Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4bec3b-4f57-48d6-bdcf-748af1f8400e/1/JW5dW5yErgQw-aloO8KN6s38Egc.roa
File: JW5dW5yErgQw-aloO8KN6s38Egc.roa (raw, json)
Hash identifier: yrQo5jlI/HxrizY57U3hdX63grfxmovQDMAPfQoKcGA=
Subject key identifier: 25:6E:5D:5B:9C:84:AE:04:30:F9:A9:68:3B:C2:8D:EA:CD:FC:12:07
Certificate issuer: /CN=05cf6ad9cbe9f7b2863e0cec36c153c5d0736ae2
Certificate serial: 090A6967
Authority key identifier: 05:CF:6A:D9:CB:E9:F7:B2:86:3E:0C:EC:36:C1:53:C5:D0:73:6A:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bc9q2cvp97KGPgzsNsFTxdBzauI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4bec3b-4f57-48d6-bdcf-748af1f8400e/1/JW5dW5yErgQw-aloO8KN6s38Egc.roa
Signing time: Sat 01 Jan 2022 04:02:00 +0000
ROA not before: Sat 01 Jan 2022 04:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 149.132.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151677287 (0x90a6967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05cf6ad9cbe9f7b2863e0cec36c153c5d0736ae2
Validity
Not Before: Jan 1 04:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=256e5d5b9c84ae0430f9a9683bc28deacdfc1207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d4:00:ae:8a:f2:73:72:6c:cd:95:b0:4f:48:
d6:dc:3a:83:a5:1a:e0:45:07:a6:c9:9f:dd:47:d4:
94:79:7f:48:ed:f3:e5:e1:09:9a:13:40:9a:94:5d:
e9:df:ba:72:bb:16:b6:ce:25:6b:c2:bd:61:df:5b:
70:69:f2:ef:61:c8:45:75:ec:5d:3c:fe:8f:a7:59:
f4:17:a9:cb:58:4f:d0:c2:a5:b4:e5:4b:61:39:86:
4c:21:d3:e0:ae:64:8a:0f:35:93:91:6b:6e:bb:3f:
95:12:b0:bf:aa:a5:b6:d2:b3:87:ef:13:60:d5:97:
63:e3:c2:f5:dc:42:f3:66:1a:e4:15:7d:23:22:4d:
86:5a:30:bf:8c:9f:ae:66:8d:3d:3b:4d:14:57:19:
eb:e5:af:18:bf:0f:81:11:24:69:66:73:db:e5:3a:
02:0e:61:24:3e:dc:20:c6:72:36:7a:6b:6a:d9:35:
e9:c9:07:ce:55:e8:41:14:09:d6:f7:a2:84:53:0b:
de:94:45:c1:62:75:69:8c:95:10:c3:bc:c6:ae:06:
08:03:18:e0:22:09:ff:c1:6a:d1:05:2a:c3:b2:8f:
f8:5d:23:b6:b5:64:5c:07:98:c4:d8:41:1d:8d:ab:
66:c5:25:8c:bc:3a:bd:0d:7b:18:69:78:7a:91:a0:
a0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:6E:5D:5B:9C:84:AE:04:30:F9:A9:68:3B:C2:8D:EA:CD:FC:12:07
X509v3 Authority Key Identifier:
keyid:05:CF:6A:D9:CB:E9:F7:B2:86:3E:0C:EC:36:C1:53:C5:D0:73:6A:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bc9q2cvp97KGPgzsNsFTxdBzauI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4bec3b-4f57-48d6-bdcf-748af1f8400e/1/JW5dW5yErgQw-aloO8KN6s38Egc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4bec3b-4f57-48d6-bdcf-748af1f8400e/1/Bc9q2cvp97KGPgzsNsFTxdBzauI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.132.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:3b:3d:73:53:13:eb:29:a1:2e:d3:c8:04:34:0e:64:8a:21:
d7:af:fd:92:03:62:5c:b9:44:f8:52:47:9c:41:18:74:77:e3:
f2:84:a7:52:e2:cf:14:91:5c:bb:87:23:8c:cc:de:11:27:fd:
14:ae:f9:0c:3a:b2:13:3f:71:51:09:d2:0e:7c:1d:f0:80:5c:
c1:2a:a0:c9:40:d2:5f:39:0c:e7:3c:2b:82:e0:d1:47:a6:34:
e5:f9:64:c9:90:b7:58:d6:c9:49:7a:ee:fa:bd:83:a3:9a:94:
10:08:c8:5a:2b:e2:60:94:15:df:72:31:7a:2e:c5:b0:e1:30:
76:78:4f:63:c3:b0:14:03:7c:22:75:86:c3:b7:65:e3:71:95:
79:5d:b3:66:89:b1:6b:34:a2:26:c7:ee:01:f2:64:37:df:a2:
6d:60:29:20:29:66:b2:01:d3:0e:f3:03:31:b7:a0:a5:3e:f2:
b8:4e:a2:8c:c8:85:7c:a9:a3:f1:b4:af:4c:9b:b8:39:16:2b:
44:26:af:71:f4:27:0c:3e:65:a0:6c:fc:ee:37:cd:12:07:08:
c1:81:50:1e:65:72:59:e7:ad:77:c8:12:05:5e:fd:22:f5:1e:
eb:4c:da:3d:ea:7e:6d:8a:54:a2:0e:a6:c7:0e:13:90:fa:fe:
e5:94:e3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:16 2023 by rpki-client on console-ams.rpki-client.org