Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/a6dX3C1yL_UJpkAHF-DsKzXFgnk.roa
File: a6dX3C1yL_UJpkAHF-DsKzXFgnk.roa (raw, json)
Hash identifier: 1dN1Gaq1x2V206JplbWWC55Snp5nPNDNg4qh+2wFC3Q=
Subject key identifier: 6B:A7:57:DC:2D:72:2F:F5:09:A6:40:07:17:E0:EC:2B:35:C5:82:79
Certificate issuer: /CN=a5bec32d6c64ffb601e270cedbcd3efff5ce7a40
Certificate serial: 090A969B
Authority key identifier: A5:BE:C3:2D:6C:64:FF:B6:01:E2:70:CE:DB:CD:3E:FF:F5:CE:7A:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pb7DLWxk_7YB4nDO280-__XOekA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/a6dX3C1yL_UJpkAHF-DsKzXFgnk.roa
Signing time: Sat 01 Jan 2022 06:02:16 +0000
ROA not before: Sat 01 Jan 2022 06:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 156.14.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151688859 (0x90a969b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5bec32d6c64ffb601e270cedbcd3efff5ce7a40
Validity
Not Before: Jan 1 06:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ba757dc2d722ff509a6400717e0ec2b35c58279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8a:6c:e5:3d:9f:73:d9:68:21:57:fc:ed:1e:
4a:4b:e6:56:6c:1d:1e:a5:e9:80:c5:bd:ed:ba:e4:
b0:a4:e3:a8:4c:a9:cb:4e:2e:96:78:d3:d0:0d:c2:
2d:ef:f2:c0:93:74:f8:ec:bc:7c:15:a4:4c:bf:12:
f4:19:cb:1f:03:55:4c:e8:3d:b6:f5:3c:a8:e2:0c:
b9:76:06:a4:3a:c6:30:26:ba:9d:80:fd:ee:55:8b:
8d:23:4e:e9:30:32:c3:0c:6a:5f:4a:63:d1:e0:7e:
69:8b:20:68:99:1f:64:9d:e5:be:62:c9:ea:d5:b2:
1d:88:ca:d8:cc:9a:6c:a6:03:79:48:46:8b:85:62:
2b:95:39:ad:25:03:68:9d:b9:af:1f:0c:e7:f3:58:
8d:e9:2f:38:e5:6a:e0:d3:a1:06:2a:d6:09:61:3e:
cb:36:7a:c4:36:4e:30:e7:3e:7d:c8:20:34:1d:43:
88:d8:f9:45:04:86:15:f1:e9:f6:16:41:eb:9a:58:
e7:28:4b:fd:ba:d2:4d:fe:68:56:39:b1:84:a3:39:
9d:bc:8d:75:f5:28:ec:19:e2:f1:7a:4b:1a:cf:7d:
74:ab:d7:73:87:80:2c:95:29:36:e6:fb:ca:53:fd:
ab:0e:3c:66:e6:e9:23:d6:08:96:f5:8f:cb:0f:84:
e2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A7:57:DC:2D:72:2F:F5:09:A6:40:07:17:E0:EC:2B:35:C5:82:79
X509v3 Authority Key Identifier:
keyid:A5:BE:C3:2D:6C:64:FF:B6:01:E2:70:CE:DB:CD:3E:FF:F5:CE:7A:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pb7DLWxk_7YB4nDO280-__XOekA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/a6dX3C1yL_UJpkAHF-DsKzXFgnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/7d64f1-3d64-42eb-a275-2179644f3788/1/pb7DLWxk_7YB4nDO280-__XOekA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.14.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3c:64:d6:18:e9:24:c5:8a:df:9e:22:e4:12:f1:08:e7:31:2b:
ca:97:f1:4e:45:f0:72:45:f9:7e:0f:2d:7e:3a:09:a8:9a:a7:
f3:e4:2f:e5:31:2f:71:3c:58:90:c0:85:6b:b2:29:e0:4a:1e:
c3:4f:8e:48:e1:d5:04:ed:77:d7:a6:68:7d:98:69:64:b6:17:
78:6c:09:ed:4a:f3:13:61:38:4c:80:59:2a:3c:84:41:7c:f8:
a8:ad:a8:c2:48:d1:a4:11:74:2c:b6:b1:11:c4:db:97:68:03:
d2:25:a2:30:d7:27:b8:33:d0:ee:6c:4a:dc:42:18:80:21:e3:
24:01:bb:ea:cc:5f:d4:57:d9:c4:95:33:45:ac:fc:53:b6:0b:
b8:17:83:13:85:27:72:fe:b4:bc:89:a4:b6:26:a3:b1:9b:b1:
3c:41:b1:ef:f9:3e:9d:51:da:32:3f:9c:2a:6a:49:7d:92:13:
9f:62:1f:0a:ea:ce:49:50:b5:41:cd:53:39:e8:72:2d:ed:92:
38:93:41:66:ce:e3:16:fe:3c:dd:76:2d:34:4f:ef:80:92:83:
0b:bd:4d:aa:08:db:76:c2:10:bb:57:58:bd:82:24:99:00:0e:
bd:23:73:05:89:2a:d4:22:e1:6c:b4:1b:5a:8e:06:b5:7c:ea:
7c:28:8b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:52 2023 by rpki-client on console-ams.rpki-client.org