Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/ARpjHmeOYT1y_O4cD9P78AO_KOc.roa
File: ARpjHmeOYT1y_O4cD9P78AO_KOc.roa (raw, json)
Hash identifier: RutP5bKmR4Od1RmhWG7fbxfj1Hy2OhFmEUyTt84dQBQ=
Subject key identifier: 01:1A:63:1E:67:8E:61:3D:72:FC:EE:1C:0F:D3:FB:F0:03:BF:28:E7
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 018428D57E876F4A95E40BF807C3172D7FDB
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/ARpjHmeOYT1y_O4cD9P78AO_KOc.roa
Signing time: Sun 30 Oct 2022 12:19:51 +0000
ROA not before: Sun 30 Oct 2022 12:19:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149440
IP address blocks: 198.105.127.0/24 maxlen: 24
198.105.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:28:d5:7e:87:6f:4a:95:e4:0b:f8:07:c3:17:2d:7f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Oct 30 12:19:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=011a631e678e613d72fcee1c0fd3fbf003bf28e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d5:6e:49:b1:b0:bd:36:0d:4e:20:eb:0c:ac:
16:35:54:bd:8b:6c:0a:ad:88:3e:a3:ab:ac:2a:e0:
fa:df:4d:76:41:24:43:8b:86:1d:a7:f1:02:15:ff:
a7:20:23:84:e8:50:2a:25:90:b4:8e:27:f0:60:e1:
ad:b7:74:56:a8:11:b7:dd:f9:0b:f9:49:20:0d:da:
0a:20:d8:65:27:bd:8a:29:34:f5:a1:75:44:e1:b3:
e3:d3:a1:18:3e:7d:93:24:eb:8d:a2:d9:be:a2:8e:
94:01:64:88:83:df:8d:66:7c:72:87:f8:ad:90:53:
71:46:ba:21:35:5b:dd:1e:ee:0d:92:3f:a0:88:5a:
87:72:b7:6c:1d:5e:2c:ea:b1:b6:ce:e9:fb:77:fd:
46:d9:d9:59:f7:23:5c:e4:d2:2c:e9:3b:9c:e6:c4:
98:09:30:b9:64:8d:11:85:37:74:ec:b8:d7:f0:fa:
77:55:b3:19:9c:26:86:f3:97:5c:58:17:57:45:d4:
80:9b:06:df:ae:af:20:d2:39:59:96:d1:b4:ae:d9:
5f:f8:cb:f6:70:75:56:eb:5d:5f:cc:32:5a:2b:89:
dd:0f:9f:23:6e:61:75:21:11:da:b7:24:d7:9c:71:
52:10:38:7a:36:87:b8:08:25:6d:bd:0d:59:56:b0:
89:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:1A:63:1E:67:8E:61:3D:72:FC:EE:1C:0F:D3:FB:F0:03:BF:28:E7
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/ARpjHmeOYT1y_O4cD9P78AO_KOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.105.126.0/23
Signature Algorithm: sha256WithRSAEncryption
15:26:0e:74:6a:f2:1a:1e:19:72:db:06:8b:5b:49:42:d0:0d:
50:d6:42:c2:58:60:a3:fb:1e:44:8a:40:22:07:46:7e:13:32:
7f:be:7e:96:1c:f8:cc:c4:9b:f6:fc:0c:71:e3:c3:97:6f:37:
3b:90:54:a1:d2:d7:c5:fa:6e:13:58:aa:3b:03:0a:2f:56:17:
d9:66:1c:bb:bd:04:6b:93:2c:df:44:4f:ba:bb:b7:c6:e9:20:
2f:08:59:15:d4:98:c4:6a:54:c3:65:0c:50:71:fd:a1:4c:6f:
cb:8c:4a:75:74:44:25:30:b3:3e:4c:bc:56:b1:c5:f3:46:20:
ad:2b:a7:22:32:a4:d1:77:8b:d0:3b:6c:01:45:d1:46:78:c8:
8e:33:82:8e:46:82:a6:15:b0:cf:a6:0d:36:86:da:02:28:3e:
33:2e:4e:1f:8f:b1:29:61:15:69:4c:c4:5b:60:63:95:8e:6b:
9d:e0:30:ee:d4:da:7f:f5:1d:1f:23:d1:f7:69:02:8d:5b:0e:
3f:8f:82:d0:05:0c:e3:4c:95:07:f5:02:6a:54:f3:38:a1:d8:
9a:ab:a0:49:2b:4a:85:98:ff:39:1b:cc:55:bb:f2:c0:d1:a3:
db:c4:e6:24:35:95:4a:09:f9:d8:e3:4d:c7:8d:7b:9d:e9:f0:
84:4c:0b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org