Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/AxuBzIQA7cwSPAnTra8m7jMfbCE.roa
File: AxuBzIQA7cwSPAnTra8m7jMfbCE.roa (raw, json)
Hash identifier: 5gWV1rnjM0c1m6h3TSS5FJUm1O45ATmcfknRwzT6Yr8=
Subject key identifier: 03:1B:81:CC:84:00:ED:CC:12:3C:09:D3:AD:AF:26:EE:33:1F:6C:21
Certificate issuer: /CN=151453f482cda78ebc99625d80b0ffc3660f95f2
Certificate serial: 095099B1
Authority key identifier: 15:14:53:F4:82:CD:A7:8E:BC:99:62:5D:80:B0:FF:C3:66:0F:95:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FRRT9ILNp468mWJdgLD_w2YPlfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/AxuBzIQA7cwSPAnTra8m7jMfbCE.roa
Signing time: Sat 01 Jan 2022 15:54:56 +0000
ROA not before: Sat 01 Jan 2022 15:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61157
IP address blocks: 147.78.88.0/22 maxlen: 22
2a09:2040::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156277169 (0x95099b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=151453f482cda78ebc99625d80b0ffc3660f95f2
Validity
Not Before: Jan 1 15:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=031b81cc8400edcc123c09d3adaf26ee331f6c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8e:7e:31:d4:99:6e:61:fa:80:5d:36:c5:ae:
2b:7c:3f:e2:8c:92:6c:b7:73:3b:58:50:13:cb:20:
54:53:2e:7f:e8:c3:3e:fb:3e:be:6d:c4:dc:d2:82:
84:0d:47:e3:d5:42:2a:c0:11:60:ed:d6:4d:42:1d:
20:49:30:0e:9f:a2:11:4e:31:50:01:5a:21:93:42:
8a:34:74:bf:ad:ca:cd:d0:8e:3d:2e:75:d7:24:bf:
83:81:d3:a6:4b:b1:73:71:ba:cc:28:d2:99:dd:60:
fe:52:59:f9:48:d5:fb:49:bd:db:3f:0e:59:c5:0c:
72:59:b9:7d:c8:0b:a9:17:54:de:c1:da:06:44:80:
f2:61:b6:34:c2:71:34:17:11:db:d6:6c:1d:3b:05:
3e:a9:16:08:26:2e:78:2b:b3:68:29:b8:10:be:31:
e9:19:76:6a:eb:0c:f0:73:06:04:cf:97:14:6c:50:
91:05:85:7a:8d:e5:bc:9b:9a:c6:17:82:48:de:c8:
9a:d6:87:fd:e4:4e:02:39:9a:71:a9:5d:b2:a1:15:
13:bd:c4:2b:0f:40:68:ec:29:30:17:a1:bf:31:82:
e4:9c:ee:76:e3:a2:a4:f2:ff:50:c8:dc:a8:4e:af:
7c:69:b6:d4:fa:e5:fc:7d:6c:64:da:96:9f:ce:f2:
2c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:1B:81:CC:84:00:ED:CC:12:3C:09:D3:AD:AF:26:EE:33:1F:6C:21
X509v3 Authority Key Identifier:
keyid:15:14:53:F4:82:CD:A7:8E:BC:99:62:5D:80:B0:FF:C3:66:0F:95:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FRRT9ILNp468mWJdgLD_w2YPlfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/AxuBzIQA7cwSPAnTra8m7jMfbCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/59fcf0-1d5c-4ecb-bf87-3bcb8bf8bbfe/1/FRRT9ILNp468mWJdgLD_w2YPlfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.88.0/22
IPv6:
2a09:2040::/29
Signature Algorithm: sha256WithRSAEncryption
18:99:6f:27:fe:d4:5f:12:a8:5a:15:99:39:2f:77:40:1a:6f:
1b:1c:b3:e3:b3:5f:5f:f0:a1:61:b5:97:5b:81:de:35:8e:32:
89:89:87:fd:a1:ce:72:99:9c:d1:07:37:61:91:ab:fc:27:3b:
37:ad:18:6d:ae:f9:e4:f8:c6:a9:ba:0a:c6:fc:60:98:94:e5:
4b:89:7f:e8:09:72:4d:2f:85:f9:01:3b:35:c7:ac:73:e2:de:
21:70:84:23:99:d6:dc:bf:c4:e8:7d:1f:b9:6d:56:f1:08:f5:
fc:2b:20:ac:63:29:c5:b3:8f:1d:9c:1e:18:52:5c:2f:95:5b:
9e:91:7f:00:10:57:4c:21:8e:f0:7a:e9:09:2f:57:7e:18:20:
41:8f:1e:d6:61:a2:ef:20:53:6b:86:15:ac:a2:92:6d:8c:af:
f5:23:96:85:49:06:30:5d:31:07:c2:f3:4a:b9:cf:b3:dc:0a:
b3:f0:15:c6:b2:51:11:fd:b8:2d:72:51:c7:24:c1:ad:a8:a2:
bb:a2:fe:1a:c4:9d:63:27:2d:85:f5:4e:19:c0:3f:ff:af:2e:
59:01:fa:a7:eb:de:27:15:06:0b:50:40:40:89:db:40:d2:6c:
0c:ca:de:de:64:0f:6a:b9:e7:51:47:4f:f8:d5:ad:f5:70:bd:
aa:ec:b6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:29 2024 by rpki-client on console-fra.rpki-client.org