Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/9lMr9ih2qk3UEYp0YIfaF7lTdMw.roa
File: 9lMr9ih2qk3UEYp0YIfaF7lTdMw.roa (raw, json)
Hash identifier: lBpazhmy5sAcu9hlYUbjoPz+hio5mPkA/3w1aW31Bo4=
Subject key identifier: F6:53:2B:F6:28:76:AA:4D:D4:11:8A:74:60:87:DA:17:B9:53:74:CC
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03EAFED7
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/9lMr9ih2qk3UEYp0YIfaF7lTdMw.roa
Signing time: Sat 01 Jan 2022 13:04:13 +0000
ROA not before: Sat 01 Jan 2022 13:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271812
IP address blocks: 181.41.152.0/23 maxlen: 23
181.41.152.0/24 maxlen: 24
181.41.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65732311 (0x3eafed7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6532bf62876aa4dd4118a746087da17b95374cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f2:0f:65:ce:71:12:5f:a1:d2:73:33:42:35:
22:13:df:2e:7f:3e:91:c1:97:a0:4f:51:98:63:77:
b3:90:d6:51:a0:dd:21:c6:86:5f:28:4b:c8:d5:1d:
63:48:d9:21:df:af:fc:64:10:d3:19:8e:a0:5d:94:
3e:0b:40:e5:0b:d6:f3:3c:9b:db:d5:ce:d0:1a:85:
e5:00:6d:a8:47:63:6a:36:46:db:57:87:18:6b:ee:
a6:c9:74:e3:72:fc:10:a4:84:84:34:aa:e3:8f:cb:
b3:cb:23:27:7a:3f:06:aa:d6:9f:4c:37:94:2f:62:
57:5a:09:e5:41:1c:d8:23:05:c8:eb:43:f6:aa:ea:
37:eb:88:15:9e:e3:50:0e:e8:b9:0a:f7:8b:bb:e8:
06:33:0a:95:41:67:5d:08:74:45:be:27:b6:16:3b:
04:02:43:10:07:07:56:96:81:cb:79:6f:f3:58:5f:
24:7b:2b:6a:31:2d:36:34:e1:07:cb:16:19:09:89:
35:b6:da:ea:be:19:6d:83:df:81:87:6d:cf:c4:7b:
37:7c:14:06:32:9b:b9:40:c2:2d:eb:5a:99:83:f4:
f1:17:0f:81:2c:cd:d8:1b:b0:56:f1:d9:cc:91:fb:
b6:93:22:65:ff:56:ae:e0:2e:07:25:22:07:1a:8b:
b2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:53:2B:F6:28:76:AA:4D:D4:11:8A:74:60:87:DA:17:B9:53:74:CC
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/9lMr9ih2qk3UEYp0YIfaF7lTdMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.152.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:12:0d:1e:25:4b:f3:0b:ff:e8:ac:49:2b:97:44:fc:b7:fe:
e6:65:ab:7d:fd:7c:27:9a:fb:eb:5e:fd:50:41:2d:cb:9b:0d:
b6:f2:91:20:e1:51:41:f6:a6:0f:a6:0d:fc:a9:c2:e1:14:89:
eb:3c:33:30:30:e7:ef:8f:9e:9e:dd:6e:40:ac:80:d8:e5:3e:
7d:07:fc:ae:4e:64:b8:62:91:87:d3:bf:f2:c9:5b:ef:0e:46:
4c:9b:57:37:6a:df:f5:83:9b:7a:b7:8c:cc:46:aa:a5:16:c8:
bd:0c:de:cf:da:4f:73:9a:42:d7:e1:c4:31:e6:fe:5b:49:be:
bf:29:fb:84:7e:61:eb:f3:9c:e7:db:81:f8:aa:18:7f:99:13:
75:d3:e0:f7:22:64:38:96:16:f1:d6:40:f3:e5:ec:86:e5:d2:
01:cd:02:23:f9:9c:1d:4a:f3:68:a0:fe:96:ee:f6:33:bf:3b:
69:50:ec:ae:2a:52:5f:34:cd:d5:06:0c:6b:e0:85:21:d6:60:
61:f4:61:91:3e:bd:43:ae:93:a4:ff:87:05:29:9a:8f:41:91:
bd:b0:66:0f:ea:0f:41:15:42:d6:8b:94:02:b1:e9:61:bb:2a:
fa:ff:f6:78:3f:53:a3:de:9b:06:62:87:98:e9:de:8d:a4:46:
2c:8c:17:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-fra.rpki-client.org