Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/lf2DeFQeU8rs1-Z0f2kux26SZVQ.roa
File: lf2DeFQeU8rs1-Z0f2kux26SZVQ.roa (raw, json)
Hash identifier: 2JijMPfqa3OGztUDuXb7gWWu3VLCy26BHxs0D65Pdks=
Subject key identifier: 95:FD:83:78:54:1E:53:CA:EC:D7:E6:74:7F:69:2E:C7:6E:92:65:54
Certificate issuer: /CN=0d8cbee51990f1e05a9d1dc0c2f2f3a8a3470c13
Certificate serial: 07A7EE71
Authority key identifier: 0D:8C:BE:E5:19:90:F1:E0:5A:9D:1D:C0:C2:F2:F3:A8:A3:47:0C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/lf2DeFQeU8rs1-Z0f2kux26SZVQ.roa
Signing time: Sat 01 Jan 2022 07:01:34 +0000
ROA not before: Sat 01 Jan 2022 07:01:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204512
IP address blocks: 157.97.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128446065 (0x7a7ee71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8cbee51990f1e05a9d1dc0c2f2f3a8a3470c13
Validity
Not Before: Jan 1 07:01:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95fd8378541e53caecd7e6747f692ec76e926554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a5:c6:e6:45:11:98:81:8f:fc:7e:45:5f:f6:
e3:f5:ce:77:aa:28:5f:a4:b4:de:bb:3f:46:73:b7:
7c:87:d5:41:ab:3d:a0:72:ec:f8:db:0f:56:00:89:
bc:b3:d2:a6:0b:01:e2:50:bb:52:e5:c4:49:75:25:
3f:81:ee:7d:16:72:52:b6:d7:d6:d8:05:97:70:af:
39:a0:da:d0:73:3c:f8:d1:3f:68:da:4a:5d:a3:99:
51:a1:2d:12:d0:38:85:c5:ce:1f:14:05:d1:8a:c8:
97:66:df:55:24:6d:0e:e1:6b:fa:ef:cb:77:b1:f2:
0e:2f:2b:31:7f:a8:d9:58:84:e9:0f:1f:71:b2:9e:
73:a1:4f:c6:b0:1b:5f:87:ae:46:91:20:84:b3:db:
c8:4a:f0:c6:8b:e3:0e:f5:e7:c3:3c:70:d4:f4:2e:
13:94:4d:1a:ad:ed:ee:87:f8:36:31:a8:aa:72:3a:
e4:96:0e:4c:2c:fb:0b:04:07:81:24:fc:7e:50:63:
d4:d9:85:77:d0:69:92:24:30:af:31:81:ad:c2:df:
56:18:44:d7:3f:fa:3f:ad:9c:d6:e4:86:25:0b:b2:
23:d1:5d:92:19:f6:13:94:d5:41:0c:72:2a:ed:95:
29:f9:11:ed:bd:4a:04:13:f4:94:3b:dd:a7:e6:eb:
7d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:FD:83:78:54:1E:53:CA:EC:D7:E6:74:7F:69:2E:C7:6E:92:65:54
X509v3 Authority Key Identifier:
keyid:0D:8C:BE:E5:19:90:F1:E0:5A:9D:1D:C0:C2:F2:F3:A8:A3:47:0C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYy-5RmQ8eBanR3AwvLzqKNHDBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/lf2DeFQeU8rs1-Z0f2kux26SZVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/763d8e-2081-4cf8-b65b-1b1e78cbbb09/1/DYy-5RmQ8eBanR3AwvLzqKNHDBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.97.75.0/24
Signature Algorithm: sha256WithRSAEncryption
31:71:e5:91:66:ee:80:32:17:29:1b:35:5a:51:7c:cf:76:d4:
fd:48:43:22:02:d6:85:d7:4e:6b:3f:b6:7b:05:ed:9a:d7:75:
19:b6:29:22:58:1b:da:8a:2d:56:39:9f:c0:db:7b:da:04:a8:
7d:be:18:4e:39:aa:41:69:83:53:cb:bc:17:99:b0:08:c9:61:
61:d8:87:1f:0d:7c:8f:de:34:be:3f:77:63:76:6a:fa:2d:ae:
3c:39:5a:7e:e8:76:26:2d:65:38:01:ce:ef:a8:8b:42:d2:84:
be:20:14:80:41:50:a6:8c:fa:00:3d:52:be:89:47:dd:df:83:
6b:a1:c8:53:40:72:ca:98:e0:af:b4:4a:42:19:68:cc:08:0a:
43:94:60:e5:47:0e:c4:52:d0:d3:04:08:3e:1b:fc:0b:71:c6:
c0:f3:82:98:42:ac:93:74:1b:e5:60:b0:41:ab:48:08:f0:af:
92:b0:8a:3f:89:cb:9e:09:6c:36:7e:57:48:5b:a3:53:26:51:
38:e3:e3:bd:26:fa:76:8c:13:68:8b:92:6c:18:c9:b0:09:9e:
33:db:c8:d6:13:4d:5e:6b:a5:42:51:98:75:df:c2:0d:52:2d:
ec:6e:d3:fa:a3:8e:4e:82:8a:8d:27:11:55:93:d4:62:64:f2:
04:e0:fa:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org