Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5BUbCnrE2LD0bwOLDE39uogcFZc.roa
File: 5BUbCnrE2LD0bwOLDE39uogcFZc.roa (raw, json)
Hash identifier: flg3DtcgK8wnWtDN6d7rJyHUfce0m7GoOar1m8oWpV8=
Subject key identifier: E4:15:1B:0A:7A:C4:D8:B0:F4:6F:03:8B:0C:4D:FD:BA:88:1C:15:97
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1D29912B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5BUbCnrE2LD0bwOLDE39uogcFZc.roa
Signing time: Fri 18 Feb 2022 22:04:12 +0000
ROA not before: Fri 18 Feb 2022 22:04:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 94.156.11.0/24 maxlen: 24
37.221.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489263403 (0x1d29912b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 18 22:04:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4151b0a7ac4d8b0f46f038b0c4dfdba881c1597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5e:ce:d7:8d:9f:89:7c:aa:e1:e9:fc:66:0a:
e0:52:c8:21:79:45:20:19:d2:d9:c2:e7:bf:01:e1:
b8:a2:b5:f1:78:d6:4c:d4:80:d4:54:d3:09:89:e3:
0b:c0:2f:d3:1e:4b:68:d0:2b:d9:5f:d9:39:e4:68:
f0:19:e8:29:24:15:31:54:4d:a9:7b:fb:75:35:b0:
e0:c1:f2:fe:36:f6:be:91:4a:eb:b0:55:77:22:37:
db:f2:71:e5:c3:c3:0e:7b:a7:3a:6d:bb:b6:35:e2:
9e:c9:39:29:52:e6:ea:2e:33:e5:bd:1c:ff:b0:b7:
0e:ac:cc:93:f6:aa:1d:a8:65:14:79:f3:1c:d9:f0:
84:0d:bf:43:fb:51:f5:3a:26:74:c8:68:03:2a:30:
4b:18:e8:17:1e:ab:f8:84:d9:19:75:77:4f:59:84:
d2:c0:1d:99:a1:4a:6c:3d:a5:2b:96:31:a8:08:58:
6d:39:27:70:28:b8:04:e7:01:2e:ff:30:61:94:60:
43:ae:95:4e:5f:2e:b4:5e:de:c3:4d:6f:21:a4:46:
0f:c3:ab:37:34:87:10:97:b4:ac:48:fa:59:46:6c:
a9:94:ef:be:91:b6:3e:8e:76:f1:54:10:c9:ef:76:
7e:cd:6f:81:7a:8d:66:5c:6d:de:35:b6:8e:4e:a7:
48:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:15:1B:0A:7A:C4:D8:B0:F4:6F:03:8B:0C:4D:FD:BA:88:1C:15:97
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/5BUbCnrE2LD0bwOLDE39uogcFZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.120.0/22
94.156.11.0/24
Signature Algorithm: sha256WithRSAEncryption
86:04:1a:42:e9:5b:f4:b6:68:69:2d:5d:09:0b:ce:58:12:b3:
0e:61:f3:ba:16:3a:1c:fe:5a:76:29:b5:fd:f7:9c:64:a2:c8:
e8:15:de:e9:1e:53:80:72:ed:57:71:84:f6:e1:42:5d:ba:60:
bd:74:e5:bc:2f:a2:a2:e3:04:90:fd:e7:f4:b0:32:09:f2:2e:
90:9e:f1:0c:06:82:3c:a3:23:0a:40:10:54:de:94:48:a4:ec:
23:f9:c4:0a:8b:a4:1d:62:ab:39:68:95:89:f1:ae:ed:6f:0a:
98:cb:54:8a:1e:35:ca:48:f1:c5:33:43:4c:c2:af:d3:48:46:
f8:82:87:c8:d9:05:db:7f:93:57:bb:8f:53:b6:4f:53:2e:61:
7f:5a:2a:05:0e:d8:90:ed:fd:84:f5:52:2c:68:62:66:14:25:
34:7a:d2:6a:a7:6c:34:5e:92:b2:9e:4c:81:44:9d:09:ba:0e:
e4:56:f5:76:0c:85:a6:ca:cb:7c:1b:ff:dc:b2:7d:0d:4f:43:
63:6d:f3:1b:b3:99:8c:84:ec:c5:50:e1:f7:15:17:2c:69:88:
62:81:b6:10:7c:23:bf:88:0b:59:f6:c6:67:a0:a2:32:d5:29:
05:6d:86:a5:e2:4d:2f:91:0b:31:6b:c6:a3:5e:7c:c0:87:f1:
36:77:92:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-ams.rpki-client.org