Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/GEv9mT1mIgsh0V3O2wvCb2KqdTo.roa
File: GEv9mT1mIgsh0V3O2wvCb2KqdTo.roa (raw, json)
Hash identifier: BtHVnujRj94VQVHa1bAq6nQKiXvhfViSX28HvbwHaa8=
Subject key identifier: 18:4B:FD:99:3D:66:22:0B:21:D1:5D:CE:DB:0B:C2:6F:62:AA:75:3A
Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Certificate serial: 049A2783
Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/GEv9mT1mIgsh0V3O2wvCb2KqdTo.roa
Signing time: Sat 01 Jan 2022 01:57:43 +0000
ROA not before: Sat 01 Jan 2022 01:57:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 144.2.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77211523 (0x49a2783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Validity
Not Before: Jan 1 01:57:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=184bfd993d66220b21d15dcedb0bc26f62aa753a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:66:ce:62:30:07:b1:39:f8:71:d6:62:d9:9a:
a4:3f:a4:15:50:12:dc:df:ea:1e:01:a0:f1:c4:65:
55:51:41:0a:0a:a0:2d:fb:57:fd:6c:9e:56:a9:61:
c5:34:a6:69:f5:ad:d7:4a:da:fb:8f:f1:9f:27:3c:
78:31:3b:53:99:e3:aa:86:56:4f:5a:f2:1f:bc:f8:
3a:a8:66:31:ef:8f:c6:dc:1a:83:b6:b6:79:cd:9c:
4c:2e:83:07:c2:f7:09:48:ed:69:e0:ee:1b:d4:84:
7d:5e:46:25:09:22:e6:d7:f6:0f:af:07:44:86:65:
f8:6b:77:c1:70:3a:57:a0:a8:78:21:53:78:63:e9:
74:e3:71:58:76:2e:e9:94:b9:91:ae:be:78:80:00:
5d:51:2d:ff:61:14:ac:56:d5:8a:be:a4:6f:21:df:
a3:fe:40:7b:a2:c1:72:2c:ef:d6:00:1c:6e:52:e3:
0d:66:50:e6:55:93:f6:68:2d:3a:a5:39:a7:5b:eb:
d0:28:27:c4:d1:ed:07:ad:2e:86:33:73:65:6e:71:
19:69:bc:3d:93:3e:05:99:a3:80:52:88:d8:ed:34:
60:ca:ad:fc:63:c3:ed:c6:2e:58:aa:77:4f:d5:65:
b8:47:60:1e:87:c3:fd:e4:6f:8e:c5:b4:76:8a:b2:
2e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4B:FD:99:3D:66:22:0B:21:D1:5D:CE:DB:0B:C2:6F:62:AA:75:3A
X509v3 Authority Key Identifier:
keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/GEv9mT1mIgsh0V3O2wvCb2KqdTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.154.0/24
Signature Algorithm: sha256WithRSAEncryption
63:45:62:72:75:9b:8d:df:24:8a:7d:e5:ce:33:2c:cb:87:11:
da:4f:d9:b3:be:02:06:de:49:1e:63:49:27:be:4a:f1:7e:36:
fc:93:be:4e:7c:19:0b:70:f5:83:98:e0:85:44:d8:4c:ce:35:
cb:c5:25:ce:ad:d4:0f:e2:30:64:6c:86:2f:16:32:21:e3:7d:
33:13:ff:b6:76:11:9f:ef:f9:33:74:17:d0:eb:43:36:4a:47:
66:16:3d:30:3a:99:1f:94:61:c1:62:2f:4b:8b:80:41:6d:e2:
38:6f:69:2b:25:14:12:eb:1e:22:d6:91:c2:72:e3:8d:eb:ef:
2a:0e:1a:81:d0:09:8b:72:aa:97:a1:99:94:0b:d3:0f:87:ca:
ae:01:dd:70:c8:86:a3:d4:f6:be:fb:bd:8a:c3:ac:83:29:8f:
46:7b:98:fc:cc:80:55:5d:28:ba:20:25:e3:d2:f0:46:9c:4a:
75:8e:7a:66:b6:03:db:d1:19:da:1a:82:96:eb:fb:02:35:64:
de:9c:37:d5:d8:5c:7d:3c:20:07:6d:7f:7b:76:3c:6f:00:e6:
a3:7b:5e:67:89:0f:f0:73:79:1d:e8:db:78:66:c1:ae:94:e0:
23:fd:3b:2d:dc:8c:42:67:b0:00:bd:9e:78:09:b1:d4:6a:3f:
6b:88:8a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:06 2024 by rpki-client on console-fra.rpki-client.org