Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/USNpjsQ-oI1su3zUEed_luwW_aI.roa
File: USNpjsQ-oI1su3zUEed_luwW_aI.roa (raw, json)
Hash identifier: IauxUiAezs8e/gPEVG5m6V+lk+YfywAZS5sd+WgWgM8=
Subject key identifier: 51:23:69:8E:C4:3E:A0:8D:6C:BB:7C:D4:11:E7:7F:96:EC:16:FD:A2
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A8C8F54
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/USNpjsQ-oI1su3zUEed_luwW_aI.roa
Signing time: Sat 01 Jan 2022 04:52:10 +0000
ROA not before: Sat 01 Jan 2022 04:52:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203389
IP address blocks: 82.177.184.0/22 maxlen: 22
88.220.62.0/23 maxlen: 23
195.136.124.0/22 maxlen: 22
82.177.210.0/23 maxlen: 23
88.220.96.0/23 maxlen: 23
88.220.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 982290260 (0x3a8c8f54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:52:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5123698ec43ea08d6cbb7cd411e77f96ec16fda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:04:d2:b3:33:44:52:35:8f:a5:cd:a6:15:15:
94:21:e8:2b:88:ab:eb:80:b5:24:f3:2e:e2:2e:3a:
82:08:73:d2:c6:25:f2:43:d0:b8:40:d7:16:49:4c:
ff:53:7d:0c:37:03:e6:79:bb:e1:be:1e:4f:a0:86:
47:09:c0:20:eb:af:e7:c0:2c:3b:50:b1:23:fa:c3:
df:8a:b3:63:7a:60:fe:70:71:94:91:a4:01:f5:24:
ee:fe:f8:a6:c3:12:7e:cd:f9:7a:1d:22:c6:da:39:
d9:b2:af:62:de:8c:4d:01:75:7a:22:b6:86:b0:03:
16:e4:0a:3b:63:02:2f:8b:e7:0c:56:03:71:d2:bf:
f3:4a:85:8d:4c:03:d4:6f:c2:72:32:38:59:63:66:
45:03:29:6e:af:47:8d:45:0e:56:7c:ac:e2:9a:c8:
f9:06:56:83:e4:0c:58:e4:ee:2f:4a:ac:4c:89:af:
74:20:83:a4:72:72:cd:73:f4:83:23:1f:98:43:62:
5e:23:8c:3b:83:88:0f:da:2f:6a:9e:a8:28:e4:47:
d1:19:91:b5:92:3e:83:83:bd:a8:ce:d4:a6:26:d2:
a7:a6:25:10:bc:74:0a:18:ce:e9:55:cd:d6:17:e0:
80:94:d3:4d:ad:55:d9:ba:7d:0e:45:16:a9:bc:10:
bc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:23:69:8E:C4:3E:A0:8D:6C:BB:7C:D4:11:E7:7F:96:EC:16:FD:A2
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/USNpjsQ-oI1su3zUEed_luwW_aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.184.0/22
82.177.210.0/23
88.220.62.0/23
88.220.96.0/23
88.220.100.0/22
195.136.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:3e:14:d1:7e:46:29:17:cf:6b:fc:07:4f:02:3f:fb:d3:c8:
b5:ae:cd:ae:7b:1a:73:87:e5:fb:90:16:7b:dc:12:b9:7d:0f:
8a:06:bb:cb:de:be:72:24:89:58:eb:ea:a8:0d:6c:b1:b7:5b:
1a:04:48:96:b1:b3:31:e3:92:92:bb:8c:88:d7:e5:a4:0b:49:
54:86:5b:11:39:fb:7a:70:52:d3:29:60:28:34:26:3d:cb:65:
7d:c0:fc:d4:e3:bf:04:9b:28:b2:6b:77:bf:39:93:7d:39:09:
e2:75:db:fb:da:b0:8c:1d:a6:cb:d5:5c:a7:62:a6:d9:fd:db:
b7:c7:44:5c:5f:5b:4d:0b:ef:13:61:ca:02:59:95:fc:3e:d9:
2a:4f:63:24:46:9b:29:94:d2:3d:ac:6e:2d:1d:d5:cb:5d:73:
d9:58:91:59:98:cb:ff:eb:6f:cb:11:0b:7b:07:0b:32:5b:40:
a0:e9:55:6d:14:f7:f5:14:f4:2e:1e:4d:95:29:20:aa:62:2d:
6e:2d:b2:32:a7:92:81:28:88:3f:09:97:84:65:93:66:05:09:
fc:b7:56:a9:53:21:99:8a:ea:a5:72:ba:8a:09:70:65:55:3f:
77:c2:d5:7a:08:d8:21:3d:46:cb:da:d5:35:ba:d0:d3:ae:87:
f8:7e:06:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org