01 +0000
ROA not before: Tue 26 Apr 2022 06:29:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48737
IP address blocks: 163.171.215.0/24 maxlen: 24
163.171.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76134413 (0x489b80d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Apr 26 06:29:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd2e8723d81083ec1621de8cddc413fbf95637e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4a:cb:25:68:3e:ec:37:b0:9f:a5:5a:75:b0:
28:25:fc:3d:67:00:55:63:df:bc:6c:c6:bf:17:cf:
8d:5e:8b:8c:36:77:5c:b1:f5:b8:8b:2d:d6:7f:42:
dd:e6:fe:72:18:e1:b9:19:d2:0c:99:17:45:30:66:
ba:6e:e3:e5:07:33:ef:e3:13:df:fc:78:40:4e:12:
ee:e7:67:4e:6a:de:d4:b0:20:68:89:b6:46:ad:ba:
40:c5:34:30:cf:6e:ba:51:ce:fe:5f:dd:08:a2:aa:
a9:c4:e8:2a:59:85:9e:00:71:fe:e5:24:e6:ad:cf:
1d:a6:00:ff:85:4b:b8:0e:04:d9:56:19:56:62:06:
73:d1:6f:04:14:f6:ab:7e:f8:00:5e:6c:e8:f1:7b:
db:d6:a2:1e:34:da:60:56:6c:41:e3:0e:5c:4e:2b:
16:ce:11:7f:e2:e8:de:4a:78:0b:c2:57:1a:5b:9a:
5c:91:8b:94:d0:7d:2c:5b:fd:23:0f:8a:4c:87:11:
58:fe:b9:5f:b1:68:c3:60:3e:05:cd:5e:6b:33:7c:
e0:50:8c:c3:72:d1:cf:a4:d6:81:ef:74:76:78:14:
ea:41:ab:32:c1:45:72:83:6d:4d:31:61:87:c8:60:
54:1e:a6:aa:d8:67:f9:22:44:74:63:01:3a:12:6e:
1d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2E:87:23:D8:10:83:EC:16:21:DE:8C:DD:C4:13:FB:F9:56:37:E6
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/_S6HI9gQg-wWId6M3cQT-_lWN-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.171.215.0-163.171.216.255
Signature Algorithm: sha256WithRSAEncryption
00:98:7b:e4:80:81:23:0b:0a:91:99:5c:86:16:5f:24:4e:ef:
25:b5:ab:a5:d5:70:9c:89:30:6d:72:80:3f:1c:43:99:27:51:
7a:7e:92:64:08:3d:e2:56:48:ad:13:f6:cc:e8:38:c1:13:9f:
6a:bc:7a:47:f3:2d:3d:fd:64:6c:73:24:9f:e6:de:4e:aa:ea:
c0:4c:e7:1f:2b:65:56:71:07:7d:95:7f:39:1f:81:6a:d7:59:
c9:26:c8:33:5c:1d:f4:25:9b:ed:3d:1b:20:06:a7:6f:3c:12:
87:35:9d:99:b7:02:84:81:a2:a9:f1:a6:22:0e:18:c1:15:e5:
51:84:46:8b:17:2b:b0:e4:3e:64:5c:f8:dc:d6:f2:fa:e2:85:
0c:41:c2:4f:e9:c1:d0:50:0c:c3:88:2f:0e:2e:6e:17:ae:e3:
91:ab:47:79:a9:0c:32:ba:e7:10:c4:b7:29:2e:d1:05:70:fd:
34:dd:18:2a:16:6f:a7:e5:c9:fe:9b:78:75:a1:c4:ac:9a:d5:
1b:5d:f9:0e:96:ef:0d:47:68:5d:84:00:f1:4c:04:df:9d:e6:
3a:8b:04:0c:4a:48:bb:c2:86:d1:5b:50:50:b5:04:05:5d:9d:
d5:31:d7:4b:20:4c:87:24:9c:dc:80:20:ce:91:b3:fe:3e:21:
53:6f:dd:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org