Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/F-vSEpat-GxfbqkYIf42gW3Ub1I.roa
File: F-vSEpat-GxfbqkYIf42gW3Ub1I.roa (raw, json)
Hash identifier: IZeGwl9Mq12hx0igBOb+PVCI1EUPkljqpJfEbNl05WQ=
Subject key identifier: 17:EB:D2:12:96:AD:F8:6C:5F:6E:A9:18:21:FE:36:81:6D:D4:6F:52
Certificate issuer: /CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Certificate serial: 06A102D5
Authority key identifier: CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/F-vSEpat-GxfbqkYIf42gW3Ub1I.roa
Signing time: Sat 01 Jan 2022 08:02:10 +0000
ROA not before: Sat 01 Jan 2022 08:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 152.88.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111215317 (0x6a102d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd1e28930d77a7eb9891b6fabbb2915ee3885aa
Validity
Not Before: Jan 1 08:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17ebd21296adf86c5f6ea91821fe36816dd46f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:3a:82:36:e9:a8:60:0d:53:bd:b6:a5:71:57:
d9:a2:24:8e:77:34:83:2c:09:29:5e:60:e8:a2:b8:
34:1a:17:79:b7:31:22:55:58:08:e7:58:6c:ae:d6:
80:ab:4c:44:bb:75:41:f7:e1:e7:12:ec:27:92:fe:
7f:5c:c0:5f:1f:31:dd:bd:d9:87:fb:ef:c1:74:33:
1c:6b:30:dc:92:4f:60:af:af:01:68:95:12:45:69:
47:1d:5a:20:38:42:a0:81:87:5d:4f:59:b8:9d:f6:
3e:ae:a2:19:4e:c0:06:99:bf:91:24:b8:4c:39:9f:
0f:60:86:90:11:a4:26:2b:dd:d6:bc:61:38:81:8a:
29:3a:79:bf:31:1d:1e:ae:ca:66:be:41:f2:97:27:
99:5b:48:45:24:9d:a4:01:86:86:dd:51:42:ef:19:
d7:f6:93:ef:cd:16:f4:e0:49:27:11:ba:49:cd:d8:
b3:18:e0:e4:f0:07:28:fd:ed:7b:50:d6:9f:c2:a9:
7e:e3:76:26:d1:55:37:a8:ce:e5:bb:8b:a6:16:93:
63:f7:1a:e7:b1:da:05:71:6d:9a:b3:4b:ff:d9:3a:
e2:81:74:cb:e0:8f:ee:fc:e4:25:97:6e:fc:96:b6:
72:b1:16:7f:e1:da:eb:2c:ab:03:29:2c:04:9b:c2:
0e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:EB:D2:12:96:AD:F8:6C:5F:6E:A9:18:21:FE:36:81:6D:D4:6F:52
X509v3 Authority Key Identifier:
keyid:CC:D1:E2:89:30:D7:7A:7E:B9:89:1B:6F:AB:BB:29:15:EE:38:85:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNHiiTDXen65iRtvq7spFe44hao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/F-vSEpat-GxfbqkYIf42gW3Ub1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1042dd-e67b-402a-81dc-c13b1f977d57/1/zNHiiTDXen65iRtvq7spFe44hao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.88.0.0/16
Signature Algorithm: sha256WithRSAEncryption
50:f6:ff:f5:4b:7e:df:fc:69:3d:0b:84:08:e8:cc:cc:b9:71:
a4:a9:6a:dc:37:a0:c4:1c:a0:8e:1d:7d:ff:97:de:ea:9d:dc:
e9:3e:97:3a:57:df:15:42:cc:90:c1:06:b9:6a:3b:b4:cd:44:
b4:8b:ce:6d:c9:8f:f6:ca:7e:a3:36:d2:26:0a:29:27:33:c2:
f5:43:12:6c:e8:a3:59:2a:99:c2:c4:15:21:8d:ad:92:90:fc:
d1:53:f6:b2:a0:5c:36:32:f8:a6:31:ab:36:4a:a1:32:b4:1d:
04:df:27:67:14:02:a9:29:be:62:4a:3a:23:f8:81:bd:19:c5:
3a:dc:ca:11:ed:39:4d:1c:0d:1f:c3:fc:94:2f:1c:28:ab:50:
04:03:83:ca:29:6e:d0:48:17:38:b2:c1:d4:7b:09:ea:51:83:
7c:e9:15:da:97:b2:36:00:0c:05:ff:5f:c9:06:ff:aa:5d:99:
15:a2:f8:72:67:e2:5d:bb:05:f9:c8:78:22:df:74:a4:e4:88:
84:70:7e:db:28:af:70:26:2c:b3:64:77:e6:94:ab:68:41:45:
56:13:5e:f6:53:93:c4:f2:2e:10:b1:e6:69:3a:ce:dd:7a:bd:
54:9c:fb:d3:bc:43:54:ef:6b:92:57:6d:d0:21:8d:eb:de:3d:
de:ef:d6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:47 2023 by rpki-client on console-ams.rpki-client.org