Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/aaE7XNopJec7hNT2lobEaoDsqz4.roa
File: aaE7XNopJec7hNT2lobEaoDsqz4.roa (raw, json)
Hash identifier: jEXrhUeQ4jDI6oZm97KFOA36XdgJuFePxfCsZgbbDS0=
Subject key identifier: 69:A1:3B:5C:DA:29:25:E7:3B:84:D4:F6:96:86:C4:6A:80:EC:AB:3E
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 01E68CFA
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/aaE7XNopJec7hNT2lobEaoDsqz4.roa
Signing time: Wed 26 Jan 2022 19:54:31 +0000
ROA not before: Wed 26 Jan 2022 19:54:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 83.97.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31886586 (0x1e68cfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Jan 26 19:54:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69a13b5cda2925e73b84d4f69686c46a80ecab3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:01:26:90:71:cb:9c:37:e5:05:fa:0d:df:57:
eb:99:90:9b:c8:9a:56:ff:04:39:73:f7:8d:17:82:
30:72:9d:a0:db:4d:ae:ce:c6:ca:57:bb:3e:d1:51:
08:c1:1d:bd:6c:21:da:40:e4:26:28:4d:f2:9c:c7:
1f:26:6c:0a:8d:61:ae:0a:6a:4c:37:ae:3c:12:1d:
85:97:f1:48:55:2c:af:f0:41:ae:ac:93:1a:06:38:
9c:31:5e:e7:81:e4:f4:da:00:fa:19:ca:20:66:24:
02:dd:a9:99:16:4e:58:97:9b:3e:2e:d1:cd:4d:23:
7f:2f:8f:5c:02:6b:5c:ad:ca:46:63:c5:e8:b3:6b:
cb:03:c6:98:67:42:a9:9a:38:91:52:9b:e1:8b:32:
47:4a:28:cf:3d:54:1b:cb:c6:c2:8d:50:3e:c8:04:
7b:3d:0e:d4:81:85:6a:0f:6c:4c:c8:b5:bb:39:22:
7d:50:8f:d2:06:70:96:b7:2b:f1:82:dd:f9:eb:dd:
29:f6:83:5f:11:05:3b:99:a1:c9:7a:9e:64:08:8b:
8c:19:c7:13:bd:1c:7d:8e:0b:35:21:6b:c5:6a:04:
6a:ea:a8:87:b2:74:f4:da:b3:14:ae:13:aa:eb:70:
18:47:bc:07:dc:8a:0c:37:43:77:79:64:36:86:44:
80:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A1:3B:5C:DA:29:25:E7:3B:84:D4:F6:96:86:C4:6A:80:EC:AB:3E
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/aaE7XNopJec7hNT2lobEaoDsqz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.96.0/22
Signature Algorithm: sha256WithRSAEncryption
27:11:f0:9a:86:7c:4a:86:ed:62:f9:1b:dc:24:3d:27:84:ec:
a0:1e:cf:9a:5a:1d:2a:0b:3f:db:47:2d:a0:01:69:ab:92:89:
40:15:32:85:bb:7b:83:07:72:fe:23:ef:c0:c5:1e:0d:fe:dc:
8f:f6:0d:3e:ce:82:08:ec:00:89:7a:4a:3f:bb:a7:32:01:47:
da:2c:be:a3:3c:63:b7:ee:5b:d8:83:c2:b5:18:2b:22:f7:eb:
df:dd:a0:68:8b:b4:c0:08:e6:c0:f1:d6:b7:11:7a:2e:ce:38:
4a:a7:56:a2:fa:a7:aa:a0:af:70:9c:41:ef:6a:f4:6a:43:b5:
c4:e5:dd:57:6a:f4:17:d9:66:b6:9d:c9:d1:d7:d6:28:33:72:
50:b1:8e:bb:90:83:7b:2d:d4:f5:c6:bf:5c:fe:b7:90:72:46:
de:fb:dd:4b:9a:0a:de:fc:38:c9:01:92:96:6c:23:74:28:d2:
76:db:3e:cc:41:e8:74:0f:b6:09:ee:4f:4a:0d:55:2e:28:7a:
e4:74:e8:50:6f:b5:63:55:08:03:67:dc:01:fc:38:98:02:3f:
cc:77:9d:39:92:a9:1d:71:7a:5d:1d:7f:13:eb:bc:48:4a:60:
6b:f2:20:94:b5:df:15:78:1e:cd:37:d0:f5:09:81:d4:4f:de:
60:d4:d1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:13 2023 by rpki-client on console-fra.rpki-client.org