Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/247st96zG2jiV4vVtURWzMYp3Io.roa
File: 247st96zG2jiV4vVtURWzMYp3Io.roa (raw, json)
Hash identifier: bZK5VNcpXgEiVB4wgWHhiXovdUbCvRIOcNHIlF/NGn4=
Subject key identifier: DB:8E:EC:B7:DE:B3:1B:68:E2:57:8B:D5:B5:44:56:CC:C6:29:DC:8A
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 0566286B
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/247st96zG2jiV4vVtURWzMYp3Io.roa
Signing time: Sat 01 Jan 2022 11:04:37 +0000
ROA not before: Sat 01 Jan 2022 11:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58507
IP address blocks: 161.8.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90581099 (0x566286b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Jan 1 11:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db8eecb7deb31b68e2578bd5b54456ccc629dc8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bd:a6:2a:f8:e6:41:5e:2d:de:5c:47:1d:8d:
60:3a:b6:ae:78:91:c1:62:0a:13:d1:2b:2e:85:5b:
69:ed:17:f0:59:99:6b:70:37:78:db:77:13:0c:ad:
ea:8a:4c:89:0b:26:e7:36:48:eb:e8:48:07:16:ee:
a6:b0:e9:ea:a8:58:08:dc:d7:ed:21:7e:01:6f:87:
01:67:36:8f:ff:1f:d8:a5:6e:c3:96:90:0e:d8:59:
26:6c:22:55:80:1f:9a:c8:c3:b2:16:ff:4d:93:85:
70:d5:b5:d7:89:2d:23:cb:8e:5a:32:8b:ca:5e:62:
93:7d:bb:24:b4:bd:a3:61:3c:f9:74:ad:22:bb:07:
a6:73:40:5d:29:71:30:80:ba:85:b8:cf:07:ac:24:
e8:9f:cb:e1:fa:55:bf:9f:86:4f:d5:07:6d:99:28:
c5:4b:22:d9:32:a8:db:f3:f9:12:0d:0e:ac:c1:c2:
f1:2c:12:7a:5e:68:71:e7:94:2a:f7:e9:5b:7e:ba:
38:f1:8f:66:90:78:03:05:9e:c8:3e:ad:7b:5d:f7:
aa:8c:e0:c2:59:d5:38:66:59:a6:69:63:3d:aa:25:
dd:0e:f2:eb:a6:6c:00:76:db:18:69:d7:03:28:53:
21:a9:be:af:d0:74:9e:c1:fe:be:75:bc:5a:19:19:
3b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8E:EC:B7:DE:B3:1B:68:E2:57:8B:D5:B5:44:56:CC:C6:29:DC:8A
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/247st96zG2jiV4vVtURWzMYp3Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.8.192.0/18
Signature Algorithm: sha256WithRSAEncryption
a5:c7:9f:75:2d:63:4d:df:de:1a:13:0f:5e:77:76:1c:79:5b:
f3:58:97:cf:cb:49:57:e8:7d:c6:a9:9b:e9:40:b5:dd:80:3c:
73:1c:1b:18:21:06:6d:72:92:0d:0d:df:84:51:06:d7:43:05:
a9:f6:ba:f8:f5:8a:b9:84:a0:8b:6b:39:75:fb:ff:78:5b:fd:
b7:aa:38:33:5d:f0:55:3d:9b:09:97:17:c6:32:04:11:4a:f7:
1d:ec:ff:e6:1e:06:ad:5d:94:d6:7f:66:21:48:95:d1:79:80:
a7:d8:9f:91:7d:14:86:0b:3b:0c:49:ed:ca:80:59:78:49:db:
23:f6:b6:3c:7d:d6:53:a5:43:81:17:5b:0a:a7:ab:db:30:92:
17:30:0e:e9:3f:dd:ce:bc:2b:d7:df:e5:e5:b1:1a:83:99:1b:
5d:80:d2:13:59:3e:ea:39:bf:08:53:46:b0:5e:e7:3b:5d:19:
5f:60:a8:c3:d2:20:2f:12:6a:80:08:bc:cc:f0:35:e7:ab:9e:
e5:9b:ca:3d:41:86:34:e2:37:5e:58:a9:f3:bc:6b:2e:ec:f1:
9f:26:93:36:5c:51:21:db:be:d7:45:e4:1e:9f:67:50:01:f0:
52:f6:ea:82:ba:8d:3e:32:0c:55:1f:61:0b:f6:ec:bb:38:d5:
27:eb:d5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:14 2024 by rpki-client on console-ams.rpki-client.org