Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/em6HQhXNUL7HiL0pInbb4xZHhJI.roa
File: em6HQhXNUL7HiL0pInbb4xZHhJI.roa (raw, json)
Hash identifier: 3jkS6lElFhmh/DV6oubcaww0iHYTi5xZX20QEwXdxF8=
Subject key identifier: 7A:6E:87:42:15:CD:50:BE:C7:88:BD:29:22:76:DB:E3:16:47:84:92
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 06A09A14
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/em6HQhXNUL7HiL0pInbb4xZHhJI.roa
Signing time: Wed 18 May 2022 21:29:16 +0000
ROA not before: Wed 18 May 2022 21:29:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7922
IP address blocks: 159.197.144.0/20 maxlen: 24
159.197.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111188500 (0x6a09a14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: May 18 21:29:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a6e874215cd50bec788bd292276dbe316478492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:11:ff:c1:27:4e:85:45:64:2a:0e:b8:4e:
aa:50:00:51:43:66:5b:11:91:3e:37:1b:e9:33:a3:
92:5c:6d:ae:2f:a5:5b:b4:6e:f8:90:7b:3c:ec:e3:
82:68:41:76:cf:e9:42:15:03:36:a2:30:ea:b5:14:
f4:31:05:00:7f:d0:ca:e9:b1:0f:55:07:1f:ee:5c:
08:09:74:68:7a:63:bb:84:9d:00:00:7c:52:66:69:
70:35:11:d6:7b:1a:cc:53:bd:8a:f9:54:ba:1f:67:
62:f8:c4:a0:a6:53:d5:e9:4c:0e:4a:b9:09:57:32:
2d:42:d8:7e:50:4e:74:b6:f0:b5:97:22:70:a1:50:
bb:ff:0f:99:f9:f4:6d:a8:a4:52:71:39:e3:4e:ef:
43:f8:5b:9f:f0:84:84:e5:af:8e:80:a7:07:65:c1:
2e:a5:80:61:9f:0e:36:1a:20:46:97:f3:a1:f5:c2:
36:ba:75:95:33:9d:ae:3e:34:aa:e5:4a:96:38:10:
67:14:9d:49:87:f3:56:94:b0:1e:3d:d9:26:50:ea:
f0:4e:ef:64:1a:fa:42:db:c5:12:44:30:4d:6e:14:
e5:e8:53:25:00:d6:63:3a:37:ed:06:cc:01:02:bf:
0f:14:b5:b7:56:f3:be:90:d3:87:ee:9d:84:0e:52:
22:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:6E:87:42:15:CD:50:BE:C7:88:BD:29:22:76:DB:E3:16:47:84:92
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/em6HQhXNUL7HiL0pInbb4xZHhJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.197.144.0-159.197.191.255
Signature Algorithm: sha256WithRSAEncryption
4c:16:92:c2:df:c7:d2:38:0e:53:66:15:9c:50:2b:89:25:65:
2f:ad:a6:79:db:93:99:ff:a7:ab:b2:6f:39:ab:78:af:df:c0:
02:fc:d1:94:5b:b5:e0:e6:d0:44:f4:e5:00:9f:71:c4:b2:31:
25:34:aa:a2:7b:b3:89:25:13:f9:7f:05:82:1a:ce:ac:74:04:
5c:d2:aa:51:66:ab:86:ac:13:62:46:ef:23:ef:66:a4:37:20:
48:84:c2:31:66:ba:fd:52:44:b5:87:39:b7:d4:c7:41:69:1c:
ac:8b:0c:14:a6:f6:53:72:70:45:3d:ee:b9:23:34:5c:6d:51:
a7:d1:70:09:58:38:f2:12:c8:eb:ed:67:9d:9f:06:e5:f2:0f:
42:63:6c:1a:45:e1:92:02:e4:2c:ea:ef:4e:cf:40:93:52:3d:
78:d1:17:1f:da:1c:b9:ff:8e:a3:a1:f1:40:25:fe:be:8e:a5:
1d:c3:9e:50:06:a4:af:0a:0b:a7:d7:a0:01:86:e0:7b:03:da:
90:de:b6:7a:67:91:ac:73:cf:a1:50:27:0d:cf:b5:98:20:82:
48:e2:39:ac:81:7e:23:3a:e8:5c:05:5a:08:84:ad:20:bf:6c:
54:a0:94:9b:6c:a5:90:4c:40:2b:65:27:ef:1c:d4:55:92:a5:
db:6d:d2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:23 2024 by rpki-client on console-fra.rpki-client.org