Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/5jEr2grYK86mg9u8lnYF_ksf0MA.roa
File: 5jEr2grYK86mg9u8lnYF_ksf0MA.roa (raw, json)
Hash identifier: nMQNEX9hPYaUiBPB3raDaPlkW7tZYtwEe0cS3XVDTeU=
Subject key identifier: E6:31:2B:DA:0A:D8:2B:CE:A6:83:DB:BC:96:76:05:FE:4B:1F:D0:C0
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 10C5162B
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/5jEr2grYK86mg9u8lnYF_ksf0MA.roa
Signing time: Sat 01 Jan 2022 13:02:22 +0000
ROA not before: Sat 01 Jan 2022 13:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203261
IP address blocks: 82.160.149.0/24 maxlen: 24
82.160.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281351723 (0x10c5162b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 13:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6312bda0ad82bcea683dbbc967605fe4b1fd0c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:08:99:b5:e6:e5:9e:10:c5:1a:16:0f:66:3b:
85:86:62:fc:01:43:3f:17:d2:99:d4:45:65:71:e8:
0b:0b:e2:bb:e2:aa:a2:84:05:3d:53:27:5e:f1:55:
b7:60:18:8c:05:bd:df:a4:53:d4:54:54:a2:e0:b2:
dc:23:e5:93:0e:70:8a:8b:4c:70:77:2e:c5:1b:4d:
a3:4d:1f:2e:0b:94:12:af:89:a0:3b:8c:0e:28:b8:
73:af:4a:2f:8a:4f:b5:f6:a6:c1:83:53:ae:b7:38:
3b:b4:d7:4e:6a:b3:f1:95:dc:c2:b7:1f:c7:67:e6:
94:32:e5:3a:0e:b4:64:ee:f2:fa:f2:8e:7f:3a:42:
4c:90:5e:22:8a:c5:56:d9:2a:d3:67:16:a7:bc:ef:
48:fa:c3:25:17:68:de:b8:7d:53:97:19:6c:65:bf:
3c:3a:0c:e4:8d:ae:04:1e:19:61:d3:21:1f:1d:38:
09:22:6d:3e:45:ee:4a:88:9f:9b:fc:5c:c4:6b:73:
6b:9d:19:e8:e3:e1:53:3e:69:19:7e:7e:d2:3e:e6:
79:f8:72:b9:67:62:67:3c:ec:42:4a:34:52:99:fb:
3a:4b:fc:a8:37:f2:d3:74:95:3b:5e:56:29:96:b4:
db:b7:fb:2e:b4:ea:6b:c4:2a:48:cc:eb:a6:c8:ed:
1f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:31:2B:DA:0A:D8:2B:CE:A6:83:DB:BC:96:76:05:FE:4B:1F:D0:C0
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/5jEr2grYK86mg9u8lnYF_ksf0MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.160.149.0-82.160.150.255
Signature Algorithm: sha256WithRSAEncryption
1c:f8:a6:9f:95:28:ed:c0:9b:cb:ce:c9:9e:9f:38:d0:65:59:
9f:b7:3c:2f:2f:99:47:f8:0c:59:ce:e7:76:99:77:9e:6a:ec:
a7:2c:3f:c1:8f:c5:08:a3:2f:61:1f:a4:7d:2e:b9:e4:f1:0f:
13:a3:2a:b6:1d:97:7c:e0:3e:0d:29:cc:49:47:57:f3:8d:96:
8c:12:35:bd:0c:e1:44:f1:74:fa:19:8c:f1:35:a5:bf:b5:e6:
fc:78:d3:dd:15:9d:c4:f5:d7:f2:5e:47:74:68:46:de:03:15:
3e:38:be:2a:25:4d:5a:22:da:26:d0:4c:f9:b3:f7:d3:7e:53:
8b:bc:9b:38:76:4c:0d:70:35:ad:63:35:66:9b:b8:66:52:06:
29:e2:a7:18:93:0f:e9:a8:98:80:ba:17:ba:0e:16:f0:9b:07:
49:b8:eb:b5:a0:da:f1:94:50:00:2d:58:70:bf:e5:6a:51:e7:
a8:e8:0f:0c:74:32:55:d7:ac:a5:5f:1f:0e:12:9a:83:49:56:
17:5a:0c:aa:40:00:b8:61:df:08:80:fe:44:be:d5:4c:2a:6f:
ba:e5:8a:03:89:ae:6a:11:92:ca:74:6e:0d:0a:59:8c:64:b1:
67:37:57:f6:46:38:91:77:78:ff:2d:85:71:3b:91:77:db:bd:
b5:4e:c5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:56 2023 by rpki-client on console-ams.rpki-client.org