Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/Ps1OCiEb3b-lxCkVNM6SppQvkDI.roa
File: Ps1OCiEb3b-lxCkVNM6SppQvkDI.roa (raw, json)
Hash identifier: mRjx8HiGklFLdsVyhtFQb6LIeEfl7cQgri1K11Bd97s=
Subject key identifier: 3E:CD:4E:0A:21:1B:DD:BF:A5:C4:29:15:34:CE:92:A6:94:2F:90:32
Certificate issuer: /CN=1734db5c41e711b73d8f29dac12e9b8364cd1fbd
Certificate serial: 06FD1F5C
Authority key identifier: 17:34:DB:5C:41:E7:11:B7:3D:8F:29:DA:C1:2E:9B:83:64:CD:1F:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/Ps1OCiEb3b-lxCkVNM6SppQvkDI.roa
Signing time: Sat 01 Jan 2022 15:03:14 +0000
ROA not before: Sat 01 Jan 2022 15:03:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 140.77.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117251932 (0x6fd1f5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1734db5c41e711b73d8f29dac12e9b8364cd1fbd
Validity
Not Before: Jan 1 15:03:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ecd4e0a211bddbfa5c4291534ce92a6942f9032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:68:8c:fa:5a:b4:53:6e:34:28:57:8e:7d:b0:
e5:80:00:d2:c2:75:93:91:2a:4a:eb:98:ff:bb:e0:
c1:b5:cd:9c:96:82:9a:ef:bd:6b:50:56:60:57:74:
a7:03:9a:2f:25:3e:80:49:54:1a:7a:9f:0a:53:ac:
7c:40:0d:e4:b0:6e:2b:26:d9:ae:2e:89:fc:3c:22:
dd:de:0f:1b:9b:7f:cd:84:d3:f1:85:3a:07:80:45:
c2:ac:a0:d6:e1:4d:4d:32:7b:47:71:89:26:bb:f4:
83:16:c9:fb:ec:c0:a6:a7:bc:af:da:b1:89:6d:ef:
3f:43:a4:ff:cf:86:a7:6a:a5:f7:13:04:29:f9:18:
74:de:4a:d2:1f:58:1a:94:89:4b:f4:c5:da:fe:62:
dd:13:cd:a0:66:50:a3:8a:e7:d4:76:0d:94:84:3a:
31:46:f0:f2:40:d6:24:77:e2:c4:73:30:76:04:d7:
1e:75:e9:c7:1e:d8:cc:6a:06:af:ec:cb:d4:ac:c4:
b3:0f:5f:66:cf:df:f5:01:b7:7c:96:04:9f:ea:fa:
96:87:d2:e2:4e:36:45:eb:a0:f4:1c:d9:c2:5b:97:
6a:f2:d3:c9:83:83:ef:ed:f8:fb:ab:59:47:ae:8c:
79:ae:12:ba:84:3b:f8:14:2b:a8:f6:ea:48:41:fb:
ad:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:CD:4E:0A:21:1B:DD:BF:A5:C4:29:15:34:CE:92:A6:94:2F:90:32
X509v3 Authority Key Identifier:
keyid:17:34:DB:5C:41:E7:11:B7:3D:8F:29:DA:C1:2E:9B:83:64:CD:1F:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/Ps1OCiEb3b-lxCkVNM6SppQvkDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/FzTbXEHnEbc9jynawS6bg2TNH70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.77.0.0/16
Signature Algorithm: sha256WithRSAEncryption
14:7e:33:43:ed:55:2f:46:60:b4:ab:67:b1:6b:07:5b:58:96:
60:ed:a5:27:ff:ef:6a:78:a9:89:4f:c2:83:cf:f4:13:e2:9d:
c1:30:f9:bf:83:4c:aa:9a:fb:d1:e4:d2:5a:6b:2f:77:9e:5d:
22:01:24:68:41:1c:b6:9f:f8:4a:02:28:f4:aa:07:c8:65:97:
74:08:f5:25:9c:cf:af:17:42:22:4e:b0:69:c8:c8:9c:94:ff:
16:83:6a:3c:b4:e2:c6:ef:4e:53:2b:0b:29:8f:17:ca:39:bc:
8c:98:cd:17:90:41:77:e4:90:7a:69:8a:a6:21:d8:0f:eb:5d:
36:6e:c7:36:bf:d6:a2:d9:6b:d1:da:a3:7e:3e:18:e4:d5:1c:
f4:90:8c:a4:fe:50:3c:63:00:eb:79:13:6c:3f:bc:e6:c3:0a:
3a:6a:6f:4e:15:3e:16:7f:75:1f:da:54:18:a8:00:86:63:74:
07:9c:66:a2:56:16:5a:98:c0:aa:a4:d0:06:3d:1f:1b:5d:be:
77:f6:18:bc:10:ab:58:49:68:3d:48:65:7b:75:74:ea:59:17:
df:f0:2a:a3:bb:b6:3d:72:29:c2:df:af:12:df:f7:d3:2d:39:
ae:3e:c3:50:ff:d6:7f:9b:a2:e7:6b:8d:22:46:08:57:02:37:
84:c7:b1:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:09 2024 by rpki-client on console-ams.rpki-client.org