Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/J54vyDC7gxEpkubyQoIrcoQxrLw.roa
File: J54vyDC7gxEpkubyQoIrcoQxrLw.roa (raw, json)
Hash identifier: 3blgk5i4KUl11/1yqKASEVKAZe4M8wxCgS5etN59wgc=
Subject key identifier: 27:9E:2F:C8:30:BB:83:11:29:92:E6:F2:42:82:2B:72:84:31:AC:BC
Certificate issuer: /CN=a0606b8aad553f0948c7a894d68671870eb82cb0
Certificate serial: 04579FD8
Authority key identifier: A0:60:6B:8A:AD:55:3F:09:48:C7:A8:94:D6:86:71:87:0E:B8:2C:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oGBriq1VPwlIx6iU1oZxhw64LLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/J54vyDC7gxEpkubyQoIrcoQxrLw.roa
Signing time: Sat 01 Jan 2022 14:07:12 +0000
ROA not before: Sat 01 Jan 2022 14:07:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 147.100.0.0/16 maxlen: 16
147.99.0.0/16 maxlen: 16
138.102.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72851416 (0x4579fd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0606b8aad553f0948c7a894d68671870eb82cb0
Validity
Not Before: Jan 1 14:07:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=279e2fc830bb83112992e6f242822b728431acbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b1:ad:c3:ba:d1:d1:ff:2f:ea:86:e2:bf:8d:
b0:be:fa:3a:bf:1f:fa:1d:98:92:8f:9c:05:f2:b3:
0a:47:d1:94:6c:4f:3d:10:88:8e:d8:1d:cc:75:fe:
ec:47:d6:c4:3e:3d:74:56:63:07:aa:f1:ee:63:2a:
a5:1e:24:bb:62:09:bf:87:40:bd:be:31:25:3b:d3:
0d:ae:f4:ba:83:9d:a3:80:67:67:ca:fe:93:28:68:
b8:ed:a7:f8:76:80:3a:4f:73:10:e4:47:7d:3e:85:
e7:97:24:bf:c6:05:ec:34:51:b0:70:36:ce:12:c3:
ce:3d:d5:d9:39:b7:91:2e:94:aa:6d:bb:28:b9:58:
d2:1b:6d:e5:9c:ab:f6:49:ae:b0:2c:b3:42:6c:cb:
95:96:b5:d9:c4:e1:92:1e:7d:6e:1d:0b:8d:0c:63:
0e:04:d3:1f:50:8d:50:ad:a2:ed:ac:26:3a:4d:89:
45:c5:20:d3:e0:a2:16:5e:e1:17:d4:47:fc:dd:bf:
1f:5f:57:a8:80:f3:dc:87:e8:d4:c3:62:57:5c:29:
53:15:9e:2d:79:9c:3d:3f:68:70:21:a6:a5:d1:32:
1a:15:91:29:94:16:25:0c:61:63:f0:81:ab:c6:b1:
9a:b3:2c:9a:55:ff:1a:e8:02:6d:ce:a6:04:b3:3c:
b5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:9E:2F:C8:30:BB:83:11:29:92:E6:F2:42:82:2B:72:84:31:AC:BC
X509v3 Authority Key Identifier:
keyid:A0:60:6B:8A:AD:55:3F:09:48:C7:A8:94:D6:86:71:87:0E:B8:2C:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oGBriq1VPwlIx6iU1oZxhw64LLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/J54vyDC7gxEpkubyQoIrcoQxrLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9e2dfd-f2e9-416d-8f1f-bb3431fe0285/1/oGBriq1VPwlIx6iU1oZxhw64LLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.102.0.0/16
147.99.0.0-147.100.255.255
Signature Algorithm: sha256WithRSAEncryption
2a:af:d0:62:a2:38:25:de:f1:d7:a3:28:cf:b7:ff:18:1e:2d:
e1:8f:5e:76:8e:2b:6c:93:62:33:f3:63:25:de:72:e9:a6:7f:
98:97:15:cf:fa:b0:ae:15:74:36:de:e6:d0:09:24:9b:de:69:
49:c3:dc:fa:33:84:7b:2d:bb:1a:f4:97:43:93:8f:28:a2:be:
84:64:9d:69:ab:23:a9:4b:42:93:5e:ec:d5:18:eb:04:0d:e3:
d7:6e:23:f3:60:47:94:ac:24:83:d1:c0:39:dc:ff:b1:01:ca:
8b:1f:9e:65:ac:2e:04:51:1e:fc:8f:d8:85:d1:fe:0a:25:49:
d0:46:aa:68:7c:5c:9e:60:ca:82:79:04:84:39:f0:aa:d5:f4:
70:55:68:72:04:23:78:52:8e:98:b0:81:39:f3:de:e6:0b:bb:
5f:5e:77:21:80:bf:de:8c:3f:1d:2c:78:d5:35:33:8f:9b:06:
bf:4b:bf:6d:42:83:39:97:04:17:ee:e4:52:a9:78:95:ae:35:
7b:2b:11:96:fb:36:76:de:c7:62:17:6d:34:ed:48:22:99:9b:
74:96:cb:7b:d4:17:fe:aa:f8:c8:f9:88:b1:bf:49:ec:b9:5c:
23:43:aa:7e:bc:bb:56:77:dc:1a:51:a2:70:aa:01:11:4e:ff:
7a:b8:a9:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:57 2024 by rpki-client on console-fra.rpki-client.org