Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/Li7oLI_aiuk_-MtGgAt2l_8xn3A.roa
File: Li7oLI_aiuk_-MtGgAt2l_8xn3A.roa (raw, json)
Hash identifier: TP4MuJoBi5ypaW1FYmqFdUbwVv5Ap8q497j6VDe+nZk=
Subject key identifier: 2E:2E:E8:2C:8F:DA:8A:E9:3F:F8:CB:46:80:0B:76:97:FF:31:9F:70
Certificate issuer: /CN=f973209625e2a03ddeecf91bb480548e5729d479
Certificate serial: 0907EA42
Authority key identifier: F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/Li7oLI_aiuk_-MtGgAt2l_8xn3A.roa
Signing time: Sat 01 Jan 2022 12:54:16 +0000
ROA not before: Sat 01 Jan 2022 12:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209323
IP address blocks: 147.78.144.0/22 maxlen: 22
2a09:24c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151513666 (0x907ea42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f973209625e2a03ddeecf91bb480548e5729d479
Validity
Not Before: Jan 1 12:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2e2ee82c8fda8ae93ff8cb46800b7697ff319f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9c:49:7c:7a:e6:05:d3:34:bf:0e:61:3a:ad:
26:a9:ca:6c:75:89:17:43:39:dc:c3:60:ce:a1:8a:
34:17:1b:7d:1b:9a:de:dd:bc:6f:79:87:79:cf:81:
cd:2b:d3:a1:88:85:7f:58:62:f7:83:1f:4d:52:26:
f8:5a:a6:82:6a:42:4a:d6:e2:4d:96:77:8b:26:cb:
62:6c:0a:89:c9:bb:9f:83:3c:91:fb:7f:2f:3b:e6:
b5:03:48:e4:8d:6c:ce:30:d1:0d:2d:f0:91:2a:db:
fb:f9:ca:d4:31:14:b1:39:90:1f:f6:2d:62:89:25:
8e:1c:70:17:45:55:13:ab:a6:12:f1:c2:7d:14:06:
e8:73:1b:3f:b3:24:e9:4a:a6:74:9f:c8:ef:2c:b2:
65:61:eb:56:e4:b3:62:e9:c7:95:8a:e6:a0:e5:e5:
8b:95:34:8d:ef:51:c8:fe:7a:b7:b5:c2:ce:3b:a8:
5e:4d:63:4d:b7:df:5f:51:2b:3e:ac:f5:c7:a3:22:
99:47:6f:52:d2:4f:47:9a:3d:9e:60:74:4e:cc:91:
05:42:ce:e9:46:fb:fc:b4:ef:14:5e:ac:8e:30:ae:
99:04:d8:7b:1e:0a:15:bd:74:de:30:6f:99:ac:78:
8a:07:31:3c:0c:a3:79:de:20:7e:de:af:3e:8d:ca:
fa:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:2E:E8:2C:8F:DA:8A:E9:3F:F8:CB:46:80:0B:76:97:FF:31:9F:70
X509v3 Authority Key Identifier:
keyid:F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/Li7oLI_aiuk_-MtGgAt2l_8xn3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.144.0/22
IPv6:
2a09:24c0::/32
Signature Algorithm: sha256WithRSAEncryption
07:a3:a0:83:e0:20:1c:f5:80:0b:19:a0:40:c9:f6:cc:8f:50:
db:a6:72:69:e2:6c:2c:06:84:5f:b3:3b:dc:22:fd:36:71:18:
fb:db:cd:46:bb:2b:40:e0:3f:96:55:c7:82:1e:08:1b:06:31:
f3:99:86:90:9e:3d:e8:1e:80:aa:c1:10:32:67:72:88:0a:9f:
2d:e5:f4:e2:c3:1e:f1:fd:79:33:51:a5:0f:26:21:36:2f:a1:
2d:e2:e9:68:a5:8c:6a:5b:c3:67:7b:c3:37:88:36:85:d4:4d:
25:dd:dd:49:b0:ec:0f:ae:27:89:bc:ca:68:42:43:86:8d:00:
04:f0:ad:6a:41:1c:94:b6:f0:76:62:78:a0:db:53:11:4c:28:
b1:55:44:6f:c0:63:ae:02:9c:c4:d1:dc:d2:be:13:fa:61:80:
a6:70:e2:36:e9:68:e1:1c:2b:b0:9a:65:dc:04:18:0a:12:f1:
34:e5:e7:ba:7d:0c:f1:53:b6:7a:2f:48:e4:43:97:b4:d4:85:
94:5c:7f:6f:81:10:dd:30:d3:58:76:ec:0f:6c:31:a9:f6:a8:
a0:7b:95:0b:1c:e3:42:0f:36:06:b9:c8:05:97:ab:48:8f:5e:
57:26:b3:bc:b1:4c:59:67:cf:cf:4b:a6:90:c7:a8:00:c5:91:
be:7e:6f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:05 2023 by rpki-client on console-fra.rpki-client.org