Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1293db-c752-4d03-857d-579531e5a00f/1/07k6fElmhltHukBH9Z_FLNhSS9Y.roa
File: 07k6fElmhltHukBH9Z_FLNhSS9Y.roa (raw, json)
Hash identifier: LM1TdLC6c2c9LG9NGK9VYHR2/RxcCsa/TQ+P0vNXkMU=
Subject key identifier: D3:B9:3A:7C:49:66:86:5B:47:BA:40:47:F5:9F:C5:2C:D8:52:4B:D6
Certificate issuer: /CN=0297a58998f0974347081c17f25eedd65fad9661
Certificate serial: 30015F6E
Authority key identifier: 02:97:A5:89:98:F0:97:43:47:08:1C:17:F2:5E:ED:D6:5F:AD:96:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApeliZjwl0NHCBwX8l7t1l-tlmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1293db-c752-4d03-857d-579531e5a00f/1/07k6fElmhltHukBH9Z_FLNhSS9Y.roa
Signing time: Sat 01 Jan 2022 00:54:49 +0000
ROA not before: Sat 01 Jan 2022 00:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199365
IP address blocks: 164.138.1.0/24 maxlen: 24
164.138.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 805396334 (0x30015f6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0297a58998f0974347081c17f25eedd65fad9661
Validity
Not Before: Jan 1 00:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3b93a7c4966865b47ba4047f59fc52cd8524bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4a:b6:9b:52:a8:51:b9:9a:09:1f:b7:b4:6b:
33:bf:eb:37:03:d7:78:5e:29:0f:20:9d:4a:be:e8:
c4:2c:63:13:ab:be:88:d6:a1:e0:e8:d9:e8:31:ed:
d4:63:85:dd:dd:a7:43:24:8d:cd:1c:f9:f0:cd:5d:
68:c3:44:02:c2:22:33:a1:c7:58:a8:05:9a:75:e9:
e9:81:aa:91:5c:d5:3a:e0:ac:df:72:24:29:9b:8a:
b8:38:3a:e2:0f:44:08:1d:c9:e7:89:d9:21:97:d0:
07:21:01:3f:23:15:82:d1:4b:c3:dc:0f:2f:36:5a:
c0:ba:1f:49:9c:a6:3e:bd:57:24:56:48:53:5e:9f:
2a:f8:5a:af:79:1a:c8:e9:ba:62:b0:e3:7d:62:16:
d9:50:60:45:f9:6d:96:34:29:e5:4c:60:0c:71:05:
16:01:8a:51:5b:af:30:9f:21:12:02:6c:1b:d2:30:
82:f4:fb:54:fb:ee:f0:db:72:cd:2a:c6:9b:2d:cd:
af:fd:c8:f3:18:1a:b2:05:61:74:bb:a3:d7:07:bc:
15:39:d4:ef:dd:67:0f:29:d5:53:3b:51:00:27:b7:
f2:e6:a7:3f:b8:ec:64:99:62:54:a3:6a:c3:06:fa:
2d:2b:9e:c9:94:03:2f:08:c6:41:23:18:c3:b5:fc:
ef:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B9:3A:7C:49:66:86:5B:47:BA:40:47:F5:9F:C5:2C:D8:52:4B:D6
X509v3 Authority Key Identifier:
keyid:02:97:A5:89:98:F0:97:43:47:08:1C:17:F2:5E:ED:D6:5F:AD:96:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApeliZjwl0NHCBwX8l7t1l-tlmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1293db-c752-4d03-857d-579531e5a00f/1/07k6fElmhltHukBH9Z_FLNhSS9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1293db-c752-4d03-857d-579531e5a00f/1/ApeliZjwl0NHCBwX8l7t1l-tlmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.138.1.0/24
164.138.3.0/24
Signature Algorithm: sha256WithRSAEncryption
88:61:96:56:f9:43:8b:55:16:8d:ca:de:a9:eb:44:be:c3:5c:
62:bb:ab:71:dd:13:13:e6:91:25:1c:89:93:a6:62:f1:fd:75:
2a:0e:42:c3:4f:07:fb:b7:d3:08:0a:3f:5f:e0:86:28:1c:c7:
91:d0:e7:ed:eb:5b:f7:74:34:77:06:1f:00:73:62:df:4d:2c:
5c:99:1f:9a:ca:01:40:13:e3:74:6e:b1:ac:41:0f:27:8c:86:
ff:60:77:f9:e9:7c:ba:e6:fd:77:26:9f:ad:a4:88:76:16:dd:
2e:e5:cd:0a:82:d2:b4:b5:23:9d:f5:53:03:3e:f6:fe:77:f3:
15:a1:cd:c4:37:72:62:c7:7a:97:fb:4d:c3:cc:22:bc:ae:db:
25:6d:c6:fe:d2:39:88:1c:6f:c0:b4:12:8e:e4:2a:fe:11:8e:
fd:9e:16:f1:dd:23:d0:67:a5:6b:33:74:d1:ba:12:19:43:95:
9e:e1:1b:ec:6e:78:1e:7c:be:04:ab:7c:00:f4:c1:d8:f4:02:
12:5e:35:b6:a6:ca:ec:c7:58:55:1b:f3:b9:c1:fa:75:40:d7:
15:a9:1f:9a:12:f0:dd:d1:ac:d7:4f:c9:6b:6c:3a:73:d5:1c:
48:0a:8d:09:c1:64:ff:5a:ca:8b:09:e0:5d:ec:8c:93:e5:95:
80:ec:fe:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:13 2023 by rpki-client on console-fra.rpki-client.org