Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/dRqx9uGS8xqnggXFlL_1kzIMfLE.roa
File: dRqx9uGS8xqnggXFlL_1kzIMfLE.roa (raw, json)
Hash identifier: nVtqqAJ0WV9chqisNcFsYHHzeupSFzhVokBw3NAmLwM=
Subject key identifier: 75:1A:B1:F6:E1:92:F3:1A:A7:82:05:C5:94:BF:F5:93:32:0C:7C:B1
Certificate issuer: /CN=19acf07f1352222658b789e4fe40ea38a8aa71df
Certificate serial: 0791DF42
Authority key identifier: 19:AC:F0:7F:13:52:22:26:58:B7:89:E4:FE:40:EA:38:A8:AA:71:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GazwfxNSIiZYt4nk_kDqOKiqcd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/dRqx9uGS8xqnggXFlL_1kzIMfLE.roa
Signing time: Sat 01 Jan 2022 00:52:59 +0000
ROA not before: Sat 01 Jan 2022 00:52:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205881
IP address blocks: 151.136.0.0/16 maxlen: 16
2a07:4ac0:2400::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127000386 (0x791df42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19acf07f1352222658b789e4fe40ea38a8aa71df
Validity
Not Before: Jan 1 00:52:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=751ab1f6e192f31aa78205c594bff593320c7cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b2:1e:fd:90:74:d7:51:08:e4:ba:4d:7b:eb:
96:eb:94:57:cf:c1:95:c5:e8:8b:29:85:52:24:85:
33:bb:00:ef:f2:20:35:82:40:72:68:23:4c:b4:ed:
fb:ca:ff:ca:6b:87:a5:4f:15:2f:dc:41:a0:4d:63:
b4:ec:d3:26:f3:f8:79:fa:d7:b3:8a:e0:ca:06:dd:
6e:63:30:72:fc:7b:56:9b:11:02:c4:20:d6:9f:72:
af:29:4b:ed:bd:02:64:8b:52:b6:de:52:b5:d5:e4:
8f:2c:21:01:2a:47:d3:9b:41:68:1a:0c:2a:4e:77:
65:d0:98:c6:60:72:5d:34:7f:2c:87:26:09:5e:b9:
b7:75:04:3e:6c:57:8a:0f:74:af:cb:65:fe:b7:20:
6e:d7:4c:f8:ac:de:2b:43:ae:fa:a1:17:b9:e4:14:
da:37:1f:1b:6f:18:10:a1:49:3c:34:32:42:a3:9b:
94:df:e0:db:4d:6d:3a:1f:32:35:cd:5c:ec:f3:c8:
f2:e9:fc:4a:f3:d0:f4:28:f9:66:24:d6:1b:7f:eb:
83:83:f1:4b:98:db:51:9b:12:c0:68:07:67:bd:dc:
b1:ad:29:6f:36:3b:5d:2f:d2:6a:2f:c3:14:d4:76:
01:e0:24:b7:c9:15:fc:01:27:d1:eb:7c:f6:da:8b:
a8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:1A:B1:F6:E1:92:F3:1A:A7:82:05:C5:94:BF:F5:93:32:0C:7C:B1
X509v3 Authority Key Identifier:
keyid:19:AC:F0:7F:13:52:22:26:58:B7:89:E4:FE:40:EA:38:A8:AA:71:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GazwfxNSIiZYt4nk_kDqOKiqcd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/dRqx9uGS8xqnggXFlL_1kzIMfLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/GazwfxNSIiZYt4nk_kDqOKiqcd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.136.0.0/16
IPv6:
2a07:4ac0:2400::/40
Signature Algorithm: sha256WithRSAEncryption
09:23:17:f5:c0:ce:2e:21:06:f6:16:3f:f6:5b:0e:89:f8:b7:
0b:c1:54:85:ed:74:be:5f:b5:b3:c5:48:36:dd:fa:dd:e0:0a:
b6:30:7c:5b:88:90:9a:58:f6:55:f9:dd:49:75:d5:ba:b9:2f:
22:07:e7:56:b7:10:2f:38:96:41:52:6b:3d:8d:0b:14:9a:7a:
41:ea:5a:a8:74:c2:58:0b:bc:e9:32:39:3a:ac:a5:ee:b4:69:
0e:38:8e:3d:df:61:0c:3a:a1:6f:3e:7b:41:06:a2:47:d2:c1:
cc:74:10:00:87:b6:e9:ff:dd:c9:b7:2f:8b:09:91:67:eb:2d:
86:8f:75:9f:7a:26:fe:8f:29:5d:0d:5c:cb:97:d3:0f:9f:c6:
dd:f9:37:04:61:ef:64:80:46:9b:c3:61:09:82:65:e4:5c:42:
a9:4c:1e:07:9c:a5:ef:b6:b7:4e:7f:af:fe:b3:99:03:08:5f:
03:ec:45:56:5e:ca:42:0a:4e:9c:43:ba:ec:73:75:a3:13:b3:
94:ed:27:99:ae:7f:7f:99:ca:f3:32:6b:16:5d:3f:7b:dd:e7:
c9:b7:79:2e:38:65:d4:ee:08:83:0a:32:0f:67:a1:cd:ce:5b:
6c:dd:08:65:6e:4f:90:01:20:4b:7d:7f:8b:16:2a:25:73:00:
e4:11:5e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:01 2024 by rpki-client on console-ams.rpki-client.org