Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/E3DFsrPkDvqPr4VviKqer5Z68fc.roa
File: E3DFsrPkDvqPr4VviKqer5Z68fc.roa (raw, json)
Hash identifier: /gSU1aP8qR0WsS3zytplMEKSuQhIFvIdhBkpp1Zwugo=
Subject key identifier: 13:70:C5:B2:B3:E4:0E:FA:8F:AF:85:6F:88:AA:9E:AF:96:7A:F1:F7
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 098D540A
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/E3DFsrPkDvqPr4VviKqer5Z68fc.roa
Signing time: Sat 01 Jan 2022 04:03:21 +0000
ROA not before: Sat 01 Jan 2022 04:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15372
IP address blocks: 153.96.101.0/24 maxlen: 24
153.96.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160257034 (0x98d540a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 1 04:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1370c5b2b3e40efa8faf856f88aa9eaf967af1f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1e:59:b7:bb:2b:d0:44:b9:a9:8f:42:38:e7:
25:b1:77:e3:3d:dd:35:76:06:7a:78:5d:16:5a:9a:
c3:45:9a:50:d6:59:b2:c3:af:8d:eb:e4:f0:39:7d:
35:27:9f:ef:c8:7d:64:07:fd:ff:2c:1d:5e:ef:fd:
b5:a9:98:24:29:54:85:6a:c2:e5:a1:2c:d6:be:f0:
7b:93:b2:54:ee:90:e6:a2:f5:24:e2:a1:12:8a:45:
4a:c8:54:13:33:a2:23:8d:1c:e0:57:e9:e9:99:3c:
9d:b2:c1:66:9d:a1:d1:de:7d:8b:72:53:58:c6:aa:
95:6a:70:d1:15:88:46:32:9d:32:bf:c7:c7:2e:63:
0f:58:32:f9:f9:57:9e:7a:e8:40:2f:a4:09:a5:51:
c9:2c:db:18:ab:d2:c4:68:57:ce:75:2b:29:70:4d:
59:fc:94:5b:31:da:73:01:7c:cc:c4:f0:cc:37:de:
bb:4a:7b:ca:e2:2a:35:1c:0c:d3:db:42:35:2c:1b:
55:ce:aa:d2:c8:9d:0c:ca:25:8f:39:3f:4a:a6:d2:
e2:3c:a4:a5:fa:52:ed:7b:51:fc:6b:a4:9c:04:35:
e0:90:65:0d:fd:b2:5f:e7:6d:4c:ff:3a:43:9e:5f:
76:5b:b7:41:f8:05:83:c5:a6:65:aa:88:25:4b:10:
75:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:70:C5:B2:B3:E4:0E:FA:8F:AF:85:6F:88:AA:9E:AF:96:7A:F1:F7
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/E3DFsrPkDvqPr4VviKqer5Z68fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.96.101.0/24
153.96.230.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:71:16:88:b3:65:09:8c:52:87:df:4b:0b:51:65:a7:0e:31:
74:6d:35:7a:a2:e6:dd:60:34:6a:9a:49:26:5e:65:59:42:72:
55:13:45:e4:42:03:2e:c1:c9:8d:79:6c:f9:ca:1a:a2:1f:44:
cc:ec:51:70:ad:02:52:70:7e:55:3e:3e:30:53:ac:6c:5e:cc:
d1:48:ba:c6:f2:e4:ae:1e:0e:66:12:32:ca:2e:15:9e:a0:0f:
4f:7b:6c:76:9d:0e:73:cb:26:08:b9:fd:e3:f1:1f:b5:34:6b:
c6:d9:07:99:92:c1:72:d4:8f:28:07:3b:07:ed:a6:fb:20:7f:
44:40:5d:0a:72:56:f4:36:e5:d0:1f:16:ba:d9:82:1d:ef:0a:
4b:9f:c4:2d:09:26:aa:39:1b:ea:0a:fc:5d:b7:85:54:cb:0f:
fc:54:bd:f7:b1:1e:74:fb:ce:d8:c0:f4:6d:be:20:73:fd:32:
a6:7f:2f:d7:3e:9e:2f:cb:99:04:19:41:10:f9:db:ae:58:f0:
d4:c7:60:a2:0a:eb:0f:06:ca:38:c7:38:69:f1:d3:d1:3a:7d:
5f:ac:58:1a:76:b6:83:29:98:f1:17:27:f0:74:61:1b:61:57:
6b:bc:61:d1:24:01:f8:e3:12:e5:9a:41:25:21:36:a0:24:62:
eb:f3:c8:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:13 2023 by rpki-client on console-ams.rpki-client.org