Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/Exyw8MTvBZEFwP5I5NvWNMX1Q_4.roa
File: Exyw8MTvBZEFwP5I5NvWNMX1Q_4.roa (raw, json)
Hash identifier: jAR5GX+1O0Pjp/CHOLrxwlweVZb0nwy0MVq2e+Rwc9I=
Subject key identifier: 13:1C:B0:F0:C4:EF:05:91:05:C0:FE:48:E4:DB:D6:34:C5:F5:43:FE
Certificate issuer: /CN=430a5648e1d46b662f4d1dcc066d39427c65f0d1
Certificate serial: 09354727
Authority key identifier: 43:0A:56:48:E1:D4:6B:66:2F:4D:1D:CC:06:6D:39:42:7C:65:F0:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwpWSOHUa2YvTR3MBm05Qnxl8NE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/Exyw8MTvBZEFwP5I5NvWNMX1Q_4.roa
Signing time: Sat 01 Jan 2022 01:56:04 +0000
ROA not before: Sat 01 Jan 2022 01:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 147.215.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154486567 (0x9354727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430a5648e1d46b662f4d1dcc066d39427c65f0d1
Validity
Not Before: Jan 1 01:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=131cb0f0c4ef059105c0fe48e4dbd634c5f543fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:04:06:fd:bc:74:c3:17:54:fa:a7:d7:1d:fb:
c4:6f:69:ed:58:77:a0:66:a1:91:f4:31:84:b2:ca:
b8:d5:8a:f7:bc:9a:21:3b:d2:e5:96:a0:db:56:e3:
91:4f:e1:48:85:ee:b1:44:f1:68:ff:30:bb:33:a8:
80:af:b5:4f:de:b8:77:36:24:cf:05:dc:6f:5a:6a:
a3:4f:12:ee:44:66:fe:2f:02:a1:eb:31:cc:2c:24:
a5:f5:25:61:85:a1:f0:81:f2:32:da:7e:05:9c:48:
ac:f8:45:d7:bb:1e:97:d4:99:d7:8d:a2:40:60:34:
04:92:6b:9e:71:69:a4:44:0d:e3:b5:02:1f:66:16:
cf:81:13:b7:e7:c6:e7:e9:5e:8c:8b:b5:52:70:4f:
1f:5a:89:0d:41:d0:08:db:d6:2f:1f:bf:23:b7:32:
2b:43:85:c2:c5:cf:33:dd:8d:b4:f4:0c:fe:a2:c1:
67:0b:a5:e7:46:08:20:5b:45:d3:bb:f3:5d:5b:38:
46:d3:c9:b8:93:d5:3a:96:3f:15:7e:30:15:f6:18:
25:d9:a4:9e:ec:f0:65:3e:67:8d:93:5e:df:7d:5d:
aa:48:b3:b0:9f:57:f5:af:c8:58:d9:78:e1:0b:3e:
29:0a:a0:f2:73:c0:a2:06:14:ef:11:a1:34:18:b3:
75:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:1C:B0:F0:C4:EF:05:91:05:C0:FE:48:E4:DB:D6:34:C5:F5:43:FE
X509v3 Authority Key Identifier:
keyid:43:0A:56:48:E1:D4:6B:66:2F:4D:1D:CC:06:6D:39:42:7C:65:F0:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwpWSOHUa2YvTR3MBm05Qnxl8NE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/Exyw8MTvBZEFwP5I5NvWNMX1Q_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/861c75-dd03-437b-9fc7-890522c6105b/1/QwpWSOHUa2YvTR3MBm05Qnxl8NE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.215.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:b6:37:e9:d4:9d:0f:01:5a:8f:55:4f:0d:d6:39:7e:b6:f8:
d7:50:c5:c4:12:a1:62:b4:8e:e1:02:c1:53:5b:93:fc:d7:9c:
64:e5:a0:f1:b3:7c:52:82:d1:6f:08:9b:a2:78:92:9a:d0:03:
f6:36:37:cb:a6:02:a3:c4:92:56:67:f2:ab:d6:96:bd:01:1f:
2c:8f:c0:9b:4e:e8:03:12:5d:29:39:80:cd:ad:52:cd:23:1b:
cd:34:3a:bf:fc:61:f4:3a:1d:6f:15:fe:29:73:e1:21:51:c9:
a9:99:98:fc:a5:65:d9:be:e7:a5:c7:c9:fb:82:9b:15:6d:7a:
9f:b2:97:07:05:71:76:35:4b:6f:db:57:0b:81:41:3d:0c:e4:
61:49:d8:ef:95:40:fc:8a:41:a6:6b:1e:43:5b:ec:7e:a0:4e:
be:31:78:37:1d:0d:2d:48:68:29:0c:e4:c7:3e:18:5e:69:71:
0e:10:c2:aa:de:3d:9d:bd:4c:0f:4f:b0:d2:6f:be:7d:7c:9e:
ba:b7:cc:f5:5d:be:88:79:f6:f4:10:0b:8d:87:18:2d:70:a9:
e4:49:09:fc:3d:65:ef:dc:d4:e3:5e:d3:dc:45:01:22:92:17:
be:a8:c7:2d:61:51:7e:ab:59:3c:ab:95:73:09:a0:f6:a2:11:
57:cf:ce:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:22 2024 by rpki-client on console-fra.rpki-client.org