Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/88c204-bc30-4b9d-b9ec-5686279ec96e/1/GrO3TYhve-Wv1U2r_RxbkAQQbrk.roa
File: GrO3TYhve-Wv1U2r_RxbkAQQbrk.roa (raw, json)
Hash identifier: bsUridgUrtcvluKb2tIKhLRaFb2FiY4LgDvfWT7pyTM=
Subject key identifier: 1A:B3:B7:4D:88:6F:7B:E5:AF:D5:4D:AB:FD:1C:5B:90:04:10:6E:B9
Certificate issuer: /CN=b2e391169f0c9f21aa8f2e89e7375c72ec674feb
Certificate serial: 0687A983
Authority key identifier: B2:E3:91:16:9F:0C:9F:21:AA:8F:2E:89:E7:37:5C:72:EC:67:4F:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suORFp8MnyGqjy6J5zdccuxnT-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/88c204-bc30-4b9d-b9ec-5686279ec96e/1/GrO3TYhve-Wv1U2r_RxbkAQQbrk.roa
Signing time: Sat 01 Jan 2022 05:59:39 +0000
ROA not before: Sat 01 Jan 2022 05:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 134.34.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109554051 (0x687a983)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e391169f0c9f21aa8f2e89e7375c72ec674feb
Validity
Not Before: Jan 1 05:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ab3b74d886f7be5afd54dabfd1c5b9004106eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d2:70:12:d1:38:e1:65:6c:23:57:96:19:ed:
38:16:e7:0a:8f:a2:88:ba:4d:41:13:0a:98:83:59:
ba:db:e2:fd:a1:73:ed:9c:98:c3:7d:10:46:a6:8c:
0f:6b:19:e4:7e:75:ab:c1:36:1e:de:96:25:94:c3:
6d:d2:e8:7b:a2:7f:35:f1:f2:21:c6:c9:5c:50:32:
ea:93:81:05:ac:15:a0:c2:a3:e8:9e:df:e8:87:f5:
bf:61:a2:bb:49:1d:03:04:1a:c4:59:5d:4d:4b:f7:
c7:f1:01:de:33:4c:bd:0a:83:c1:27:f7:2d:57:53:
0a:8e:f2:14:a6:41:cd:bb:13:03:35:f5:68:3c:d9:
ee:ee:2c:49:1f:8d:a1:20:e8:5a:18:7c:bd:eb:be:
3a:44:64:ed:40:51:8f:6c:57:2f:af:6d:66:a8:0b:
d9:14:1b:26:35:c2:2a:b3:f5:5a:f3:fd:79:c1:c0:
1d:1f:6d:af:3a:7e:a9:f6:af:d6:8b:dc:34:62:a4:
ef:16:33:67:3f:be:0d:c5:55:16:be:a3:26:f2:58:
dc:8a:b7:5c:4d:fa:f0:42:7e:cc:c2:8d:d3:f9:91:
15:cc:d1:d3:04:67:f8:b1:73:87:cd:43:bb:5f:87:
6c:5b:26:13:e5:69:71:e2:a2:db:9d:13:4a:c5:1f:
53:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B3:B7:4D:88:6F:7B:E5:AF:D5:4D:AB:FD:1C:5B:90:04:10:6E:B9
X509v3 Authority Key Identifier:
keyid:B2:E3:91:16:9F:0C:9F:21:AA:8F:2E:89:E7:37:5C:72:EC:67:4F:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suORFp8MnyGqjy6J5zdccuxnT-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/88c204-bc30-4b9d-b9ec-5686279ec96e/1/GrO3TYhve-Wv1U2r_RxbkAQQbrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/88c204-bc30-4b9d-b9ec-5686279ec96e/1/suORFp8MnyGqjy6J5zdccuxnT-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
05:9e:a3:41:1b:74:93:3d:0c:a9:84:a0:32:74:e9:96:50:ec:
e4:78:31:fa:55:19:6c:57:82:2e:9d:ce:af:e0:b1:61:06:a2:
68:ea:39:2d:a5:8d:bf:30:07:87:73:f3:09:c3:37:5c:d6:d8:
a6:17:ff:0f:e1:7c:4e:d9:0d:35:30:fc:60:ff:b3:8b:68:b3:
b1:1c:ff:c9:43:d1:0e:6f:72:64:5e:26:be:b6:a2:7e:17:04:
dd:a7:1b:3e:ad:8d:73:1a:12:73:7c:ff:b5:6d:59:c5:6d:77:
cd:ed:56:a7:7d:63:81:b5:43:b8:53:06:bd:31:7f:8e:35:01:
25:da:74:b5:e5:29:f8:e2:36:5b:38:00:29:5c:06:6a:79:4b:
fe:b2:89:0f:61:e2:39:a6:c6:d7:30:a7:a9:93:37:6e:9e:dd:
22:5d:2f:f1:83:ec:22:2e:2e:f0:e5:e0:d8:32:77:9e:ae:2f:
a9:5e:b8:b4:bf:09:9b:b6:b6:31:80:aa:47:b6:05:c0:ac:9e:
4c:43:8e:50:58:e4:32:e6:34:5e:5d:c0:a4:98:83:23:43:fc:
84:8b:a7:a7:82:d2:c0:c8:63:66:40:eb:93:54:ea:ad:19:df:
02:e5:23:38:2c:d2:b3:d2:33:60:61:4e:ee:ca:24:f3:0e:53:
e8:49:dc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org