Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/cc1013-5dcb-4ebc-b79e-5c067b8b91a5/1/SIqZ1YhxhlggZqZPuBJJ8Q_AASY.roa
File: SIqZ1YhxhlggZqZPuBJJ8Q_AASY.roa (raw, json)
Hash identifier: VX3TsaBC0vg+OUiO814Iq/4/GDAg6jjeUvQbZmpMQ90=
Subject key identifier: 48:8A:99:D5:88:71:86:58:20:66:A6:4F:B8:12:49:F1:0F:C0:01:26
Certificate issuer: /CN=f59d56c52c7733f83be774afa47bbd55d28797ac
Certificate serial: 0182D202813079A175B25E3BAE45BBCD3A26
Authority key identifier: F5:9D:56:C5:2C:77:33:F8:3B:E7:74:AF:A4:7B:BD:55:D2:87:97:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Z1WxSx3M_g753SvpHu9VdKHl6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/cc1013-5dcb-4ebc-b79e-5c067b8b91a5/1/SIqZ1YhxhlggZqZPuBJJ8Q_AASY.roa
Signing time: Wed 24 Aug 2022 22:39:15 +0000
ROA not before: Wed 24 Aug 2022 22:39:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49801
IP address blocks: 194.34.160.0/24 maxlen: 24
194.34.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d2:02:81:30:79:a1:75:b2:5e:3b:ae:45:bb:cd:3a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f59d56c52c7733f83be774afa47bbd55d28797ac
Validity
Not Before: Aug 24 22:39:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=488a99d5887186582066a64fb81249f10fc00126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:70:58:5f:af:ae:5c:d6:b7:f8:a3:eb:29:83:
82:e3:d2:fb:14:1c:16:54:29:d5:4b:69:5e:bf:1c:
9b:67:85:b8:b9:2c:0c:06:15:6f:4b:92:6e:6a:ee:
7f:84:24:02:f9:44:d3:29:cb:ff:3b:d3:00:ea:14:
d2:17:38:dd:88:2f:74:54:5b:58:8f:7a:3c:03:06:
ee:b6:d5:56:d6:ac:66:99:e2:75:28:8f:fd:45:ce:
54:7c:57:48:d6:5f:82:f7:ec:fc:3f:56:b4:09:2d:
0d:c1:d5:13:45:2d:ef:63:6d:00:6b:46:ca:f0:b2:
f8:ea:c3:69:8d:42:95:1c:17:d4:f8:78:7c:7e:31:
38:69:09:82:a5:6f:76:ef:bd:ab:6c:74:6f:7e:3c:
a3:8e:c7:44:a4:28:d7:c8:9b:be:fc:bc:e4:18:ab:
09:c9:09:3b:fe:e8:35:ac:6e:72:3c:0f:8d:47:d7:
17:c8:b8:2b:ed:0f:36:70:17:36:09:8f:f0:cc:6a:
74:59:da:5c:32:b4:ec:47:3e:d2:f3:2d:f8:fe:1b:
7b:2f:5d:6a:4c:02:8e:43:73:d0:46:fd:74:8d:40:
5e:03:f6:be:f5:3e:6f:96:06:b4:67:31:cd:a3:70:
74:86:f4:d9:30:fa:f0:e9:c1:30:7b:a3:11:0e:35:
70:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8A:99:D5:88:71:86:58:20:66:A6:4F:B8:12:49:F1:0F:C0:01:26
X509v3 Authority Key Identifier:
keyid:F5:9D:56:C5:2C:77:33:F8:3B:E7:74:AF:A4:7B:BD:55:D2:87:97:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Z1WxSx3M_g753SvpHu9VdKHl6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cc1013-5dcb-4ebc-b79e-5c067b8b91a5/1/SIqZ1YhxhlggZqZPuBJJ8Q_AASY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cc1013-5dcb-4ebc-b79e-5c067b8b91a5/1/9Z1WxSx3M_g753SvpHu9VdKHl6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.160.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:fc:05:48:19:a6:3e:d0:63:ac:32:91:a9:28:fa:47:54:df:
0e:f7:83:a3:ed:d3:86:32:ac:dd:7e:a3:24:eb:98:99:0f:f4:
58:4a:2e:9c:1b:4f:12:07:b1:69:58:37:21:0b:e3:94:49:a6:
49:76:bd:32:55:83:52:7b:24:d6:d8:63:ad:e7:09:75:0e:82:
2d:7a:03:ac:f1:d5:bd:80:06:01:2d:3f:c1:b8:be:a3:bd:80:
1d:9e:b8:11:db:8f:b5:ee:bb:a3:17:20:e9:e4:dc:bf:dc:3d:
6c:57:19:7c:3c:8c:73:aa:a9:e6:14:e4:38:8b:4a:4d:ea:05:
d2:83:a5:31:e1:b3:59:11:2a:91:c6:ab:0c:01:c3:03:bb:91:
84:21:b9:96:51:d4:98:af:2a:a1:89:79:97:8d:b7:5d:9c:9b:
e4:a3:16:5f:35:97:4c:81:65:17:ab:e9:28:e7:c0:79:4c:5f:
de:85:0a:83:1e:eb:63:58:e7:85:ad:37:c5:f2:ac:3b:04:5d:
62:bf:1d:d1:e2:2a:a3:7c:26:f7:18:e1:b3:ce:b6:6d:97:47:
c9:6a:e7:56:89:b4:1c:2d:4d:67:6f:f8:ea:84:c2:58:55:ca:
33:2d:dd:a2:9a:46:bc:20:dd:f7:d0:17:c7:cc:6f:65:e7:5a:
86:03:8e:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:53 2023 by rpki-client on console-fra.rpki-client.org