Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/hEYCTTAs5jY_19_K0zIOrAdzjhQ.roa
File: hEYCTTAs5jY_19_K0zIOrAdzjhQ.roa (raw, json)
Hash identifier: ude6iGAqp0N0UIn0+wVV69ztxor6RJzyo6aiiocsVfc=
Subject key identifier: 84:46:02:4D:30:2C:E6:36:3F:D7:DF:CA:D3:32:0E:AC:07:73:8E:14
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 155AA7FB
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/hEYCTTAs5jY_19_K0zIOrAdzjhQ.roa
Signing time: Sat 01 Jan 2022 08:04:47 +0000
ROA not before: Sat 01 Jan 2022 08:04:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8038
IP address blocks: 157.97.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358262779 (0x155aa7fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 1 08:04:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8446024d302ce6363fd7dfcad3320eac07738e14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:32:1a:c6:fd:4c:8d:15:3e:73:54:61:a0:23:
d4:54:0f:f2:a1:b0:ff:23:ab:49:d7:8e:f6:6c:41:
c1:82:42:6b:b0:c7:52:bc:fd:4d:8b:9d:6f:4e:d8:
c2:a4:8c:97:47:14:78:a6:bd:61:aa:87:2f:4d:9f:
28:26:34:ef:39:b4:48:37:c2:cd:34:da:e5:0d:75:
09:f2:9e:ca:db:d8:58:e3:b6:d1:92:80:26:89:3c:
77:bb:5a:a2:ab:81:dd:be:42:df:e0:52:98:58:be:
57:00:d0:66:8b:e6:3f:2c:dd:90:df:f9:e7:19:f9:
4b:ec:38:af:57:7c:38:45:61:4f:61:e4:00:95:91:
a8:33:2a:b7:d9:d5:15:0a:5d:ba:b3:af:0f:7c:11:
28:e4:80:d6:48:1b:b5:f9:6a:96:0b:38:63:bc:b4:
20:1c:89:21:d4:d9:ef:28:23:b7:2a:e4:96:76:74:
d3:75:83:55:75:b9:aa:bf:8a:49:45:1b:7d:93:e8:
f7:2a:fc:a1:f9:60:cd:6d:53:b2:fa:5c:10:80:6a:
aa:da:ad:20:42:01:e9:76:89:1b:b0:53:69:59:98:
c4:02:3b:d7:3e:43:91:0e:49:bc:6a:ed:af:89:f3:
9b:2e:5e:8f:37:a4:99:f2:4d:8d:e3:ef:3d:4a:f8:
05:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:46:02:4D:30:2C:E6:36:3F:D7:DF:CA:D3:32:0E:AC:07:73:8E:14
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/hEYCTTAs5jY_19_K0zIOrAdzjhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.97.123.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:81:0a:c9:39:0c:cb:4c:4d:25:6f:88:51:91:9d:1a:80:a8:
ea:80:76:1a:cc:1c:9b:68:2c:ff:76:fe:6e:76:41:a7:54:2c:
f6:2f:30:20:de:a7:9d:de:a7:e9:4c:c2:ba:3d:d1:aa:df:15:
ec:e1:9b:3d:49:a0:9c:83:ad:b3:bb:8c:04:8b:09:2c:68:9d:
de:a1:53:50:87:4e:74:6d:d6:4b:28:70:19:82:14:af:07:f8:
91:8c:87:66:ea:dc:c1:e4:3d:bf:7d:81:37:75:42:f0:a4:13:
4a:f3:28:cf:f2:bf:24:f0:d5:d2:9a:68:87:73:fb:a0:1d:71:
aa:95:e0:2e:cc:9e:73:e8:81:92:d9:7f:b4:70:77:b0:02:08:
32:bd:86:74:21:cc:72:b2:45:89:6a:7b:c6:26:71:d7:b0:6a:
1b:6f:56:96:55:63:d7:f1:c1:14:48:ec:dd:8d:9a:69:6d:0b:
2a:e6:b6:ea:9a:50:4b:fc:90:8a:43:44:9c:ef:b0:7c:b1:0a:
72:e8:ac:95:ec:e5:ef:72:d8:4b:9e:7f:2b:f0:00:a4:18:15:
8c:2a:a7:f7:0f:35:f8:24:4e:56:d2:97:eb:b6:22:e3:4c:3c:
e8:8c:ee:13:8b:bc:4b:28:bb:ab:e7:bf:34:d2:8f:2c:6a:fa:
20:5e:b4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:15 2023 by rpki-client on console-ams.rpki-client.org