Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7mqDZC2GuhlbU0egQLFZYXvQgQY.roa
File: 7mqDZC2GuhlbU0egQLFZYXvQgQY.roa (raw, json)
Hash identifier: 6o5dzZmAJIM++zcSCeZBHfwkR197u6yLxAEypkL3tpA=
Subject key identifier: EE:6A:83:64:2D:86:BA:19:5B:53:47:A0:40:B1:59:61:7B:D0:81:06
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0B25B681
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7mqDZC2GuhlbU0egQLFZYXvQgQY.roa
Signing time: Sat 01 Jan 2022 05:02:30 +0000
ROA not before: Sat 01 Jan 2022 05:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56616
IP address blocks: 2.188.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187020929 (0xb25b681)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 1 05:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee6a83642d86ba195b5347a040b159617bd08106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:25:4a:82:3a:cf:0b:13:77:a3:d8:f2:ea:
de:50:87:7e:b0:24:20:d0:19:cd:06:93:fe:25:b6:
12:06:d8:b5:56:9b:b5:73:d6:04:4a:21:6d:22:02:
db:f5:2d:88:ba:32:47:6b:c5:a6:7f:c4:dc:b6:b0:
ba:c5:45:46:8d:12:ce:b9:d5:05:5b:f8:ba:b7:cd:
d3:99:0e:48:c4:dc:3a:24:ea:9c:7f:d2:dc:e3:25:
f9:9b:7f:52:10:dc:01:2b:dc:31:9b:d0:78:e8:03:
1d:8a:33:42:0e:26:43:8e:44:0e:dc:36:9a:59:e0:
8a:44:a2:fa:bd:08:17:43:0f:f8:03:4d:3e:6e:92:
d5:da:81:0c:ce:46:e9:df:e8:32:06:5e:46:93:29:
43:3a:ac:72:7c:e5:76:20:42:b3:86:f5:75:92:bd:
da:82:85:33:d2:3c:14:df:61:c4:f9:25:47:94:ce:
dc:c7:f5:13:cf:d8:1c:6c:2c:83:1b:c4:ab:7f:7d:
46:03:d2:5a:9b:91:04:4c:7d:6b:7d:74:7c:fb:81:
ca:55:e5:5a:5b:2c:67:23:96:09:c9:8a:25:2c:b3:
46:4b:e7:95:11:b3:e2:78:c2:4e:e8:d8:f0:cd:47:
d9:05:55:51:18:32:fa:7a:e5:64:c3:b3:c3:33:39:
60:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:6A:83:64:2D:86:BA:19:5B:53:47:A0:40:B1:59:61:7B:D0:81:06
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/7mqDZC2GuhlbU0egQLFZYXvQgQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.168.0/21
Signature Algorithm: sha256WithRSAEncryption
79:7f:85:a4:07:bd:21:33:8d:12:23:59:94:d8:8e:53:7b:3b:
14:28:cc:bb:05:fb:2b:d5:65:4e:41:ee:98:b1:7d:86:ea:b7:
ef:7f:3f:08:c8:16:43:89:06:a1:5a:39:6a:0b:f2:04:19:f9:
ab:0d:16:b4:97:de:26:14:e7:02:06:b7:74:48:58:3d:4a:11:
dd:f2:f9:d6:10:52:28:f1:87:47:a9:06:38:ae:bf:df:ac:b6:
e2:2a:23:af:b3:15:f0:08:13:4e:4e:7f:53:20:b8:63:6b:b7:
c9:c7:4b:fd:b5:57:c9:11:31:93:12:6d:a8:08:00:30:02:5c:
7b:34:f3:53:dc:b5:78:04:82:52:a6:2e:fb:5c:59:1f:d1:55:
1f:b1:56:a5:b1:86:1a:ac:a7:9d:c5:5e:c5:5e:5c:30:b9:25:
fd:a2:1d:09:07:e3:f2:ef:c3:7a:e1:d2:25:5a:ca:91:e2:9d:
4a:a5:9d:13:5d:65:ab:14:c1:76:33:1b:14:88:6a:3a:f8:3e:
21:e0:ec:1d:d4:42:62:c6:b9:9d:d9:ff:d0:98:ee:1b:95:ad:
85:7f:91:28:7d:5e:e6:af:4e:95:52:28:ba:97:b6:4e:a9:c6:
95:8f:38:73:45:60:29:1d:bb:40:e6:54:6f:2f:90:50:fb:34:
8b:b2:f2:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:45 2023 by rpki-client on console-ams.rpki-client.org