Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/t2TXMM_yzVYLdXsCH0ofrAbqXbs.roa
File: t2TXMM_yzVYLdXsCH0ofrAbqXbs.roa (raw, json)
Hash identifier: qwPpYnWdEe4pkooKYmUZa9K6InQ7gSVIUUKRek+akq4=
Subject key identifier: B7:64:D7:30:CF:F2:CD:56:0B:75:7B:02:1F:4A:1F:AC:06:EA:5D:BB
Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Certificate serial: 0AAA7380
Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/t2TXMM_yzVYLdXsCH0ofrAbqXbs.roa
Signing time: Sat 01 Jan 2022 02:57:53 +0000
ROA not before: Sat 01 Jan 2022 02:57:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 65724
IP address blocks: 160.218.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178942848 (0xaaa7380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8
Validity
Not Before: Jan 1 02:57:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b764d730cff2cd560b757b021f4a1fac06ea5dbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7e:f1:8a:cf:f1:e5:cb:6b:8e:be:88:77:d6:
1c:0a:88:94:8e:96:a4:71:39:53:8e:d7:9c:9b:55:
cc:91:ee:ea:1f:99:75:c7:89:b9:d9:3d:8f:44:ba:
0d:6b:0c:ee:62:a4:fc:33:de:84:6e:77:c5:90:55:
66:f9:18:b4:4c:6f:0c:13:08:ed:a3:6b:ea:e8:30:
83:35:f3:09:bf:a8:c8:f0:4d:3b:7c:4b:61:8b:5b:
86:0f:1c:c6:42:30:63:5f:84:0d:d2:17:1f:98:fd:
e2:66:f6:2d:81:2a:1f:e7:06:c8:2e:83:ce:78:78:
2c:59:f8:d2:42:1d:83:c3:00:f8:05:61:89:5c:49:
32:0b:87:66:c1:3d:50:05:02:6e:d3:da:bd:c0:1d:
9f:de:29:09:65:b0:30:00:d7:00:c4:75:fd:d4:04:
a4:df:76:96:9b:3a:3f:16:79:a5:61:05:73:77:82:
37:50:f3:07:ec:96:cd:3d:d7:b5:fd:55:13:58:ca:
ae:cb:18:dc:d6:7b:90:ae:00:30:f6:6a:e0:75:cc:
62:1f:ba:af:11:2d:1e:8f:8e:65:e1:fc:b5:29:2d:
b3:3b:a2:34:97:80:e0:61:e8:da:46:c8:2a:d9:66:
0c:42:00:06:2d:8b:fb:33:b4:41:34:69:95:7a:bc:
2f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:64:D7:30:CF:F2:CD:56:0B:75:7B:02:1F:4A:1F:AC:06:EA:5D:BB
X509v3 Authority Key Identifier:
keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/t2TXMM_yzVYLdXsCH0ofrAbqXbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.218.244.0/22
Signature Algorithm: sha256WithRSAEncryption
35:79:00:71:00:9e:14:86:8b:2c:f2:6a:51:92:fa:20:37:74:
e1:96:3f:90:c9:db:44:4f:be:6c:7e:a7:95:be:67:06:5a:8a:
df:55:f5:ee:e9:4d:f9:8b:aa:7f:0d:a4:93:87:2a:28:1b:c3:
66:0a:2d:2a:e8:30:e1:12:62:0f:29:06:32:c9:14:a3:63:42:
a4:9b:67:99:ff:af:f1:96:79:be:59:9c:80:60:05:a1:78:fc:
d1:9b:58:be:f5:09:47:a7:1d:51:6e:b3:46:e0:3a:2a:f6:0b:
b7:b7:71:aa:7e:92:5c:15:db:1c:47:02:16:05:c6:ca:84:95:
b6:49:98:d1:23:d5:b2:41:a8:02:76:a6:dd:dc:8f:50:56:22:
09:b7:43:56:00:ac:3e:e1:6c:a7:04:bb:55:a7:93:7e:73:69:
73:5c:c9:36:42:27:25:fa:86:ae:4a:9e:e0:82:e8:4c:10:e5:
ac:36:72:e1:f1:53:cc:de:a5:b4:40:11:df:bd:12:30:d9:b6:
d4:12:01:95:6a:b2:29:86:1b:60:d3:98:6c:40:78:9d:c9:77:
74:dd:10:86:77:03:88:50:2f:67:b8:3f:7f:2a:0d:8d:c6:12:
cf:53:98:92:f1:c7:22:1c:3e:fd:bb:2b:fb:ae:05:f4:fa:39:
fc:11:f1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:05 2023 by rpki-client on console-fra.rpki-client.org