Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/3tqkNCNt-fw98OwFUJCvyQKnB-k.roa
File: 3tqkNCNt-fw98OwFUJCvyQKnB-k.roa (raw, json)
Hash identifier: lIRyzcDE2l6LceW82Ol7mTnVfyASJTBT1cbVU8OIcjM=
Subject key identifier: DE:DA:A4:34:23:6D:F9:FC:3D:F0:EC:05:50:90:AF:C9:02:A7:07:E9
Certificate issuer: /CN=0d8cbee51990f1e05a9d1dc0c2f2f3a8a3470c13
Certificate serial: 07A5696D
Authority key identifier: 0D:8C:BE:E5:19:90:F1:E0:5A:9D:1D:C0:C2:F2:F3:A8:A3:47:0C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/3tqkNCNt-fw98OwFUJCvyQKnB-k.roa
Signing time: Sat 01 Jan 2022 07:01:32 +0000
ROA not before: Sat 01 Jan 2022 07:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42699
IP address blocks: 92.43.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128280941 (0x7a5696d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8cbee51990f1e05a9d1dc0c2f2f3a8a3470c13
Validity
Not Before: Jan 1 07:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dedaa434236df9fc3df0ec055090afc902a707e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:08:29:dd:5d:4e:ef:17:54:bf:ae:64:7b:bc:
6f:04:7a:f1:c6:e3:5d:74:36:b3:6c:02:b3:e9:e2:
4c:7c:60:de:8e:20:5e:3f:7f:f0:0d:a6:c1:5b:6c:
e1:a2:ce:f8:fc:ca:bd:2d:aa:f4:46:90:cc:7e:f2:
7d:0f:5c:c9:5f:c7:5b:6f:df:56:a7:2e:27:f9:24:
fc:88:6c:46:a7:c9:df:47:ab:72:f7:66:86:7f:46:
4c:f1:48:c5:0a:57:7c:72:3b:63:8d:8c:ab:9b:b7:
14:6b:64:76:ea:ee:a6:a6:97:75:fe:ce:c3:5d:69:
0d:dc:a0:b8:ce:20:fd:b8:da:9e:07:a9:81:0f:69:
f8:ea:e9:3e:18:cf:fc:da:11:0f:73:fb:8b:b2:da:
a4:83:c5:90:11:61:56:40:dd:8a:9d:da:1c:72:e6:
5e:8e:2f:c4:67:20:85:4b:2c:bd:01:31:77:2b:87:
14:88:d9:32:08:47:aa:23:f8:78:08:22:ac:cb:96:
9f:59:75:3d:a1:f2:05:67:10:5f:17:a3:58:81:e5:
b4:07:a2:56:ec:91:7b:ca:4b:15:27:32:3f:8c:13:
72:1f:a8:dc:4f:cf:ff:03:60:f4:26:48:bf:b2:67:
ef:fd:07:b8:01:d8:92:54:0c:e5:f5:40:59:81:58:
55:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DA:A4:34:23:6D:F9:FC:3D:F0:EC:05:50:90:AF:C9:02:A7:07:E9
X509v3 Authority Key Identifier:
keyid:0D:8C:BE:E5:19:90:F1:E0:5A:9D:1D:C0:C2:F2:F3:A8:A3:47:0C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/3tqkNCNt-fw98OwFUJCvyQKnB-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/DYy-5RmQ8eBanR3AwvLzqKNHDBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.48.0/21
Signature Algorithm: sha256WithRSAEncryption
26:a8:02:4c:26:00:8a:d8:c0:74:fd:86:5d:ca:79:46:98:95:
cd:3c:50:63:e3:ce:41:5f:94:4f:8f:05:5a:4e:8c:07:1a:a3:
13:dd:37:06:88:5a:b9:c7:d6:3c:73:66:d6:c5:80:1b:8c:29:
26:2a:a0:31:73:08:30:64:c0:f6:b7:ff:a3:f5:ef:b5:39:9e:
37:20:eb:bf:00:67:3b:82:40:f9:fb:5d:21:28:92:34:93:74:
e1:d6:54:73:7a:dd:a2:e7:1e:ae:56:f2:32:46:e4:54:1c:b5:
66:7c:56:fa:6f:9f:89:82:29:ce:5b:c7:c4:78:17:12:34:9b:
74:42:be:7d:7b:61:1c:c3:1b:7e:a4:7e:ff:80:f1:f9:41:96:
aa:44:76:ef:db:8b:76:b5:e0:e2:15:91:a6:5d:b7:74:91:16:
25:d1:a7:95:50:05:98:b7:3a:7e:ea:86:78:9a:27:f1:20:8b:
5a:8b:4f:0b:71:9d:b6:6d:3a:db:f6:f0:3b:ba:c8:b0:27:18:
a5:22:13:3c:4a:d8:09:52:66:dd:c8:1b:3b:c3:81:03:57:2c:
9f:9a:65:95:e3:9c:dd:ef:a6:c2:0c:95:38:f2:62:dd:44:80:
ba:41:bb:69:01:b0:26:03:15:34:60:52:3e:b5:e6:50:23:aa:
84:0a:cc:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org