Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4ZUY6kwpjINJ3jupyV7i4NeqC8k.roa
File: 4ZUY6kwpjINJ3jupyV7i4NeqC8k.roa (raw, json)
Hash identifier: 6jGu/2BIA+E1zPYA32tAfTJU9+HtoON4WEVHBX818so=
Subject key identifier: E1:95:18:EA:4C:29:8C:83:49:DE:3B:A9:C9:5E:E2:E0:D7:AA:0B:C9
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0902EEB6
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4ZUY6kwpjINJ3jupyV7i4NeqC8k.roa
Signing time: Sat 01 Jan 2022 15:03:02 +0000
ROA not before: Sat 01 Jan 2022 15:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36062
IP address blocks: 213.254.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151187126 (0x902eeb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 1 15:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e19518ea4c298c8349de3ba9c95ee2e0d7aa0bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fa:06:3e:e1:0a:f4:55:1d:c5:db:31:f2:57:
2e:54:83:28:e6:1b:e3:47:c8:8d:3c:fa:74:19:3b:
75:a5:91:ff:60:86:81:35:41:24:c3:2b:41:73:cb:
85:0a:2e:a6:6a:ea:b1:90:0e:5b:7a:98:16:05:33:
c4:fb:09:5b:d8:8c:f1:04:98:27:43:e9:22:d7:4c:
3d:f8:60:51:a5:9c:4c:66:4b:72:d4:38:81:f0:58:
b5:60:c7:d0:e2:2b:49:38:7f:99:05:b2:eb:f2:17:
18:cf:22:f4:88:24:15:c6:b3:93:b2:9d:24:f4:64:
4e:7f:84:26:ef:92:70:45:a6:d3:47:d0:d9:cf:d9:
d1:a3:86:97:f3:4d:02:e7:10:f2:e5:0b:3e:b3:84:
e4:42:38:40:87:07:bf:da:99:33:61:0c:1a:47:e4:
bb:e2:67:4c:ec:e1:20:ba:a8:df:00:d2:47:20:4a:
d7:bd:e9:08:ca:62:1d:22:3f:a6:39:9f:49:77:0a:
09:f1:e3:65:52:db:c0:3f:99:a5:ae:34:2a:d2:16:
5a:ef:97:05:00:4b:80:de:a3:6b:47:94:20:dd:60:
75:1a:ef:87:48:66:7f:5b:a5:d0:1f:6e:aa:fb:a9:
cf:83:99:c6:54:b3:ff:f3:48:e8:b1:ec:b0:84:75:
be:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:95:18:EA:4C:29:8C:83:49:DE:3B:A9:C9:5E:E2:E0:D7:AA:0B:C9
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/4ZUY6kwpjINJ3jupyV7i4NeqC8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.254.244.0/24
Signature Algorithm: sha256WithRSAEncryption
31:91:45:ed:d1:ca:4c:b2:68:28:77:28:bb:ba:35:98:27:6b:
0f:a3:e6:87:40:77:d5:db:79:96:90:5d:7b:a2:36:f6:b1:40:
46:84:f5:3d:38:37:4c:0a:a3:e2:9a:a4:e7:d1:23:bf:07:d0:
13:6a:36:d8:b4:6a:de:3c:59:f3:cc:29:04:ba:b2:b6:f9:88:
ea:64:c7:f6:4b:93:34:ae:07:3b:53:2c:d7:21:cf:6f:dd:01:
cf:cb:ec:84:4d:5e:90:0c:87:c2:56:ea:11:71:22:ca:bc:0f:
d7:0c:ed:d2:be:cb:1d:ef:8e:a1:48:d7:81:ef:69:f0:2f:1e:
00:17:c5:9f:ef:cd:71:b4:12:30:99:c7:f6:86:26:78:b2:15:
bb:85:6b:ec:a4:e1:cc:dd:28:03:a4:ab:a0:09:4f:4c:5b:7e:
3a:dc:57:c1:40:17:cd:7b:2c:3a:0f:49:b7:aa:09:38:09:5c:
b5:46:a0:5e:31:1f:4d:b4:b6:ce:7b:28:17:da:8f:01:19:33:
04:8a:e4:d9:07:39:d0:36:4c:01:ef:5e:a2:a7:46:ec:6e:b6:
1a:6c:60:0d:74:86:77:25:cb:cd:cc:1f:a4:9b:e0:e9:fe:a9:
95:0d:f4:25:7c:0c:e8:5f:4b:bc:e7:be:3e:e3:8a:8a:55:02:
f0:9b:d6:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:11 2023 by rpki-client on console-ams.rpki-client.org