Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/CSdcBwwF0xdKprBKuYxPFsSE7ks.roa
File: CSdcBwwF0xdKprBKuYxPFsSE7ks.roa (raw, json)
Hash identifier: OcQN39uYC+bFA9rI3sWTWK3P9BPEiEGW5p1pMxyrzh8=
Subject key identifier: 09:27:5C:07:0C:05:D3:17:4A:A6:B0:4A:B9:8C:4F:16:C4:84:EE:4B
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1D0A6468
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/CSdcBwwF0xdKprBKuYxPFsSE7ks.roa
Signing time: Wed 27 Apr 2022 13:34:08 +0000
ROA not before: Wed 27 Apr 2022 13:34:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6282
IP address blocks: 64.43.100.0/22 maxlen: 22
64.43.112.0/22 maxlen: 22
193.36.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 487220328 (0x1d0a6468)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Apr 27 13:34:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09275c070c05d3174aa6b04ab98c4f16c484ee4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:34:23:4e:bc:32:d9:0b:6a:b0:58:cf:84:08:
b5:6c:d4:55:f6:77:44:99:54:c8:9d:ed:dc:0b:81:
86:13:6d:bd:d2:4a:4b:77:ab:2c:94:7e:8b:68:d5:
20:ab:04:57:90:33:27:9f:49:7f:99:e0:22:f1:59:
bb:62:e8:5e:9c:83:b7:7a:bb:1c:62:46:5b:a5:fd:
f3:76:72:7a:20:9f:44:88:9a:74:a8:0e:b8:ed:92:
2e:0f:0d:12:b1:4a:69:00:7c:2d:eb:48:79:b2:62:
ab:ef:0b:8d:c5:4e:ab:fb:e9:c5:09:78:85:0f:e1:
83:c6:23:ae:53:32:44:70:ad:ff:4a:c9:7b:2e:97:
24:9a:77:7e:07:eb:34:27:cd:1e:b7:8c:5e:45:cb:
9b:d2:39:37:cb:a2:e6:8c:a7:25:99:23:af:ab:8d:
3f:f9:8c:cc:95:f5:74:97:66:91:15:41:0b:e6:2d:
5b:ec:2c:6d:40:e4:08:3e:f4:5a:2f:61:ea:0c:59:
8c:06:31:a6:a0:d5:52:3d:f5:d5:5b:20:11:b1:2e:
bf:69:6f:2b:7f:c0:d9:2d:d9:e7:62:53:63:42:19:
1f:3a:5e:6c:06:0d:9d:cc:da:ef:35:c3:fd:87:cf:
71:37:5e:b6:cd:9f:09:23:89:3f:f7:c9:3c:5c:90:
cc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:27:5C:07:0C:05:D3:17:4A:A6:B0:4A:B9:8C:4F:16:C4:84:EE:4B
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/CSdcBwwF0xdKprBKuYxPFsSE7ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.43.100.0/22
64.43.112.0/22
193.36.204.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:12:22:f3:7f:95:13:80:7c:e8:aa:19:01:3a:c5:3c:94:a2:
11:fa:98:5a:29:7d:87:b4:e0:dd:ee:6d:8e:bf:ba:db:1a:4d:
a7:a4:2c:4a:19:40:3a:85:62:db:88:37:90:ac:81:6b:fd:50:
63:da:20:8e:02:2e:2f:b4:85:d1:6a:79:e4:cc:60:5d:d8:73:
a5:78:e7:50:35:8b:e8:a8:49:98:a8:b6:8b:79:1f:e7:da:60:
2f:09:e7:ab:ca:17:8a:43:09:89:08:33:cd:eb:9a:b3:c0:77:
9a:d3:e4:2f:a7:42:46:f8:ab:5d:46:6e:91:25:45:b5:a9:19:
8b:51:4e:1e:96:90:a5:73:8d:24:92:dd:3b:34:fb:64:36:77:
87:7b:b5:ef:80:be:f9:32:df:d5:9e:96:13:7d:0f:1d:f8:87:
87:f7:43:01:da:5a:59:b8:a1:2f:e4:c0:ca:65:eb:cc:39:7a:
57:58:22:ed:d6:1e:b2:2b:c5:51:5a:47:89:f9:6d:57:4c:e9:
27:a2:c2:46:9c:98:10:c4:32:d7:fc:9a:ce:f2:cf:6a:31:02:
38:a1:7f:ab:c7:26:67:ed:af:33:be:1b:48:f2:8d:5a:25:35:
28:b8:a1:c2:dd:28:3c:ec:1d:a5:fc:ad:ea:79:6a:a5:84:68:
98:9f:dc:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:48 2024 by rpki-client on console-ams.rpki-client.org