Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/f5dlABD-0OPGrnYZDbQ172A52lw.roa
File: f5dlABD-0OPGrnYZDbQ172A52lw.roa (raw, json)
Hash identifier: aP2gaJnZn5gbpuRA2oyhHWMC9XwoqnYp7xZl5Sq7rUU=
Subject key identifier: 7F:97:65:00:10:FE:D0:E3:C6:AE:76:19:0D:B4:35:EF:60:39:DA:5C
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 3958C38B
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/f5dlABD-0OPGrnYZDbQ172A52lw.roa
Signing time: Wed 23 Mar 2022 10:20:07 +0000
ROA not before: Wed 23 Mar 2022 10:20:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56925
IP address blocks: 159.148.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 962118539 (0x3958c38b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Mar 23 10:20:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f97650010fed0e3c6ae76190db435ef6039da5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ac:ca:54:f8:51:d4:5b:99:13:b7:d9:33:a4:
41:e2:f3:e0:6a:d0:85:4a:e2:7e:a1:6b:e7:97:58:
ad:b1:92:c6:8d:23:bd:f5:e3:3f:24:55:73:37:b0:
4e:c8:3b:c3:1d:a6:08:2c:33:e5:fe:cc:7c:c2:d0:
34:1f:bd:01:96:9d:e2:2f:1d:27:f0:00:6f:e8:b6:
e4:43:e5:b5:06:31:71:1d:ba:84:8a:1b:63:1d:de:
29:5f:13:10:d3:25:59:33:95:7a:98:f0:52:82:43:
2d:e4:c5:59:6b:24:10:5d:c8:b2:6b:d3:43:69:85:
42:e9:aa:06:69:4f:a7:eb:08:d0:21:4e:f3:3c:ae:
89:81:ca:7b:cf:39:5a:aa:98:49:8e:39:ee:c8:e2:
ce:6d:f0:ef:cc:fd:33:bf:33:63:4c:2f:c9:13:e3:
ba:20:18:96:97:e1:e6:56:62:b1:e4:45:f2:03:b1:
22:69:53:34:73:eb:98:57:ab:a4:7c:91:26:3a:b6:
ff:32:97:b9:db:3b:f4:b2:e9:02:8d:26:18:3f:69:
be:c7:4e:68:88:33:f9:d0:99:55:bc:8b:26:ab:e8:
dc:35:05:04:e7:f3:a9:67:22:7f:f4:fc:a5:0d:ce:
b1:8e:9c:03:08:3f:6e:7f:24:d7:fb:e4:94:2b:6b:
4b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:97:65:00:10:FE:D0:E3:C6:AE:76:19:0D:B4:35:EF:60:39:DA:5C
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/f5dlABD-0OPGrnYZDbQ172A52lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.249.0/24
Signature Algorithm: sha256WithRSAEncryption
54:dd:ca:32:d7:bb:e2:43:43:8d:38:62:54:ec:b4:7c:90:c0:
44:53:1d:a8:70:c0:64:66:f5:06:7e:8b:80:64:4b:d9:04:32:
e5:5a:8c:12:1c:08:9f:00:f1:f3:d4:c7:a2:ac:01:16:11:b2:
95:ad:9a:cd:e0:6b:85:1c:fd:81:54:97:ae:46:c5:64:d7:7d:
a0:06:48:1b:ef:8c:6d:51:57:47:a7:31:0b:38:f8:c8:94:6c:
37:2d:5a:fc:86:27:c4:ae:01:9a:ef:dc:ad:b7:cd:4e:2c:93:
14:66:e3:06:47:ad:a6:9f:04:9a:35:c8:19:46:21:9f:ae:97:
ab:85:43:1f:ff:3c:20:2d:60:96:db:fe:a8:6c:28:43:18:e7:
83:68:3e:94:55:e0:92:04:69:66:3a:38:20:d9:e5:06:58:66:
2b:91:2a:08:6a:8e:e6:b8:f9:24:ec:44:c2:fd:e3:fc:4a:c1:
54:29:29:17:09:36:d0:ba:16:08:b3:7d:64:6b:cb:7d:84:72:
21:4c:66:c7:bb:02:de:3d:df:b2:1b:9a:40:6a:9c:e2:b7:3d:
c8:aa:2a:b5:cb:78:79:64:f2:ef:89:78:71:ae:f2:83:51:3b:
fb:bc:9e:14:67:d2:90:ef:2e:40:a7:a5:8e:43:50:73:58:b9:
37:55:0a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:46 2023 by rpki-client on console-fra.rpki-client.org