Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/Av9UOFPSEMqVGG6HAtaKvehyRz8.roa
File: Av9UOFPSEMqVGG6HAtaKvehyRz8.roa (raw, json)
Hash identifier: vci2A2WOE+q8D0nprIIYtZi8gaVUS7bLe7tTu6kQ7Rc=
Subject key identifier: 02:FF:54:38:53:D2:10:CA:95:18:6E:87:02:D6:8A:BD:E8:72:47:3F
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 151D0E11
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/Av9UOFPSEMqVGG6HAtaKvehyRz8.roa
Signing time: Sat 01 Jan 2022 07:58:00 +0000
ROA not before: Sat 01 Jan 2022 07:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1128
IP address blocks: 131.180.0.0/16 maxlen: 16
130.161.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354225681 (0x151d0e11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Jan 1 07:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02ff543853d210ca95186e8702d68abde872473f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:54:20:07:2f:b0:5c:58:af:a5:98:71:1e:db:
f0:80:fa:a1:c8:c8:68:65:80:57:ad:5f:28:ab:c3:
02:12:dc:77:91:af:8b:5f:fc:22:a6:21:c4:3c:01:
72:0f:ec:e8:1a:63:ea:2b:b7:4c:88:32:a5:d6:16:
dc:78:a7:79:3e:b5:fd:11:53:75:13:02:0c:a9:a7:
e1:41:c3:04:37:b0:e8:7e:70:20:9b:8e:87:01:2e:
39:11:bb:20:41:20:12:81:ae:ff:33:8e:dc:28:c6:
79:73:0a:f4:be:ca:83:68:ff:0e:2c:f6:27:e8:c4:
5e:a0:f7:93:38:3b:b1:c8:ea:c1:26:f5:e1:ae:84:
2b:1f:d6:2a:69:1e:e3:26:66:4e:e5:cb:59:02:da:
f6:ef:7e:8c:7b:93:25:22:1b:dd:0c:9c:43:f2:c9:
63:2e:e2:ec:49:c5:90:e1:f7:b5:89:d3:40:cc:71:
78:9b:06:bb:53:5d:a3:1c:9f:25:92:7e:c7:af:78:
45:2d:6d:6f:79:d5:d7:80:d6:b8:c8:65:4e:c4:71:
41:72:ce:98:82:0b:6a:03:73:d4:43:de:53:7f:f1:
0c:20:ac:aa:d2:04:26:ed:bc:f8:fd:de:c3:b7:c9:
36:d0:b0:cc:ef:b8:2b:87:72:a8:17:52:ad:dc:e5:
4f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FF:54:38:53:D2:10:CA:95:18:6E:87:02:D6:8A:BD:E8:72:47:3F
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/Av9UOFPSEMqVGG6HAtaKvehyRz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.161.0.0/16
131.180.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8b:1f:30:3d:9f:d3:30:6e:39:a1:53:8a:ac:f8:5d:b8:1e:bb:
9d:0d:06:7a:16:5d:9a:71:fb:49:8a:7d:04:69:2f:7d:c1:6e:
89:59:bd:d1:10:29:72:22:a3:b3:3d:0a:8b:02:62:36:8d:ce:
c9:1d:de:e2:ec:0a:50:4c:d8:bc:64:9f:81:96:67:69:d2:5c:
d0:e7:b5:1c:e6:d5:ef:ad:54:23:9a:0c:2b:53:6a:54:ee:be:
f7:64:98:63:97:d5:32:51:71:02:70:b8:7c:33:00:c5:1c:3d:
ec:b7:c5:dd:37:de:ec:ce:a2:ca:fb:05:f0:39:b3:4e:56:56:
cb:b8:fb:86:43:ba:04:b0:2a:1e:1b:3d:f6:cc:08:7f:56:7c:
46:30:5d:90:ed:33:d7:a5:b4:f0:56:00:eb:35:b4:c8:00:47:
9f:2b:ba:12:21:4e:f6:22:23:7f:16:64:f3:e2:e5:41:9c:7a:
00:75:5f:5f:05:ba:c8:d4:c2:9d:bb:8a:bf:61:36:d7:85:04:
25:69:f7:b8:12:a0:18:41:58:e1:de:4a:e6:6a:a3:77:1f:94:
0f:52:dd:b9:ea:40:79:6a:d6:76:fc:61:b2:aa:a7:98:f9:54:
4d:b1:2b:d7:ae:53:2f:3d:10:9b:ec:72:3e:0a:d9:97:7c:3c:
2c:eb:d5:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:51 2023 by rpki-client on console-fra.rpki-client.org