Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/0fd5f4-56c0-48ba-b02b-d138a9c4e43f/1/Po8-n7YBIv3m4iUjNVgID4f2Pw0.roa
File: Po8-n7YBIv3m4iUjNVgID4f2Pw0.roa (raw, json)
Hash identifier: x//yT7r03EcD8dK2VgDSppMBn96UQqcZsnLRuJVLGWg=
Subject key identifier: 3E:8F:3E:9F:B6:01:22:FD:E6:E2:25:23:35:58:08:0F:87:F6:3F:0D
Certificate issuer: /CN=ea93edfc2aa748e4981050ec06e3a66920265e17
Certificate serial: 08B27FFF
Authority key identifier: EA:93:ED:FC:2A:A7:48:E4:98:10:50:EC:06:E3:A6:69:20:26:5E:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6pPt_CqnSOSYEFDsBuOmaSAmXhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/0fd5f4-56c0-48ba-b02b-d138a9c4e43f/1/Po8-n7YBIv3m4iUjNVgID4f2Pw0.roa
Signing time: Sat 01 Jan 2022 15:05:14 +0000
ROA not before: Sat 01 Jan 2022 15:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 378
IP address blocks: 132.72.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145915903 (0x8b27fff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea93edfc2aa748e4981050ec06e3a66920265e17
Validity
Not Before: Jan 1 15:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e8f3e9fb60122fde6e225233558080f87f63f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a5:10:87:f8:e8:1a:43:be:68:f5:3e:d4:8b:
d9:b1:f9:9f:ec:a8:8f:b4:9a:26:0e:4c:91:0e:b5:
ca:f5:2a:76:07:e2:8b:49:05:da:1a:62:09:ab:13:
53:d9:6c:96:fe:fa:e2:f9:04:c2:b8:d7:e2:30:6f:
68:69:86:26:34:2d:5c:83:01:88:68:fa:2d:bb:9d:
4c:e0:5f:dc:a7:1e:ec:6f:5b:81:15:54:5c:73:0f:
04:67:fc:66:3a:a1:86:8b:48:24:ed:a8:1e:0d:b7:
0b:36:d5:b0:4d:86:28:9e:39:f6:09:0e:fb:52:d9:
8f:cb:b5:82:5d:1b:a6:89:f0:12:77:32:0f:ba:9a:
62:6a:02:05:fc:d7:67:23:84:ae:a6:13:a2:db:39:
aa:f8:08:9d:5b:90:dc:cb:4c:7c:36:0b:28:8d:9d:
a6:bc:7c:99:f1:62:d6:ec:d1:f4:0a:df:46:ef:84:
1c:97:6d:cd:76:66:4e:d3:00:41:a8:80:f5:eb:67:
31:cf:05:9b:91:8f:b2:1f:a6:be:54:cf:52:cb:14:
09:c0:ff:ec:95:d8:09:3c:6e:18:8d:52:11:3a:dd:
32:71:5e:7b:5e:0a:d6:09:01:b3:f8:ff:de:6e:d8:
a4:77:ac:c9:72:f5:ea:46:16:5e:e6:a0:1b:93:6f:
c0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8F:3E:9F:B6:01:22:FD:E6:E2:25:23:35:58:08:0F:87:F6:3F:0D
X509v3 Authority Key Identifier:
keyid:EA:93:ED:FC:2A:A7:48:E4:98:10:50:EC:06:E3:A6:69:20:26:5E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6pPt_CqnSOSYEFDsBuOmaSAmXhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0fd5f4-56c0-48ba-b02b-d138a9c4e43f/1/Po8-n7YBIv3m4iUjNVgID4f2Pw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0fd5f4-56c0-48ba-b02b-d138a9c4e43f/1/6pPt_CqnSOSYEFDsBuOmaSAmXhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.72.0.0/15
Signature Algorithm: sha256WithRSAEncryption
7d:31:eb:92:b5:cf:4b:b9:72:22:52:c7:4e:ad:a7:6d:23:41:
29:74:15:d8:cb:e1:da:ea:9c:93:55:18:01:7c:27:b7:28:f6:
da:2c:2b:49:d8:b5:9f:d7:57:1f:99:1c:a5:2b:a2:41:b0:87:
28:ec:08:39:eb:3e:4d:92:ce:9f:9e:0e:cc:81:34:67:59:19:
d7:eb:09:0a:b4:31:24:9a:c7:a1:5c:8d:ab:e0:c7:37:c2:4b:
e0:93:79:b8:4d:31:3b:51:6c:fb:1c:86:e6:da:89:04:02:94:
1b:d1:ae:4f:bb:9c:8f:11:ac:6f:88:e4:37:cc:c5:c1:0f:e1:
1a:cf:3d:32:f6:75:b5:7e:19:e4:2f:89:a6:1b:4a:9e:93:3a:
1c:c0:a7:3b:f1:6a:ea:75:30:29:c2:94:e5:61:d7:ce:b9:9f:
5b:c7:08:db:5c:e0:23:db:5d:48:09:fb:e3:0c:31:8a:26:ad:
0e:49:6d:29:82:81:6f:96:84:ba:f2:e1:72:8c:d3:ab:c2:73:
06:42:97:ef:17:29:0d:7b:fc:3f:51:d1:8c:93:bf:a7:9e:6a:
5a:4e:29:a1:48:ef:40:38:d1:b9:f2:d7:d7:08:1b:f9:96:6c:
08:a1:a4:5a:dc:22:cd:cf:1b:7a:31:9d:82:88:72:43:3b:22:
c4:51:62:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:51 2023 by rpki-client on console-fra.rpki-client.org