Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/7-OePPoYnZo2ro2Ti3on0NoQuiY.roa
File: 7-OePPoYnZo2ro2Ti3on0NoQuiY.roa (raw, json)
Hash identifier: cqOLU+C9nxgZ7/xiDFIo0ZUVEQdvK0E38fgzMkpp9No=
Subject key identifier: EF:E3:9E:3C:FA:18:9D:9A:36:AE:8D:93:8B:7A:27:D0:DA:10:BA:26
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 098B80F1
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/7-OePPoYnZo2ro2Ti3on0NoQuiY.roa
Signing time: Sat 01 Jan 2022 04:03:21 +0000
ROA not before: Sat 01 Jan 2022 04:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12693
IP address blocks: 153.96.42.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160137457 (0x98b80f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 1 04:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efe39e3cfa189d9a36ae8d938b7a27d0da10ba26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:be:2b:af:4f:c9:58:95:c8:9c:fc:74:ee:fc:
37:94:d5:33:e6:b5:3f:04:62:fd:58:27:0f:9c:68:
f6:8a:19:91:49:80:6a:da:f1:28:15:88:36:e9:1b:
53:4e:04:54:9c:06:ed:ba:22:b3:a0:aa:e1:4b:32:
e3:47:4d:b5:d9:35:03:47:87:67:67:00:08:08:70:
93:4d:7a:7d:43:58:8c:6c:d6:0e:7a:cd:87:86:0b:
8f:23:2a:f2:26:a3:68:1d:37:07:bd:c9:87:2a:02:
62:cd:65:89:7a:3e:6d:f7:dc:9b:b5:27:d2:9a:cb:
19:49:4c:1a:ea:28:87:ee:1b:95:ad:d4:61:f8:eb:
6b:14:18:8e:e8:03:22:77:aa:77:7b:25:b0:0d:ba:
08:e5:df:93:e0:89:13:71:8a:a4:b0:98:76:78:e8:
98:cd:e2:41:86:1d:d9:01:3c:35:eb:95:06:d0:f3:
91:a5:84:a8:8d:28:92:81:6c:44:d4:ff:4b:13:da:
cc:8f:6d:b0:6d:4d:86:e3:e7:3c:b6:cc:0d:ac:4d:
a7:61:e6:92:59:fb:ce:4e:3e:96:d7:66:bc:6d:c1:
19:4a:51:ab:62:e9:f0:fe:38:e6:bf:e9:ed:a8:f4:
34:31:b9:c5:1f:83:0d:ee:5d:79:4e:49:b9:c9:62:
4f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:E3:9E:3C:FA:18:9D:9A:36:AE:8D:93:8B:7A:27:D0:DA:10:BA:26
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/7-OePPoYnZo2ro2Ti3on0NoQuiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.96.42.0/23
Signature Algorithm: sha256WithRSAEncryption
57:c0:4a:53:72:e5:9d:f7:4d:3c:25:5d:a8:b8:a7:12:af:95:
b2:3b:a0:21:72:a6:d0:33:87:96:4b:a9:ea:02:24:ee:46:8d:
bd:46:2b:ef:3a:90:70:76:50:b9:99:88:09:04:ae:21:b3:89:
13:b2:bf:88:fe:8c:49:24:b4:95:3a:d5:d6:aa:87:8a:c9:18:
68:a3:bf:88:39:25:0c:1e:6b:7f:16:be:44:cd:93:c0:38:ee:
18:2c:a8:a8:3a:1c:66:ae:48:fe:8c:7d:d3:d4:90:cd:de:e2:
42:92:45:f8:4f:a8:bf:06:f2:26:8b:59:33:54:da:9d:3b:f9:
32:3a:2d:db:23:0b:d9:bd:19:32:4e:41:8a:3b:d7:c5:94:4e:
cc:c9:cd:7d:11:6b:b3:c0:8e:79:7a:b5:80:be:44:e7:7c:ca:
bd:0b:1f:36:d9:39:aa:5c:00:c9:60:23:9e:a8:19:fa:78:f5:
e7:bc:40:cb:e7:80:d0:6c:83:b9:e7:19:57:65:73:4c:97:33:
a4:91:de:a4:04:e0:9c:ca:21:d5:9e:03:42:d6:59:2a:55:24:
48:c4:0d:e4:38:36:59:a2:53:b7:3e:23:42:09:23:35:62:8a:
54:c4:e6:1d:c7:89:e6:03:ba:94:50:3d:2e:20:0f:4d:42:28:
35:bd:90:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:43 2024 by rpki-client on console-ams.rpki-client.org