Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/m_7DKrL-niZUZW3ibqQ2s5fy7tw.roa
File: m_7DKrL-niZUZW3ibqQ2s5fy7tw.roa (raw, json)
Hash identifier: XxYD+zGJTQkG6nwQYuivCxLCxY4AJs7Zv/zkq6ovYRc=
Subject key identifier: 9B:FE:C3:2A:B2:FE:9E:26:54:65:6D:E2:6E:A4:36:B3:97:F2:EE:DC
Certificate issuer: /CN=1734db5c41e711b73d8f29dac12e9b8364cd1fbd
Certificate serial: 07274008
Authority key identifier: 17:34:DB:5C:41:E7:11:B7:3D:8F:29:DA:C1:2E:9B:83:64:CD:1F:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/m_7DKrL-niZUZW3ibqQ2s5fy7tw.roa
Signing time: Fri 21 Jan 2022 09:55:42 +0000
ROA not before: Fri 21 Jan 2022 09:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1945
IP address blocks: 192.33.153.0/24 maxlen: 24
192.33.162.0/24 maxlen: 24
140.77.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120012808 (0x7274008)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1734db5c41e711b73d8f29dac12e9b8364cd1fbd
Validity
Not Before: Jan 21 09:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bfec32ab2fe9e2654656de26ea436b397f2eedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:43:7e:e6:a8:58:ed:0c:b0:be:29:a6:19:15:
e8:92:82:75:73:03:c8:08:47:60:00:29:96:02:ef:
03:13:11:87:16:8c:5e:8a:0a:01:d7:24:1a:29:9f:
1e:ea:cc:0b:71:27:dc:65:58:85:28:0c:f7:fb:43:
83:93:43:89:e9:02:9f:a7:d4:6e:ce:1c:ba:91:61:
bc:d1:66:03:08:2a:b6:3e:6d:94:34:ba:09:92:8f:
d1:82:b6:a9:b5:a3:df:19:78:fa:a5:f8:3a:03:3a:
6d:97:7d:08:e2:01:a1:f3:28:0c:0c:d5:ab:ee:4f:
39:65:93:84:2b:1b:4e:3e:01:6d:35:32:1c:0e:05:
7f:09:8f:9c:9c:44:03:47:58:5e:30:c8:c7:96:26:
ef:ba:2d:60:91:1a:d3:2f:29:99:dd:82:07:e7:2f:
1a:05:b4:be:30:b5:1d:f8:63:7e:67:25:1b:c7:f8:
7c:58:62:76:88:28:c3:8f:e7:66:9a:37:41:cf:1d:
6b:fa:d4:c8:86:5f:71:2c:cc:82:c1:64:b0:26:82:
59:34:99:a4:4c:5f:e3:a5:17:15:6b:91:74:19:98:
66:24:57:a9:70:6d:b7:22:09:16:52:1f:6a:3e:f8:
34:62:97:f2:cc:9d:21:9d:58:14:cc:6a:7d:fc:2f:
86:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:FE:C3:2A:B2:FE:9E:26:54:65:6D:E2:6E:A4:36:B3:97:F2:EE:DC
X509v3 Authority Key Identifier:
keyid:17:34:DB:5C:41:E7:11:B7:3D:8F:29:DA:C1:2E:9B:83:64:CD:1F:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FzTbXEHnEbc9jynawS6bg2TNH70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/m_7DKrL-niZUZW3ibqQ2s5fy7tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/925259-2527-45eb-b916-5f2650c9012d/1/FzTbXEHnEbc9jynawS6bg2TNH70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.77.0.0/16
192.33.153.0/24
192.33.162.0/24
Signature Algorithm: sha256WithRSAEncryption
61:10:5e:0b:39:0a:94:1e:18:33:8a:5b:21:e1:c3:58:11:13:
1d:4a:20:7c:b0:24:0a:e9:a5:9a:eb:5b:c0:47:91:05:d3:c7:
bf:1b:03:95:d9:8f:0d:53:e5:4a:6e:b1:9e:dd:07:e8:95:5b:
32:97:6e:9d:ca:8e:74:3c:55:c2:1f:ea:ea:c5:da:01:35:ba:
19:35:49:68:06:e6:9f:d3:d9:7a:c1:5f:50:da:fc:b2:39:d3:
7f:0f:9d:59:9b:a3:fb:c2:d5:47:20:4c:19:28:88:da:aa:a3:
94:7f:94:84:4b:59:0e:9a:a9:95:7b:e3:98:c2:c5:b5:b2:ef:
9d:3b:4b:9e:79:4d:59:84:85:e7:87:34:91:76:4b:4c:c0:d8:
4c:29:20:be:f0:51:e4:23:38:ca:8e:06:44:8f:9c:4b:38:3f:
c8:67:aa:ca:b2:e3:ed:4c:e9:f0:35:08:09:8d:71:07:34:f0:
c4:a1:fb:16:a8:ec:f9:fa:10:aa:a0:ef:3d:59:5a:6f:c6:e1:
e8:23:12:f1:4b:83:b6:4e:fa:1f:09:00:0b:f3:5b:1b:cd:e8:
d0:b7:f1:ab:94:e4:0f:ca:d9:02:ea:30:66:18:6e:4c:29:e0:
4a:27:ec:16:52:13:79:a6:91:1a:04:3a:80:d7:74:01:d7:5f:
eb:1c:2e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:09 2024 by rpki-client on console-ams.rpki-client.org