Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/sZtjqXlrdY5wth7FdlaX9Vu6mNM.roa
File: sZtjqXlrdY5wth7FdlaX9Vu6mNM.roa (raw, json)
Hash identifier: lFQSBrE+PlHYrLGt1H2MGA/50+wQW+j0SDAVFEN/pTI=
Subject key identifier: B1:9B:63:A9:79:6B:75:8E:70:B6:1E:C5:76:56:97:F5:5B:BA:98:D3
Certificate issuer: /CN=a81699a5bc6487bd2f1749d133fca2e37fd4da88
Certificate serial: 9500
Authority key identifier: A8:16:99:A5:BC:64:87:BD:2F:17:49:D1:33:FC:A2:E3:7F:D4:DA:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBaZpbxkh70vF0nRM_yi43_U2og.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/sZtjqXlrdY5wth7FdlaX9Vu6mNM.roa
Signing time: Tue 26 Apr 2022 15:18:45 +0000
ROA not before: Tue 26 Apr 2022 15:18:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 149.133.4.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38144 (0x9500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a81699a5bc6487bd2f1749d133fca2e37fd4da88
Validity
Not Before: Apr 26 15:18:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b19b63a9796b758e70b61ec5765697f55bba98d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d8:d9:5f:41:2a:fb:50:a9:56:2e:91:b2:17:
b2:7c:9b:34:8c:0f:55:6b:6b:73:74:b3:5d:35:20:
21:6a:4c:38:9e:a5:1d:8c:0f:dc:7f:d6:7b:53:9a:
06:7f:0e:fe:d5:eb:d3:e0:77:19:22:25:aa:b4:99:
60:4b:84:0e:75:8e:c9:8d:71:06:9d:e3:67:d8:d3:
23:06:09:4a:eb:bc:b0:53:b9:88:fc:4c:f1:68:5b:
7a:ee:db:a4:55:b8:5e:43:0e:a9:fd:29:1b:7d:7e:
48:8c:20:ae:10:fc:0b:fc:20:82:2b:65:56:74:79:
88:72:f0:c5:54:d9:a2:15:88:5d:ce:ad:b5:14:0b:
b0:75:64:0c:b2:03:5d:01:a4:66:2f:0a:87:e3:4c:
f9:6f:b9:42:26:77:9d:66:a1:fd:44:76:76:b2:7e:
5f:5f:70:ca:b6:5b:cc:38:78:e3:3f:ea:f1:a1:0d:
02:d7:8e:ca:fb:27:9f:b9:ac:93:84:dd:70:e7:7b:
3b:d6:22:40:8b:40:76:7e:2b:89:08:ca:9f:d4:fa:
f1:8b:c6:93:d1:de:02:77:2e:16:98:6a:36:aa:07:
c9:2f:0d:e8:f9:29:cb:c0:7a:8a:2b:1a:f7:5a:0d:
a2:a5:63:d7:a6:0f:c0:ae:8f:cd:40:1c:fe:31:29:
58:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9B:63:A9:79:6B:75:8E:70:B6:1E:C5:76:56:97:F5:5B:BA:98:D3
X509v3 Authority Key Identifier:
keyid:A8:16:99:A5:BC:64:87:BD:2F:17:49:D1:33:FC:A2:E3:7F:D4:DA:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBaZpbxkh70vF0nRM_yi43_U2og.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/sZtjqXlrdY5wth7FdlaX9Vu6mNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/qBaZpbxkh70vF0nRM_yi43_U2og.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.133.4.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:e9:df:d6:e0:3a:bd:72:99:d9:df:f6:44:38:7b:e9:e3:96:
dd:56:ac:65:03:b9:b3:16:fc:1b:2f:35:8e:f5:a9:dc:04:6c:
c3:54:9b:86:9b:5a:47:e9:67:d8:2d:d5:a5:3c:ff:e9:ce:18:
4b:51:14:88:f7:90:b9:bc:9e:33:1d:51:be:ee:31:82:0d:d7:
a2:88:bb:0a:df:79:15:c3:4b:a5:62:8c:85:a8:ce:66:9b:01:
63:19:ea:38:cb:05:8b:a8:99:e7:3f:46:4d:ab:e8:d3:b3:f3:
22:3d:68:6c:e1:79:5e:03:f7:e8:3f:1f:c5:ef:30:5c:f2:8d:
48:d8:e4:f8:41:99:54:38:a9:94:23:f5:b3:a2:fe:c6:db:92:
ee:6e:09:f1:e0:40:4f:b4:37:d2:7f:65:d1:82:0a:d5:7b:96:
e4:a1:e8:58:3f:46:dd:e7:90:79:f9:c8:cc:a1:45:4c:8a:6b:
1c:53:46:5f:6a:a3:95:d0:37:7d:5a:87:53:bb:47:07:da:a6:
01:a7:db:c0:f2:2f:38:51:f5:65:9c:9a:b5:f0:e0:6e:7e:46:
7c:82:2a:a9:82:ea:a6:c6:d6:7c:cb:87:5b:1c:54:34:b2:4b:
73:2e:f5:99:73:26:39:79:e5:63:4d:1d:58:e8:2a:4a:62:2d:
a9:ca:30:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:30 2024 by rpki-client on console-ams.rpki-client.org