Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/CD4xeZwQ2lYcTxv-koGauTM222Q.roa
File: CD4xeZwQ2lYcTxv-koGauTM222Q.roa (raw, json)
Hash identifier: wngxVkY9O/2ePiORR+2QcjP42Ryq93Y7ZxFd4KNhEQs=
Subject key identifier: 08:3E:31:79:9C:10:DA:56:1C:4F:1B:FE:92:81:9A:B9:33:36:DB:64
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0182543FCC91CC5D09D9F79043E484EFFF5A
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/CD4xeZwQ2lYcTxv-koGauTM222Q.roa
Signing time: Sun 31 Jul 2022 12:34:03 +0000
ROA not before: Sun 31 Jul 2022 12:34:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211851
IP address blocks: 171.22.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:54:3f:cc:91:cc:5d:09:d9:f7:90:43:e4:84:ef:ff:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jul 31 12:34:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=083e31799c10da561c4f1bfe92819ab93336db64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:57:84:ba:36:01:2c:1a:7f:e6:2d:40:f7:30:
6d:fa:77:6e:6a:b5:69:85:20:01:f1:bc:56:8c:dd:
91:a5:6b:64:26:40:fa:23:99:ed:89:e8:0f:2e:95:
ee:ee:00:b1:81:c6:5e:97:88:6d:03:f1:d2:ce:d7:
b9:6a:e7:cb:ec:7a:53:2f:2e:9b:56:5c:72:86:2c:
42:dd:cf:f5:77:ba:59:1f:40:a0:df:92:83:be:58:
62:9e:74:18:56:4d:5a:27:07:1a:ae:ed:2e:09:cd:
84:b3:96:19:a9:07:fc:67:55:e2:3d:52:67:a8:9d:
e0:36:e4:4b:e0:6b:26:54:8c:17:88:cd:39:8c:9e:
cd:e7:1d:57:f4:2a:0a:ca:12:74:6e:22:5d:9f:0f:
72:bd:1d:1b:7d:9f:3a:e3:76:22:ed:bd:e9:77:c6:
0f:ef:78:85:e7:30:d2:08:f7:f9:aa:3b:d2:c7:17:
26:75:cd:2d:5d:c8:50:f7:fa:c3:d3:63:a3:23:aa:
33:fb:6d:3c:3f:6c:8f:36:d4:53:71:84:f4:a5:71:
43:ae:5e:c0:59:02:00:29:ef:f6:c5:c0:b8:be:a1:
43:54:e5:48:56:b8:7c:9a:10:fe:be:e8:3e:2f:e5:
e3:5d:9f:87:5a:6c:54:ea:ec:22:fa:07:c2:b4:52:
4b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3E:31:79:9C:10:DA:56:1C:4F:1B:FE:92:81:9A:B9:33:36:DB:64
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/CD4xeZwQ2lYcTxv-koGauTM222Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.147.0/24
Signature Algorithm: sha256WithRSAEncryption
03:d2:69:1d:1a:fc:ab:9f:df:69:0a:69:7b:eb:02:13:89:08:
0e:cd:69:b0:17:83:78:a1:49:cd:95:53:b3:ac:e5:e2:7d:30:
d9:39:a9:68:bb:e5:9c:b9:fa:f6:22:dc:70:92:82:15:32:6d:
7d:8f:55:f5:7f:62:db:97:7f:41:98:f5:ed:6b:f3:f6:b0:35:
7a:47:c6:57:32:90:c5:62:a0:ac:93:3c:3c:48:d3:27:54:a4:
ae:8c:0b:97:9e:f9:6e:a3:ad:47:ce:02:6d:3e:87:34:25:2b:
0a:31:e5:74:64:a7:be:08:65:7b:6a:df:04:8b:31:5c:19:30:
c9:f8:cd:0f:b3:35:0b:1a:62:bf:5d:88:64:5f:2e:e3:a7:19:
bc:ff:dd:5c:d2:ea:2b:a5:41:2e:43:70:65:3b:10:20:56:0a:
63:43:46:52:c8:69:12:48:10:21:75:b3:8f:3f:17:97:9c:58:
5d:21:df:bc:91:e0:7e:9b:40:8a:15:85:9b:5f:f1:56:65:de:
a6:90:54:8b:2e:a7:f9:4c:a0:0d:dc:f9:bc:bd:44:53:e3:f2:
35:0d:59:bd:3e:da:c7:1e:79:ad:d2:b4:10:c7:ee:51:c7:aa:
89:1f:56:5f:4c:b8:0c:ac:4d:8e:59:35:77:81:42:0b:5d:cd:
1a:17:fd:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:42 2023 by rpki-client on console-ams.rpki-client.org