Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2ITdtzug5bFvTYjqMFkuVK4RpAM.roa
File: 2ITdtzug5bFvTYjqMFkuVK4RpAM.roa (raw, json)
Hash identifier: UiK8k6srCluJPb6+j7YkrS2QGL2KwRnKdhZGHQrMN3M=
Subject key identifier: D8:84:DD:B7:3B:A0:E5:B1:6F:4D:88:EA:30:59:2E:54:AE:11:A4:03
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 3891C2E8
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2ITdtzug5bFvTYjqMFkuVK4RpAM.roa
Signing time: Sat 01 Jan 2022 05:54:25 +0000
ROA not before: Sat 01 Jan 2022 05:54:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201574
IP address blocks: 159.148.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949076712 (0x3891c2e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d884ddb73ba0e5b16f4d88ea30592e54ae11a403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7a:01:51:eb:13:1f:2d:f7:0f:59:1b:9f:bf:
f6:d8:f4:70:22:df:b3:09:43:1f:21:0a:5f:3d:96:
1a:03:52:25:ee:68:7b:89:42:a2:08:2d:d4:83:e8:
39:cb:1d:22:26:49:46:62:d1:34:0c:69:44:5b:f8:
9c:7d:df:92:62:69:3d:b7:3f:0c:6a:0e:3a:60:d7:
14:c1:bd:77:a2:7a:f6:27:c5:82:ff:5f:5e:63:1f:
3e:ec:be:3d:79:d4:87:df:c5:06:2a:03:de:4b:b4:
a6:a5:56:b3:e4:2d:5c:30:4e:d6:19:84:f8:a3:83:
52:67:bb:8d:77:e1:29:4a:dd:b9:93:b8:1e:06:31:
70:38:9c:e2:9b:bf:30:cf:b9:94:8a:0d:44:c6:7f:
82:90:ea:e5:bf:67:70:e0:4e:f7:82:74:22:fa:cf:
4c:9e:5d:db:89:0e:8d:b8:10:3c:91:10:f5:e3:7e:
50:c0:cf:fd:a5:93:e5:e7:c8:77:a6:c0:cf:44:4e:
d8:18:41:5e:b0:1f:ca:23:82:1e:39:59:13:34:d6:
63:50:e6:83:01:5a:02:cd:ab:f9:81:40:1f:ad:64:
7a:de:75:58:ee:07:a0:25:66:ff:b6:ca:f8:f6:65:
9f:e7:36:4e:23:41:48:7f:e3:7b:79:3c:76:50:ac:
ea:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:84:DD:B7:3B:A0:E5:B1:6F:4D:88:EA:30:59:2E:54:AE:11:A4:03
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2ITdtzug5bFvTYjqMFkuVK4RpAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.197.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:46:69:cf:34:dd:e8:5c:3c:79:d2:aa:f1:4e:36:a6:fc:59:
36:75:8f:47:3d:d7:88:ae:38:66:84:d0:df:cd:8f:db:2f:4a:
3c:07:94:f7:50:90:1d:96:16:1c:25:54:c6:56:18:0d:8e:aa:
ba:bc:75:15:fe:91:df:70:7e:59:45:1b:e9:b2:d3:0c:61:39:
d3:da:17:28:6a:3b:7a:4b:de:73:30:6e:4c:35:53:71:88:0a:
64:13:73:64:7a:ec:cf:81:14:52:b2:6f:da:42:a2:ff:82:dc:
6e:f3:dc:d5:fb:e7:45:0d:33:78:e1:e3:26:21:0c:6c:13:1d:
7a:13:ab:df:72:44:91:5c:dd:8a:89:b2:20:42:bb:42:57:52:
b7:a8:15:bb:07:0c:e3:4a:8c:9e:ad:02:7d:74:6b:2d:58:01:
90:66:36:1b:3a:0a:d7:87:1b:d3:06:b1:ca:ad:e1:06:d6:f4:
8f:c8:41:d4:29:38:81:0d:7f:e8:08:90:f9:30:b5:74:2e:ba:
0d:a7:d4:64:23:bc:f8:41:4a:1b:ff:d3:b5:3e:73:fa:95:5b:
0e:cf:b7:23:51:29:a8:81:d3:54:fe:d8:4c:23:49:c6:15:c9:
cc:2c:aa:6c:d0:f0:46:fa:02:34:65:78:a9:09:6e:da:d2:3d:
c3:49:44:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org