Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/0rvW8b1fkGfZrSTrwcYhnZrf1iQ.roa
File: 0rvW8b1fkGfZrSTrwcYhnZrf1iQ.roa (raw, json)
Hash identifier: 0QQ4m9QKjx0z4igKEhhN2D4TWyYhCmtbKoOv+yqM6vs=
Subject key identifier: D2:BB:D6:F1:BD:5F:90:67:D9:AD:24:EB:C1:C6:21:9D:9A:DF:D6:24
Certificate issuer: /CN=4ee52752a81bdfe0a401f9a261d79fee4b617115
Certificate serial: 0109C956
Authority key identifier: 4E:E5:27:52:A8:1B:DF:E0:A4:01:F9:A2:61:D7:9F:EE:4B:61:71:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuUnUqgb3-CkAfmiYdef7kthcRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/0rvW8b1fkGfZrSTrwcYhnZrf1iQ.roa
Signing time: Sat 01 Jan 2022 09:03:27 +0000
ROA not before: Sat 01 Jan 2022 09:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8303
IP address blocks: 149.219.0.0/16 maxlen: 16
149.219.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17418582 (0x109c956)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee52752a81bdfe0a401f9a261d79fee4b617115
Validity
Not Before: Jan 1 09:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2bbd6f1bd5f9067d9ad24ebc1c6219d9adfd624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:ac:45:0a:91:ae:b3:4e:fe:94:0b:7e:9d:
15:07:74:eb:7c:06:58:18:76:f4:e7:b9:ac:71:04:
38:be:37:94:4a:04:30:aa:81:16:73:08:6f:f7:04:
4c:1a:e6:a6:ff:de:0e:87:2a:5c:81:b5:7f:97:3c:
c0:0f:87:40:49:05:82:31:fa:e0:c3:31:27:63:13:
21:a8:69:16:eb:1d:ff:35:ec:de:3d:57:c5:a3:e7:
4a:ff:c4:69:b7:6c:b6:c1:90:39:df:f6:ec:0b:47:
c8:12:6a:06:a5:88:d2:9a:1a:be:34:e2:09:8e:41:
7a:ea:6a:43:29:2a:3c:69:0e:dc:fb:e4:32:94:73:
6f:a8:1f:bd:1e:fd:17:d4:2f:e6:3f:b2:8c:91:ab:
83:db:42:6b:d9:c8:78:00:1a:5e:f6:7f:08:92:6c:
c0:28:5f:83:ee:5e:83:ce:aa:ab:ae:d6:61:18:57:
fb:88:36:05:c8:b5:24:b3:15:c3:13:63:bc:43:82:
f4:e3:de:c3:c6:78:3e:72:79:f8:55:8b:a7:ed:55:
1d:fd:e3:16:9a:53:0c:d5:77:0a:46:70:26:d0:c2:
21:63:43:fe:37:af:51:18:f3:7d:53:07:22:59:56:
20:d8:b0:ec:7c:f9:4d:19:a6:2b:95:a6:ed:81:0c:
8a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:BB:D6:F1:BD:5F:90:67:D9:AD:24:EB:C1:C6:21:9D:9A:DF:D6:24
X509v3 Authority Key Identifier:
keyid:4E:E5:27:52:A8:1B:DF:E0:A4:01:F9:A2:61:D7:9F:EE:4B:61:71:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuUnUqgb3-CkAfmiYdef7kthcRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/0rvW8b1fkGfZrSTrwcYhnZrf1iQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/31e0d4-35ce-4d02-9734-d78fb97f9828/1/TuUnUqgb3-CkAfmiYdef7kthcRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.219.0.0/16
Signature Algorithm: sha256WithRSAEncryption
44:10:e7:4e:95:2d:34:b4:d5:18:b1:ca:80:e7:85:20:09:65:
89:d9:37:31:e2:09:07:16:82:e4:67:d3:bd:9c:3d:6b:a3:53:
4d:2e:c2:8f:71:6b:de:35:12:eb:0b:1a:7a:e4:04:47:dc:2a:
7a:6b:87:31:d2:d3:c8:53:68:e5:cd:61:18:3c:0e:a5:06:30:
04:68:15:e1:79:35:c2:2a:6a:41:74:93:be:07:0b:c5:c5:98:
12:f2:c5:2b:18:2c:e2:33:5c:15:e5:83:37:b3:97:2e:86:9f:
7d:ad:ad:e3:29:bc:93:7e:52:f6:ee:cf:75:c9:83:7e:d6:c3:
b9:b8:fc:a0:54:7b:87:92:31:e6:32:8b:01:22:e5:e8:c8:eb:
59:4c:a0:5b:39:6d:4a:63:1f:87:8d:5e:66:ef:79:d9:ca:3d:
67:6e:c0:39:c1:8e:0b:98:2b:f4:6d:3a:8c:b9:2b:42:b9:06:
f6:b7:9e:51:cd:23:d7:a5:c7:bf:f9:5f:ed:14:2b:24:e1:9c:
21:74:e1:e4:82:ad:fe:e6:14:b0:8f:14:34:4c:ce:e4:af:da:
3f:5e:4a:81:59:2e:a6:39:78:6b:7e:cb:0b:cb:36:eb:32:2c:
e2:12:c4:a5:08:81:5e:d3:54:a9:93:0e:69:9e:27:61:4b:5c:
0f:5b:ac:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:38 2023 by rpki-client on console-ams.rpki-client.org