Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/621941-f53c-448f-bd30-42b3d68b5676/1/D4pIr-R96tgtRH22tcoRgOgbBpc.roa
File: D4pIr-R96tgtRH22tcoRgOgbBpc.roa (raw, json)
Hash identifier: 6rVcO4TP3f8rqeMVaX0mG76Jj43tm3RXFiUe/UcirAo=
Subject key identifier: 0F:8A:48:AF:E4:7D:EA:D8:2D:44:7D:B6:B5:CA:11:80:E8:1B:06:97
Certificate issuer: /CN=b8d251c4bfd526da062d4ce2af56b6e46e925117
Certificate serial: 08E42B22
Authority key identifier: B8:D2:51:C4:BF:D5:26:DA:06:2D:4C:E2:AF:56:B6:E4:6E:92:51:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNJRxL_VJtoGLUzir1a25G6SURc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/621941-f53c-448f-bd30-42b3d68b5676/1/D4pIr-R96tgtRH22tcoRgOgbBpc.roa
Signing time: Sat 01 Jan 2022 10:54:31 +0000
ROA not before: Sat 01 Jan 2022 10:54:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 378
IP address blocks: 132.74.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149170978 (0x8e42b22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d251c4bfd526da062d4ce2af56b6e46e925117
Validity
Not Before: Jan 1 10:54:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f8a48afe47dead82d447db6b5ca1180e81b0697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ca:5b:28:20:21:fa:0f:da:d7:67:ee:1b:e2:
0f:1e:08:d1:96:fc:a2:0c:02:b9:a5:f4:8d:44:4f:
ce:bf:9b:7c:9d:cb:40:a6:85:0c:ce:b0:a2:46:e0:
a9:a3:58:4a:e4:25:a1:8e:76:af:9c:ab:35:4c:ca:
57:c4:7d:90:37:13:08:1d:f5:c7:02:74:0a:df:5a:
ed:f6:63:5f:8b:ab:a0:b8:5d:cb:04:a2:97:29:ca:
22:79:72:0a:b3:a4:98:ad:d2:3f:27:78:d0:b4:29:
fe:be:28:70:0a:48:24:a0:44:dc:a6:cd:4e:2d:17:
fd:28:6a:96:36:02:03:0c:c1:bb:dd:3e:08:c5:6d:
ba:49:87:8e:e8:82:b5:c2:d5:1b:a3:8d:ee:48:7f:
ef:a0:67:d9:4c:b4:3b:81:e1:ed:1b:2a:41:81:e6:
fb:4f:d6:8b:9a:ba:06:20:32:24:8b:06:d0:6c:b5:
4e:1d:e6:80:6f:db:81:2b:b3:29:74:aa:1c:6a:9e:
c0:1c:31:93:d3:12:20:75:73:88:5a:dd:b8:9d:47:
6f:14:b0:92:17:69:a4:9e:b6:60:ce:91:de:20:1d:
63:7a:c6:85:b8:3f:42:fa:4e:49:44:48:ec:29:e2:
f6:66:cb:9d:73:1d:c0:6e:0e:92:38:4f:25:f3:8b:
d5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:8A:48:AF:E4:7D:EA:D8:2D:44:7D:B6:B5:CA:11:80:E8:1B:06:97
X509v3 Authority Key Identifier:
keyid:B8:D2:51:C4:BF:D5:26:DA:06:2D:4C:E2:AF:56:B6:E4:6E:92:51:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNJRxL_VJtoGLUzir1a25G6SURc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/621941-f53c-448f-bd30-42b3d68b5676/1/D4pIr-R96tgtRH22tcoRgOgbBpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/621941-f53c-448f-bd30-42b3d68b5676/1/uNJRxL_VJtoGLUzir1a25G6SURc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.74.0.0/15
Signature Algorithm: sha256WithRSAEncryption
53:2a:1a:c9:df:c9:11:1e:a5:8d:60:8d:b1:05:4f:d5:e1:47:
7f:e4:89:2e:3d:54:17:3b:7e:3c:6a:c4:e5:d1:55:21:3d:81:
ac:d2:86:1e:b2:60:74:e0:fa:dc:86:2a:4a:ba:e6:a4:9b:e1:
6c:da:a0:87:25:81:ac:e8:00:de:bf:0e:c4:e7:91:94:4b:08:
0e:61:94:76:b1:95:69:5d:f6:2d:97:12:2d:b0:0f:b6:7d:de:
e3:93:f9:88:8c:b8:17:2b:19:d7:35:be:35:f0:24:77:34:8c:
f8:54:f7:b9:88:6c:e9:cc:4e:e5:e6:46:52:8c:91:35:c7:97:
74:38:f4:4e:98:d2:31:76:d8:9c:84:eb:05:79:53:64:f2:88:
41:db:63:cf:5b:7b:9c:5d:0d:3d:9d:f3:86:d9:e2:89:87:af:
2d:49:f7:42:45:84:4c:3b:7e:49:73:13:9d:d6:2c:b1:9f:de:
e0:ca:63:63:ce:17:e5:85:04:e3:b1:e0:0e:03:9f:05:cb:0f:
0a:d1:b5:4f:cc:f9:fb:6a:ff:fb:71:3a:82:44:be:96:47:43:
09:55:1b:11:37:49:c5:8f:f9:e9:f0:46:de:50:6d:27:94:66:
46:14:64:e7:85:34:7c:48:87:a0:b4:18:db:c2:be:2d:b3:bf:
8b:20:94:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:46 2024 by rpki-client on console-ams.rpki-client.org