Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/SCuaNwyo8aqptqEe9U2Vdm9T0Xo.roa
File: SCuaNwyo8aqptqEe9U2Vdm9T0Xo.roa (raw, json)
Hash identifier: vW8pUz7vUeY5DAuCqwpStdSOODPdc94n6fUzKQTgA9g=
Subject key identifier: 48:2B:9A:37:0C:A8:F1:AA:A9:B6:A1:1E:F5:4D:95:76:6F:53:D1:7A
Certificate issuer: /CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Certificate serial: 3C4D745D
Authority key identifier: 96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/SCuaNwyo8aqptqEe9U2Vdm9T0Xo.roa
Signing time: Sat 01 Jan 2022 13:57:38 +0000
ROA not before: Sat 01 Jan 2022 13:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61157
IP address blocks: 134.97.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1011709021 (0x3c4d745d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Validity
Not Before: Jan 1 13:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=482b9a370ca8f1aaa9b6a11ef54d95766f53d17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:27:02:a3:4a:8c:2c:1e:07:55:00:4b:24:78:
6a:3b:b9:5d:b5:67:b7:11:66:a6:1f:70:b7:ba:e1:
ce:09:51:60:ca:ad:3e:21:5a:4d:62:cc:d0:67:e3:
c0:bd:95:e5:c0:da:ca:dd:a8:49:41:83:2f:53:a8:
1e:d2:1a:06:1f:cf:52:eb:83:7b:89:8f:4a:82:27:
e5:56:4f:e9:b6:27:65:7d:83:f8:a7:bc:92:df:97:
b4:bb:29:02:e0:85:6e:5c:e0:bc:2e:3e:44:3c:ab:
1b:8d:d6:f4:d0:04:3f:3e:cf:ac:63:e7:e8:dd:09:
8a:29:aa:09:1a:07:1c:53:44:86:51:c7:ff:e3:e3:
f2:d3:76:94:c5:a0:91:84:06:6b:e2:c6:ed:37:f1:
9b:ed:9c:dd:3d:a5:d1:49:1a:ad:be:66:fd:9a:6a:
88:cd:d5:22:ee:ad:c0:81:dd:ea:bf:e7:f9:91:db:
25:fe:8b:28:cf:d5:b2:d6:b0:7c:d9:b0:35:8a:41:
4b:d2:92:17:fd:a6:79:2e:29:56:b7:47:a9:e4:42:
cd:58:f4:5d:a1:51:c7:ae:c1:24:7b:e1:c5:30:b8:
ab:98:a2:bb:56:3f:72:ad:e8:5f:d1:06:df:42:07:
3f:09:5d:a8:9c:33:15:43:fc:16:ff:31:0f:5f:ff:
77:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:2B:9A:37:0C:A8:F1:AA:A9:B6:A1:1E:F5:4D:95:76:6F:53:D1:7A
X509v3 Authority Key Identifier:
keyid:96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/SCuaNwyo8aqptqEe9U2Vdm9T0Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.97.4.0/24
Signature Algorithm: sha256WithRSAEncryption
64:08:73:8f:6e:57:6e:08:8a:13:cd:d3:56:36:36:00:05:06:
ef:52:8f:55:e4:10:26:5e:bb:d1:56:d5:de:09:39:b9:f0:a2:
79:10:60:cf:a7:d9:42:2b:54:af:a7:77:61:1d:c6:da:89:bf:
f7:e8:8c:1b:88:ad:aa:03:15:84:ac:25:08:bb:58:83:63:77:
3b:bc:fa:c2:fb:37:70:ff:f1:30:dc:63:6b:6b:d0:d8:9f:5f:
b7:76:5d:0d:30:4e:06:d4:63:2b:0a:0c:2b:9b:0d:84:b2:c3:
cc:70:56:93:5e:6c:12:ab:0e:da:d7:b9:74:40:03:08:a9:cb:
0d:46:e6:60:de:be:93:9f:b2:d4:e4:60:23:7e:e1:9f:be:6f:
d9:d4:e1:1c:74:36:76:2c:c2:fc:fc:9a:8b:db:3c:e7:fb:5d:
97:1f:bf:5b:bc:b1:09:c3:0b:f3:62:cd:1c:f9:a6:5e:5a:2b:
1a:97:c6:d3:7d:91:00:b3:53:9e:88:75:a4:9d:db:94:21:58:
c5:69:5b:19:f3:16:a7:1e:b7:ea:91:72:18:7f:49:1f:c8:ee:
38:ed:14:15:d6:45:ad:4c:ed:3a:ed:a1:62:0d:1b:06:4d:eb:
ce:0f:e5:30:cf:78:35:f9:b8:fb:31:32:38:ac:c7:b8:42:89:
d3:87:19:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:02 2024 by rpki-client on console-ams.rpki-client.org