Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/1-rSHaWNed1c7SzCoOGaBgGSRaiE.roa
File: 1-rSHaWNed1c7SzCoOGaBgGSRaiE.roa (raw, json)
Hash identifier: oWkglCX7/x3FjaAfmFCvO1WiVfabxDglj5pTJuysx/I=
Subject key identifier: FA:B4:87:69:63:5E:77:57:3B:4B:30:A8:38:66:81:80:64:91:6A:21
Certificate issuer: /CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Certificate serial: 1C14C665
Authority key identifier: 75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/1-rSHaWNed1c7SzCoOGaBgGSRaiE.roa
Signing time: Tue 14 Jun 2022 10:45:07 +0000
ROA not before: Tue 14 Jun 2022 10:45:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198198
IP address blocks: 103.244.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 471123557 (0x1c14c665)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Validity
Not Before: Jun 14 10:45:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fab48769635e77573b4b30a83866818064916a21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:49:58:29:e6:50:b1:56:9a:53:45:9a:d4:1d:
d8:f7:fd:de:c7:82:00:f2:2f:2b:34:71:26:07:0c:
58:74:ab:a6:53:bb:9b:df:47:7d:9e:81:fd:61:48:
05:cf:e4:29:d3:00:c2:0a:e6:88:69:3f:10:cd:60:
a6:8f:ff:b8:ea:ee:25:8e:23:b8:b3:eb:2a:76:4f:
d5:c3:d5:2b:23:78:20:31:13:e1:cb:3d:5b:d1:99:
bc:88:08:9e:22:06:d3:6a:ae:ed:4d:5d:ef:19:6f:
29:3d:72:89:d1:d0:b2:d9:80:f0:9b:e0:9d:ef:04:
31:50:e3:31:a5:ab:bf:ed:b0:5c:71:4a:4c:ca:a7:
0e:66:a5:0c:77:04:9d:d3:5a:06:00:aa:71:ee:55:
26:df:24:0a:21:05:b3:9c:18:b0:e3:66:72:fb:5b:
ad:77:92:0e:11:ee:99:49:b0:d4:4c:71:5d:fb:8a:
74:1a:3f:a3:03:3c:db:dd:f2:a3:62:12:6b:f5:da:
c5:2d:e5:30:42:92:12:2c:46:2d:60:bb:1b:e7:25:
93:eb:b4:2f:3f:4a:41:e9:27:bf:c1:b9:64:37:50:
e4:13:13:3f:07:1c:b4:3b:e6:e0:a3:db:49:eb:85:
71:a2:21:8b:6a:8e:98:34:b5:54:98:dc:90:8a:c8:
32:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B4:87:69:63:5E:77:57:3B:4B:30:A8:38:66:81:80:64:91:6A:21
X509v3 Authority Key Identifier:
keyid:75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/1-rSHaWNed1c7SzCoOGaBgGSRaiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/deBbwhsqbxAzcR_8pkkcbDDOWko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.244.236.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:ee:63:bf:4b:1c:e7:0f:2c:98:c9:7f:bb:23:1c:15:30:8f:
8d:af:32:d3:eb:fe:dd:11:13:f0:0d:a5:e7:a0:57:64:60:8f:
69:b2:0e:74:2f:03:a5:81:a4:19:42:9a:e8:9b:39:4f:f2:64:
2e:a3:0b:4e:6e:39:73:14:d5:e1:a7:cf:c1:1b:44:c9:95:2b:
5c:e9:24:0c:d3:f7:f7:e5:18:ee:26:11:e7:03:b2:0e:16:b4:
1a:77:f9:07:92:92:dc:9b:c4:28:85:b3:aa:76:bb:c6:ca:1a:
53:78:ce:6f:07:c2:ee:2e:7f:5a:c0:e5:9b:84:66:74:f6:72:
66:44:41:3d:7d:ac:bc:50:da:6a:c4:a9:6b:04:65:08:5d:4c:
3f:94:ce:98:2c:5d:2a:2c:15:a1:80:66:47:22:84:00:fb:d8:
0e:97:e0:8e:18:f4:2e:ee:43:5c:cd:30:23:4f:31:97:48:52:
5f:b3:e9:b1:b6:65:69:dc:38:c6:0a:ec:57:43:ad:6d:51:46:
40:0d:97:8f:56:0d:eb:d2:2b:6e:6d:84:6a:c1:08:d3:03:ec:
95:aa:4a:4c:5a:f3:f2:d5:45:52:83:e6:03:f1:95:3f:67:22:
7b:8e:1f:a0:6b:16:2d:de:8c:dc:28:cb:09:74:bf:68:e7:5d:
ec:01:90:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:57 2024 by rpki-client on console-ams.rpki-client.org