Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/a2ec9c-9d76-4e94-9e3a-6f7024c3aad7/1/AaEZrI8wwEnW6iT8PggZ1Fl5mjQ.roa
File: AaEZrI8wwEnW6iT8PggZ1Fl5mjQ.roa (raw, json)
Hash identifier: VGCLcS6RMqyxuBPNGcVhi82WEHs4VP3pOuiNYdPxgt0=
Subject key identifier: 01:A1:19:AC:8F:30:C0:49:D6:EA:24:FC:3E:08:19:D4:59:79:9A:34
Certificate issuer: /CN=b03c302c2f52277e3d0ab6842f68aa5f8d0d7787
Certificate serial: 09371F
Authority key identifier: B0:3C:30:2C:2F:52:27:7E:3D:0A:B6:84:2F:68:AA:5F:8D:0D:77:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sDwwLC9SJ349CraEL2iqX40Nd4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/a2ec9c-9d76-4e94-9e3a-6f7024c3aad7/1/AaEZrI8wwEnW6iT8PggZ1Fl5mjQ.roa
Signing time: Mon 06 Jun 2022 06:19:20 +0000
ROA not before: Mon 06 Jun 2022 06:19:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25454
IP address blocks: 217.12.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 603935 (0x9371f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b03c302c2f52277e3d0ab6842f68aa5f8d0d7787
Validity
Not Before: Jun 6 06:19:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01a119ac8f30c049d6ea24fc3e0819d459799a34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9e:d1:c9:20:81:6e:2e:a3:01:2f:aa:40:d7:
9e:e2:89:14:16:30:e2:4f:9f:5a:2d:29:aa:bf:98:
cd:9b:91:19:17:46:be:e7:97:70:b0:47:46:8d:df:
f5:6e:e4:71:49:d6:de:ee:78:8e:03:e7:fc:3e:0c:
97:c1:35:b1:4f:74:b7:eb:19:d2:29:50:ea:72:6a:
01:15:1b:c3:88:7c:16:27:90:55:1d:d9:4d:bf:f2:
01:6c:55:77:df:98:23:5a:7b:90:f5:4f:12:32:d6:
e5:61:ec:19:f9:a8:a8:23:5c:2d:43:06:50:5d:db:
15:fa:13:41:c5:ec:04:c9:10:88:14:5b:f4:76:09:
58:71:65:17:17:56:60:68:bb:35:d7:a2:f4:07:cc:
bb:0d:ca:cc:aa:dc:6f:8f:e3:80:15:35:ef:0e:11:
7a:7c:d9:7d:6e:f1:ec:31:ec:bb:73:8f:ad:22:e0:
4c:16:d5:8f:03:c4:9f:d4:a0:13:be:92:ee:a8:83:
bf:93:ba:c5:eb:f8:2d:0a:02:ac:ad:8b:d8:12:53:
1c:44:87:52:fb:28:83:48:a2:52:7b:a9:56:c0:d5:
70:33:1d:79:2b:7b:a0:b7:66:6b:24:d2:8b:c8:e6:
73:21:6a:6b:fc:f4:01:e1:3b:f7:0d:02:68:12:a0:
88:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A1:19:AC:8F:30:C0:49:D6:EA:24:FC:3E:08:19:D4:59:79:9A:34
X509v3 Authority Key Identifier:
keyid:B0:3C:30:2C:2F:52:27:7E:3D:0A:B6:84:2F:68:AA:5F:8D:0D:77:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sDwwLC9SJ349CraEL2iqX40Nd4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a2ec9c-9d76-4e94-9e3a-6f7024c3aad7/1/AaEZrI8wwEnW6iT8PggZ1Fl5mjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a2ec9c-9d76-4e94-9e3a-6f7024c3aad7/1/sDwwLC9SJ349CraEL2iqX40Nd4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.12.112.0/20
Signature Algorithm: sha256WithRSAEncryption
00:12:b1:71:92:00:89:4b:27:f7:89:35:8a:cc:90:c1:c2:05:
54:b3:ee:fe:e7:ff:db:df:bc:21:1d:50:e7:e9:82:bc:33:a1:
27:11:8b:c2:47:f5:b4:ab:40:f2:16:70:ba:f9:2a:00:03:74:
3b:31:3f:37:d0:ad:c1:e0:ee:1b:58:b4:c0:eb:c3:28:c5:ff:
ab:f5:f3:89:eb:06:63:ec:48:8f:c2:31:95:ae:ff:5c:d9:bb:
17:cd:c5:1d:30:96:91:d6:a5:63:10:28:fc:52:a9:78:71:9c:
2b:ff:49:57:d1:ab:45:8c:4b:49:be:41:dc:73:97:ee:a8:eb:
e2:3d:d7:37:35:7e:35:88:d5:5e:a4:75:33:08:9d:5e:ae:61:
2e:2a:6d:f0:d9:3d:e1:ae:a1:64:06:16:66:b7:1f:d1:44:88:
e1:aa:34:db:41:a0:c7:4f:02:c1:2a:6a:35:c3:bf:f1:13:20:
bb:69:c6:36:42:6d:e3:78:cd:f6:43:25:82:06:c5:74:54:61:
8a:b2:69:5b:b7:3c:f1:a2:f8:c2:20:a4:6f:ed:fa:8e:4f:17:
66:61:30:16:f7:97:8f:6e:05:12:46:b0:52:9f:77:10:1c:bb:
58:21:c4:cc:1c:b1:30:7f:be:c1:bc:e6:7c:0a:a4:fa:b7:24:
e9:51:73:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:07 2023 by rpki-client on console-ams.rpki-client.org