Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/1-N49nh1aNZk7hehO-_XIdw0BvoY.roa
File: 1-N49nh1aNZk7hehO-_XIdw0BvoY.roa (raw, json)
Hash identifier: lIcWHT5SILUZ6TRJLV/j9coX9uj0sKuhe/uDSVLLmgQ=
Subject key identifier: F8:DE:3D:9E:1D:5A:35:99:3B:85:E8:4E:FB:F5:C8:77:0D:01:BE:86
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1AF9F514
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/1-N49nh1aNZk7hehO-_XIdw0BvoY.roa
Signing time: Wed 26 Jan 2022 21:21:20 +0000
ROA not before: Wed 26 Jan 2022 21:21:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 103.35.56.0/22 maxlen: 24
107.181.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452588820 (0x1af9f514)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 26 21:21:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8de3d9e1d5a35993b85e84efbf5c8770d01be86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fa:e1:57:bb:10:44:12:1e:f7:4e:d8:45:1b:
94:c2:22:db:b5:2b:1a:d6:1c:82:14:31:45:6f:6e:
c6:df:dc:ab:14:c9:6b:2b:b2:80:fa:6e:d0:12:2e:
8e:1e:4a:e0:df:36:79:00:69:26:e8:01:c8:8a:d2:
dd:1b:59:ff:a4:58:e4:9f:18:ba:82:53:15:a7:9e:
0f:23:bc:9a:4c:7e:cf:a7:cd:e8:a6:6c:14:9b:95:
e7:e6:7c:6f:a5:88:b6:53:c8:72:3d:ba:5e:c4:c1:
d1:25:56:cd:fa:26:ed:2b:ac:32:f7:c6:eb:34:34:
3c:2c:31:21:cd:9d:b4:bb:95:bd:32:86:8f:f7:0c:
df:48:92:82:a3:0a:8c:88:17:39:41:94:ed:95:55:
8a:38:ca:06:40:a4:53:b4:cf:2e:85:5d:aa:94:fc:
1d:3e:3f:a5:b5:82:7e:c0:5a:66:70:f4:12:9e:8e:
bc:91:65:78:aa:d6:73:dd:04:36:99:a3:b2:5e:4f:
cb:27:19:42:63:33:ea:ac:9a:2d:3a:0b:f1:04:e4:
f4:75:28:41:ee:99:78:1d:37:b8:f9:96:ee:00:28:
00:76:8a:12:5a:0b:47:d8:ca:c2:c9:41:20:c4:34:
01:f8:dd:9a:46:fc:cd:09:86:af:4c:10:2e:d3:a7:
93:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:DE:3D:9E:1D:5A:35:99:3B:85:E8:4E:FB:F5:C8:77:0D:01:BE:86
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/1-N49nh1aNZk7hehO-_XIdw0BvoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.35.56.0/22
107.181.152.0/22
Signature Algorithm: sha256WithRSAEncryption
29:c4:ad:86:2b:bb:11:6b:fe:0f:bb:64:d3:7b:b5:8d:f0:cb:
97:af:f0:e7:bd:e2:98:a7:b7:94:be:85:6c:ec:d7:17:cc:ab:
6a:6b:d5:22:39:96:a7:4d:be:d3:63:39:3a:2d:07:fc:d8:da:
29:b9:fe:17:26:39:34:a6:79:06:50:97:64:02:16:ab:28:72:
ca:86:02:b2:93:7a:45:18:df:b5:c0:e6:71:f2:89:58:7f:14:
70:d3:e6:39:b4:a1:2d:a2:f1:a5:75:f8:9a:00:70:74:58:78:
b9:e1:f1:c9:d1:e9:2b:c5:4b:d6:d8:24:36:78:8b:cb:3b:b6:
74:ae:6a:b8:27:c2:4d:36:a2:48:af:11:f7:d8:9b:a5:48:e0:
d6:c0:79:f6:44:98:cc:0d:81:56:68:80:16:27:59:33:b2:cc:
46:f5:d0:cd:6a:20:c4:34:b3:f3:47:b9:b1:f2:dd:a6:6b:af:
29:13:c3:66:3c:50:c1:4f:bb:6c:63:41:e9:2e:91:66:d0:08:
ca:b1:97:71:80:4d:f4:a0:fc:51:5b:6f:34:02:1f:83:52:e7:
9b:12:44:6d:7a:c5:8b:56:20:cd:07:f9:5b:12:d3:5a:1a:54:
2c:33:fb:de:fb:88:c7:4b:f3:25:46:82:d9:9d:a8:13:18:4b:
91:a4:7e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org