Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/CctPHQfxhRJdcLtfvmzEmvcXIcY.roa
File: CctPHQfxhRJdcLtfvmzEmvcXIcY.roa (raw, json)
Hash identifier: GXEB7pfVgz1YFpcp54tGKbA0miiK4A9Y/qlb0Rzxvck=
Subject key identifier: 09:CB:4F:1D:07:F1:85:12:5D:70:BB:5F:BE:6C:C4:9A:F7:17:21:C6
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 09A00E99
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/CctPHQfxhRJdcLtfvmzEmvcXIcY.roa
Signing time: Sat 01 Jan 2022 05:04:13 +0000
ROA not before: Sat 01 Jan 2022 05:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203499
IP address blocks: 5.154.98.0/24 maxlen: 24
151.237.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161484441 (0x9a00e99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 1 05:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09cb4f1d07f185125d70bb5fbe6cc49af71721c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b4:6b:0c:37:d7:e4:19:4d:82:cf:1f:5b:c1:
71:3e:d3:4a:b3:54:7b:c5:96:66:26:70:3d:0f:26:
67:68:66:96:96:3f:98:6c:54:cb:88:72:09:50:5b:
7e:a0:94:0b:e6:20:6a:fc:03:9c:0f:96:de:1e:5e:
e0:ee:22:dc:51:f1:0f:38:77:ed:81:23:31:6e:c2:
41:10:2d:8f:20:f0:bd:0e:69:ee:58:5e:68:6e:51:
a0:8b:12:6a:60:ae:e8:bc:18:f4:0b:2d:a8:1a:45:
85:3a:a5:1e:19:aa:b3:38:36:9a:be:c7:b2:90:7b:
ad:47:1f:4e:e1:d2:09:76:45:ba:4c:24:ac:bc:81:
bc:10:96:29:e9:1f:33:63:13:dd:50:2e:e5:84:65:
6f:18:65:2d:b5:d9:dc:83:a4:c2:79:fd:1b:02:ab:
15:02:16:bc:2b:ad:23:89:c8:a7:67:bd:d6:09:96:
e4:50:66:5b:36:a5:26:d9:c9:32:9f:84:85:11:38:
a4:7a:83:df:6e:6c:4e:85:83:30:5a:4e:f1:d5:84:
a0:f6:ca:6e:86:bf:81:8c:e9:05:18:0d:17:86:77:
41:5a:e6:90:71:3f:d4:7e:6c:88:46:1f:99:f8:86:
35:f5:53:f6:de:c4:af:2f:dd:26:96:89:26:79:18:
0d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:CB:4F:1D:07:F1:85:12:5D:70:BB:5F:BE:6C:C4:9A:F7:17:21:C6
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/CctPHQfxhRJdcLtfvmzEmvcXIcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.98.0/24
151.237.198.0/24
Signature Algorithm: sha256WithRSAEncryption
be:ee:28:93:c9:5e:0d:a4:e7:d6:69:ab:4c:b0:63:47:76:4a:
81:6b:07:55:7b:87:07:3f:64:96:a7:5c:fe:c3:1c:69:3f:a0:
b4:a4:59:62:04:05:92:62:aa:3b:b5:75:9d:cb:aa:ab:0d:0c:
dc:ce:53:65:df:2c:4e:a6:29:ec:29:c2:20:e5:19:12:bc:83:
df:ec:aa:8c:c3:3b:e5:3b:73:a0:9c:64:df:c2:96:7e:6c:4a:
1d:79:b5:5e:7b:b7:f2:1b:ee:9c:c6:ec:00:7a:74:41:8b:81:
bc:52:c8:27:c2:60:50:1c:72:f8:75:52:2a:a9:16:dc:40:3b:
8b:c1:7b:8b:a7:81:89:09:cf:7d:2b:95:33:89:d3:f2:e3:2c:
16:a4:c8:43:4a:69:db:23:e0:95:e4:eb:82:4f:6a:74:d8:dc:
38:d7:af:6e:a5:fe:7a:4a:53:9b:cd:f1:5e:c7:1b:25:12:da:
99:30:bb:9f:80:5b:90:cc:5a:50:e8:5e:39:9c:c0:ea:d1:52:
bc:f4:09:8e:a6:59:9d:49:5f:a7:54:c9:7f:e3:93:da:b3:7d:
eb:c3:57:de:3f:55:fa:be:00:b2:b6:b9:5e:1a:db:05:eb:61:
16:08:fd:ee:4b:72:fa:09:fe:9d:e3:58:b1:e4:c7:43:cc:ee:
3c:ab:be:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:02 2023 by rpki-client on console-ams.rpki-client.org