Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/pGA2n_Qt3FbK9CZcmRmm-1Wt-bA.roa
File: pGA2n_Qt3FbK9CZcmRmm-1Wt-bA.roa (raw, json)
Hash identifier: QBmacGdtpOCg1pMItVx9C4FsckNge+um6CMA/1ifg4U=
Subject key identifier: A4:60:36:9F:F4:2D:DC:56:CA:F4:26:5C:99:19:A6:FB:55:AD:F9:B0
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 2372E5E6
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/pGA2n_Qt3FbK9CZcmRmm-1Wt-bA.roa
Signing time: Sat 01 Jan 2022 03:54:18 +0000
ROA not before: Sat 01 Jan 2022 03:54:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 147.161.253.0/24 maxlen: 24
147.161.254.0/24 maxlen: 24
147.161.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 594732518 (0x2372e5e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: Jan 1 03:54:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a460369ff42ddc56caf4265c9919a6fb55adf9b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e1:74:3c:80:9b:87:e5:03:c6:25:4b:dc:05:
73:82:f8:da:54:2d:ad:6d:da:a0:39:7f:37:ee:97:
93:8a:ea:95:1c:28:62:9e:5e:41:62:27:e2:ca:e1:
29:19:27:3a:92:73:b4:55:57:21:3f:90:6a:ae:3f:
fa:67:cb:0e:a4:20:97:00:67:04:e4:f5:4c:d5:25:
90:93:66:38:ce:ec:77:af:e0:ea:6f:85:61:59:91:
a2:80:0e:b5:82:23:b9:e2:f5:cc:e6:95:11:72:cf:
67:a6:52:cb:38:53:e2:22:7f:30:72:52:55:c1:06:
00:85:1b:5d:e5:97:9a:46:4f:b8:f4:17:8b:b6:ee:
db:96:41:80:bf:5e:6e:2e:dc:40:5b:61:a3:13:58:
fe:87:e3:1a:ab:f2:ac:e2:ee:da:5c:5d:5d:82:a6:
ac:ef:38:f0:1a:a3:d8:53:49:e9:b8:0e:1e:ea:18:
55:5a:a0:1c:6e:68:9d:fe:c7:be:8c:37:52:58:e4:
5b:8a:e6:c5:68:a1:0a:48:3a:e1:1c:93:f3:d2:7f:
43:a7:54:e0:5c:a2:93:29:f0:a0:15:c1:62:b1:e6:
37:bc:56:d9:0c:62:b0:d3:52:93:b7:86:d6:79:3f:
be:c8:27:da:47:53:2b:76:b1:69:ce:3a:70:89:02:
a7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:60:36:9F:F4:2D:DC:56:CA:F4:26:5C:99:19:A6:FB:55:AD:F9:B0
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/pGA2n_Qt3FbK9CZcmRmm-1Wt-bA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.253.0-147.161.255.255
Signature Algorithm: sha256WithRSAEncryption
a6:a6:38:9b:40:5b:19:1e:6a:8b:da:ea:5b:87:f2:10:85:72:
66:71:1a:27:80:3a:e9:72:ed:a2:a5:fb:b3:33:67:7f:78:1e:
98:25:15:b0:c2:50:b0:f2:99:76:08:94:36:21:f8:6a:f3:dc:
42:e8:fe:81:52:6c:f1:a4:4a:d1:52:6c:23:a1:6d:2c:ac:9a:
a7:39:a8:b5:3c:a7:b3:41:a5:14:63:1c:14:7d:d7:a7:49:3e:
7f:3f:2b:ea:e9:38:45:19:07:10:cd:74:67:46:0f:81:8b:98:
b1:0d:30:36:45:9e:b2:cd:14:57:68:ed:de:2e:90:d5:56:d6:
7c:66:8f:da:d3:7a:3c:c8:81:f0:d7:6c:d8:cc:78:38:a7:a0:
d3:4e:43:3f:07:59:c0:3f:79:05:42:ac:72:5e:9c:cd:f3:38:
bc:41:d7:b3:84:19:38:b4:d6:e6:92:e8:de:d1:0f:2e:0d:37:
66:6a:c6:77:cd:2a:15:45:15:18:46:f1:18:7d:13:ae:6c:a5:
4b:1e:c0:26:19:9c:6d:98:21:a7:94:c4:d4:15:83:8a:9f:9c:
9d:a4:55:e2:fd:91:a5:ec:75:9b:e6:ba:ba:53:69:8a:99:09:
62:c0:7e:60:21:2f:73:34:3e:67:1a:46:2a:92:e8:d6:d2:00:
40:7a:e8:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:47 2023 by rpki-client on console-ams.rpki-client.org