Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/CcGvuZC4E6qejCOGD5-20UWHdjM.roa
File: CcGvuZC4E6qejCOGD5-20UWHdjM.roa (raw, json)
Hash identifier: vsavcT3aYR/IljXUI4EI1mZ7drNdJHaSS6iDcoq5Btc=
Subject key identifier: 09:C1:AF:B9:90:B8:13:AA:9E:8C:23:86:0F:9F:B6:D1:45:87:76:33
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 38792D70
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/CcGvuZC4E6qejCOGD5-20UWHdjM.roa
Signing time: Sat 01 Jan 2022 05:54:13 +0000
ROA not before: Sat 01 Jan 2022 05:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 159.148.137.0/24 maxlen: 24
159.148.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947465584 (0x38792d70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09c1afb990b813aa9e8c23860f9fb6d145877633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:09:42:8c:f9:3c:82:2d:3c:fd:0d:33:ca:64:
bb:6a:49:0e:76:36:5f:95:62:ba:8a:eb:da:99:16:
e4:0b:68:44:ec:3e:c7:65:7c:93:37:79:15:cd:5f:
e5:b4:1c:a0:6b:44:c7:77:64:7f:75:39:f4:0f:02:
29:bf:a5:60:b0:06:3a:b2:07:fe:74:cd:6f:9e:b7:
b9:93:30:df:bb:8f:c5:63:52:ab:9a:35:1e:c3:79:
6b:7c:6e:35:f8:07:58:29:66:14:b0:b9:b4:73:a9:
bc:77:cc:b0:0e:d8:99:a4:39:e7:74:d7:3a:64:85:
41:a2:09:fb:ed:5a:ed:26:79:b8:c9:00:fe:7f:25:
99:6f:04:7a:28:1e:c4:48:a3:9c:05:10:e2:6c:64:
19:69:40:5d:51:8a:af:82:cc:cb:25:08:39:a9:f2:
1e:22:27:d5:68:fe:a4:0b:b1:5c:5e:d7:07:77:99:
4b:22:0e:03:07:bd:91:27:09:1b:60:42:ed:13:b6:
50:fc:41:ca:8c:46:98:06:ed:70:58:45:70:92:aa:
08:66:38:28:ce:02:cf:9a:de:c8:77:74:b0:07:9f:
17:8b:14:cd:a7:20:e4:2a:20:61:43:e3:5b:ed:3f:
a7:f5:df:51:ee:7d:e7:4a:74:e5:10:e5:90:f1:1a:
aa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C1:AF:B9:90:B8:13:AA:9E:8C:23:86:0F:9F:B6:D1:45:87:76:33
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/CcGvuZC4E6qejCOGD5-20UWHdjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.136.0/23
Signature Algorithm: sha256WithRSAEncryption
42:d6:49:80:3e:2d:f7:42:22:c7:44:d5:90:72:69:87:71:0a:
38:a8:ba:47:77:4c:fe:14:27:85:04:a6:42:9a:7b:9f:59:51:
59:f7:1c:29:dd:c4:b5:43:e0:b8:e4:e9:7f:60:db:dc:6c:97:
13:36:a1:6e:7d:5d:b3:d2:79:5d:2f:1f:03:2e:ed:45:cc:88:
e9:1b:d2:c2:d8:f7:f4:d9:a9:ce:37:7f:b8:b8:59:01:2e:45:
0d:f4:fe:55:71:aa:db:78:6a:31:08:8d:9d:1e:97:0f:d9:36:
1d:e6:a7:10:28:9d:4f:c1:68:03:fd:88:5f:49:8a:af:ce:da:
cc:88:2e:1e:fa:c5:16:6e:87:77:43:80:84:8a:4a:29:56:5c:
ac:70:8c:8e:c9:86:67:46:22:30:73:11:d0:ea:2e:9b:d6:06:
44:eb:3f:64:b9:7c:58:6f:3f:38:84:9c:3b:0c:9f:ed:9e:47:
2c:1f:f9:4d:07:49:13:5d:54:6a:b5:a3:fc:70:30:18:b8:eb:
96:d3:c9:22:2e:90:f3:70:08:13:e6:51:08:6c:a3:a3:a0:06:
0b:e0:67:3b:5a:dd:49:7b:02:7d:5f:46:69:fb:1d:ad:b0:af:
37:5d:97:a2:79:01:0f:4a:dc:fb:4b:17:82:79:0e:85:d3:e7:
f1:70:5a:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:37 2023 by rpki-client on console-ams.rpki-client.org