Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/1-8n35hNg7LeHvfWoWNSTHS9FElI.roa
File: 1-8n35hNg7LeHvfWoWNSTHS9FElI.roa (raw, json)
Hash identifier: kOE3YcXKtSINmLp2UbO/crL5fHZ/YTC3IEu88NtloJs=
Subject key identifier: FB:C9:F7:E6:13:60:EC:B7:87:BD:F5:A8:58:D4:93:1D:2F:45:12:52
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0E8887A9
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/1-8n35hNg7LeHvfWoWNSTHS9FElI.roa
Signing time: Mon 28 Mar 2022 15:43:59 +0000
ROA not before: Mon 28 Mar 2022 15:43:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44676
IP address blocks: 2.59.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243828649 (0xe8887a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Mar 28 15:43:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbc9f7e61360ecb787bdf5a858d4931d2f451252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:22:56:c4:b0:d1:b0:20:c9:72:19:63:85:78:
cd:d0:e2:bd:ba:3b:87:2b:9a:ce:ea:5b:93:66:3d:
05:c3:a7:b3:3e:39:c2:0c:d7:4e:43:22:72:2a:97:
f1:7f:7e:54:a5:40:81:03:5f:6b:6f:b7:c0:30:30:
9b:97:17:0c:8b:13:10:7a:3a:9c:20:32:0f:86:bd:
b0:9e:bc:52:d7:6c:36:24:8c:19:76:0a:fd:3a:1e:
9b:fd:6c:9d:1c:0d:6b:42:66:9b:53:17:df:75:21:
04:a3:8e:56:e4:4f:67:89:37:28:8b:6e:c8:1c:c4:
96:2d:25:21:a8:20:57:1a:63:32:ea:6b:2f:71:81:
15:2b:88:c4:18:13:b7:ed:8b:b6:9d:e4:66:4f:0c:
5f:ea:bb:47:6c:16:51:64:17:e7:d4:36:f4:7b:d5:
a9:50:dc:41:6f:a7:28:a6:61:aa:ea:a6:9d:b1:39:
ee:da:03:57:99:11:af:91:10:8f:0e:c7:63:2c:36:
bb:62:2f:d8:c2:75:0b:66:f4:59:e6:19:db:b0:67:
d1:bd:8a:38:e1:83:07:da:f6:03:8e:26:5e:83:35:
64:7a:58:42:a7:9d:4e:c8:34:b6:d5:db:bb:3e:26:
6b:a5:87:fd:71:16:7f:01:e6:e2:52:3e:3b:5d:1e:
72:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C9:F7:E6:13:60:EC:B7:87:BD:F5:A8:58:D4:93:1D:2F:45:12:52
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/1-8n35hNg7LeHvfWoWNSTHS9FElI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.160.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:39:86:c6:9a:f7:4a:6d:fa:38:0e:a9:88:69:e6:8f:eb:94:
4b:33:ab:00:3e:df:2b:24:ad:f2:74:aa:a1:fc:47:17:70:a6:
0b:0e:15:1c:a8:79:66:ba:ab:33:b7:3d:4d:6d:bc:18:57:92:
6c:54:3d:73:bb:72:a7:15:b5:52:a6:12:88:72:59:85:e4:13:
1e:c5:9b:81:23:92:61:a6:7d:76:1c:3d:5e:8e:38:37:c5:44:
87:14:f6:bf:51:fe:97:55:c2:c7:1d:42:10:0b:21:89:7f:ab:
6b:95:09:c5:26:a0:5a:28:7c:1c:41:9b:67:b3:4f:cd:c7:a9:
b8:92:e0:17:14:ba:bf:66:6b:be:2d:4d:a9:6a:ff:21:cd:77:
0d:a6:2c:25:8c:0f:fa:22:f5:36:34:a5:2b:62:86:04:d5:4e:
47:e5:f4:93:85:56:6d:29:36:2a:28:b3:c9:77:01:82:54:63:
c5:35:f8:51:a1:00:6d:91:0f:6e:80:64:1c:8d:fe:95:da:e7:
a3:22:4a:d8:ee:c1:cf:83:dc:62:46:4b:be:0c:f4:3b:f8:7a:
7a:a7:b4:80:51:78:f6:d5:b5:78:18:d0:bc:95:8c:d5:4a:59:
80:1a:15:33:61:c2:b9:c9:2e:02:4f:e8:95:c7:55:fb:0a:ca:
c4:fb:71:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org