Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/1-3hTIhFbEaccR34AeYP23tk4xck.roa
File: 1-3hTIhFbEaccR34AeYP23tk4xck.roa (raw, json)
Hash identifier: 2mBY4HhLoN5Kj0K/YHvKxd4tXWrEmCTNZzybBC23KJc=
Subject key identifier: FB:78:53:22:11:5B:11:A7:1C:47:7E:00:79:83:F6:DE:D9:38:C5:C9
Certificate issuer: /CN=9b759ec9ff54de03a7ff3a65edbb2e0758e6878c
Certificate serial: 044E1FD9
Authority key identifier: 9B:75:9E:C9:FF:54:DE:03:A7:FF:3A:65:ED:BB:2E:07:58:E6:87:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m3Weyf9U3gOn_zpl7bsuB1jmh4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/1-3hTIhFbEaccR34AeYP23tk4xck.roa
Signing time: Sat 01 Jan 2022 14:57:24 +0000
ROA not before: Sat 01 Jan 2022 14:57:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 164.153.132.0/24 maxlen: 24
164.153.133.0/24 maxlen: 24
164.153.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72228825 (0x44e1fd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b759ec9ff54de03a7ff3a65edbb2e0758e6878c
Validity
Not Before: Jan 1 14:57:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb785322115b11a71c477e007983f6ded938c5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:31:be:a7:f1:33:d3:b6:73:e4:e0:ac:30:a7:
d5:07:ad:73:06:a6:27:cd:e2:54:1c:db:56:73:35:
5e:aa:2d:58:10:b9:1e:0d:ea:0c:02:af:e4:b9:71:
ce:de:b2:90:b5:61:31:5a:1f:5b:c5:58:5c:07:b6:
63:00:8e:64:09:e9:58:8d:af:af:01:1c:dc:04:76:
59:53:b8:7e:26:3d:bc:27:cc:e7:c7:56:25:67:cd:
b2:a4:81:14:3a:7d:80:d9:0d:44:52:46:b8:7d:34:
cf:f8:87:e2:ec:6c:3f:17:70:a2:da:82:7c:45:84:
72:bb:10:9e:5d:81:76:85:58:8f:91:70:6f:89:c3:
0d:63:d9:9c:27:45:10:c5:e4:ee:8c:f4:84:7b:c7:
0e:fd:46:27:d0:f1:19:01:ff:5a:01:cb:c2:ed:fd:
0e:7a:b1:b9:5d:f6:fd:2c:c7:05:50:c5:37:f5:b6:
d8:83:b4:77:05:e5:ad:cc:10:f8:f0:b0:ef:0b:8a:
c1:90:0e:64:65:82:b6:c1:4a:25:dd:5d:4c:9e:08:
b6:77:46:38:bc:15:ec:0c:3a:fc:79:15:6f:c4:e7:
2a:5c:8a:f2:c3:0f:39:e1:fb:c3:4b:13:3e:95:22:
b6:e4:60:51:e1:a1:ec:c8:e9:6a:cd:9b:45:38:2c:
44:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:78:53:22:11:5B:11:A7:1C:47:7E:00:79:83:F6:DE:D9:38:C5:C9
X509v3 Authority Key Identifier:
keyid:9B:75:9E:C9:FF:54:DE:03:A7:FF:3A:65:ED:BB:2E:07:58:E6:87:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m3Weyf9U3gOn_zpl7bsuB1jmh4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/1-3hTIhFbEaccR34AeYP23tk4xck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/m3Weyf9U3gOn_zpl7bsuB1jmh4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.153.132.0-164.153.134.255
Signature Algorithm: sha256WithRSAEncryption
a2:bc:33:cd:e8:bc:f4:35:82:e4:4f:8a:3c:04:20:59:e7:40:
bb:8c:4c:6a:58:19:2d:fd:ad:d3:5a:3d:1b:14:b3:20:ca:b7:
07:8a:07:d6:7d:4a:6a:29:e5:0d:07:09:94:09:7c:dc:12:dd:
15:c5:53:cb:57:bf:f1:02:a2:70:e4:63:40:d3:d0:2e:d1:40:
92:d4:15:cc:6c:51:a9:b0:ab:25:4f:d6:c1:ed:b4:0e:ef:23:
dd:fc:60:67:0e:f5:9e:d2:68:ae:4a:25:bd:f9:7e:07:27:94:
67:22:12:f6:c3:dd:bf:d0:2e:3b:a3:e7:6c:c1:b7:6f:de:c8:
98:cf:0e:87:7e:cf:0d:78:64:b2:05:d8:53:02:51:e6:1d:34:
42:4c:12:0f:63:fd:ba:c0:d4:14:0d:88:3a:fb:17:b5:26:b3:
f2:53:6b:cf:db:51:44:5f:fc:2d:d2:69:d2:ad:16:ac:1c:0f:
2a:59:cd:d9:33:62:36:2f:2f:89:73:20:7c:7a:25:e9:7b:f6:
be:b5:5a:39:91:60:e4:d5:7a:f7:db:2f:eb:c1:7e:26:31:03:
01:68:32:0e:43:c4:7d:9f:ab:f9:7e:cd:0d:9a:ef:61:17:97:
f6:5d:de:0d:75:1d:78:62:89:6d:0c:14:6a:b0:b3:94:b2:ff:
12:37:8d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:32 2023 by rpki-client on console-fra.rpki-client.org