Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tHpHAc4SjzCkYxeDAiDL_hzBXxs.roa
File: tHpHAc4SjzCkYxeDAiDL_hzBXxs.roa (raw, json)
Hash identifier: MEcMymQBJR25wQDkGlq7rNFuJhzioxlIsuMCILB0yf4=
Subject key identifier: B4:7A:47:01:CE:12:8F:30:A4:63:17:83:02:20:CB:FE:1C:C1:5F:1B
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03CFDC74
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tHpHAc4SjzCkYxeDAiDL_hzBXxs.roa
Signing time: Sat 01 Jan 2022 13:03:59 +0000
ROA not before: Sat 01 Jan 2022 13:03:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39640
IP address blocks: 201.49.188.0/22 maxlen: 22
167.160.31.0/24 maxlen: 24
178.19.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63954036 (0x3cfdc74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:03:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b47a4701ce128f30a46317830220cbfe1cc15f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:aa:78:0b:f6:a2:e9:e8:78:73:13:e8:16:a1:
51:d4:a2:f9:2b:41:a4:48:8e:9f:7f:fc:66:ce:66:
28:9a:3d:a3:61:99:08:a5:63:9a:13:c3:5b:06:a3:
fd:19:fb:47:30:6b:a7:00:84:7e:f6:66:44:bb:50:
4b:b4:da:e7:2d:26:62:3d:0f:9d:93:e3:62:a2:c4:
e8:a5:81:db:8d:90:c5:a2:5e:b1:c5:d3:15:c1:28:
53:7d:95:59:39:8c:88:30:05:fa:10:63:48:aa:0d:
84:eb:a3:ec:70:4d:f3:3e:9d:50:0b:92:00:f4:5d:
df:8b:09:3a:83:bf:c0:67:d0:45:db:00:9c:84:95:
2d:58:03:ed:dc:a5:da:97:75:aa:16:ba:f5:f5:29:
4c:72:13:b6:c7:f0:7d:a5:1e:66:53:17:4a:5e:c4:
41:ef:dc:c1:59:7f:54:17:f2:64:c3:5d:b9:17:84:
29:75:75:2e:91:33:64:54:75:35:7a:7b:16:64:29:
18:6e:52:21:b3:5a:aa:c5:f3:cc:1a:82:76:25:be:
60:4a:67:74:1a:14:d5:e3:24:34:7d:8f:50:a5:99:
c4:3f:cb:0a:f9:11:e5:64:53:46:b3:15:b0:9e:cb:
72:9b:02:07:fb:56:d9:32:bc:d8:65:db:b7:0e:6e:
98:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:7A:47:01:CE:12:8F:30:A4:63:17:83:02:20:CB:FE:1C:C1:5F:1B
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tHpHAc4SjzCkYxeDAiDL_hzBXxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.31.0/24
178.19.32.0/23
201.49.188.0/22
Signature Algorithm: sha256WithRSAEncryption
17:e8:8e:12:9b:06:d1:19:99:67:c4:6b:25:d7:8a:d0:ce:49:
9b:f7:12:85:47:63:e6:d0:62:9e:b9:ee:cc:45:0d:93:68:cf:
3f:a7:2d:25:44:4a:67:4f:05:81:cc:3a:90:a5:ae:da:29:8b:
ee:9b:42:5c:92:85:be:22:c9:84:03:d4:b7:0a:e5:eb:33:90:
a0:f8:4c:f6:b9:c4:9b:1e:35:6e:91:8b:77:40:f2:ea:90:05:
04:72:7c:19:5a:96:f7:29:34:fd:3a:24:ed:de:32:91:48:67:
88:0e:ef:50:61:01:ad:95:3d:f2:f9:b9:b3:5e:46:45:09:ad:
fd:f3:50:50:8b:2e:ec:05:cf:97:4b:06:f1:5e:1f:9a:d2:78:
11:4b:e6:0e:c0:52:f1:4a:66:83:95:6f:5e:7d:c3:fa:c6:bf:
09:74:5a:1d:05:a6:7a:a6:6c:79:22:e6:9a:ad:ef:60:b3:ed:
24:c7:d2:ca:8b:90:02:2e:f2:7f:fc:41:cf:14:fb:ff:5f:dc:
5e:f5:af:18:1f:6d:86:ec:22:1e:a3:38:6a:00:60:44:3b:60:
3b:76:96:93:33:66:78:e8:a2:b0:cc:9f:19:58:41:58:7d:e6:
82:e0:73:aa:ed:79:e7:62:8b:bb:c1:de:34:44:d3:cb:8a:98:
46:6c:52:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org