Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/aLQsRvoiLzwvJxRxNSs8MSI1-vA.roa
File: aLQsRvoiLzwvJxRxNSs8MSI1-vA.roa (raw, json)
Hash identifier: hu35HfDhdVAxZGiGsjtkrJeMXYM1dbm3dLezy7+6dr8=
Subject key identifier: 68:B4:2C:46:FA:22:2F:3C:2F:27:14:71:35:2B:3C:31:22:35:FA:F0
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 3A7738B3
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/aLQsRvoiLzwvJxRxNSs8MSI1-vA.roa
Signing time: Sat 01 Jan 2022 04:51:57 +0000
ROA not before: Sat 01 Jan 2022 04:51:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51393
IP address blocks: 195.136.2.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 980891827 (0x3a7738b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 04:51:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68b42c46fa222f3c2f271471352b3c312235faf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a7:27:a2:d3:50:52:68:0c:bd:39:07:c0:0f:
97:3f:7f:7b:1a:bb:eb:11:1b:69:3b:c1:6e:20:b9:
d4:70:e8:94:71:2b:1a:fc:e3:e5:f8:9d:f2:a8:b7:
18:3d:ee:05:ee:40:a3:69:e5:a6:b2:2c:13:fa:4b:
64:89:64:98:f8:ba:c5:c9:69:c6:6f:fe:be:15:df:
6d:1e:25:5f:ad:ab:a0:1a:bd:50:42:fe:f3:f2:0c:
43:c8:4b:95:e4:ca:47:e1:10:75:3b:e9:51:15:85:
31:9b:2e:c3:3d:25:40:90:b4:f8:34:35:3b:c3:8c:
1d:16:f5:de:de:74:d2:9b:05:cf:9f:0e:d1:1f:ce:
58:a9:63:73:da:02:e4:d3:b5:24:76:a2:26:d3:9f:
5f:45:53:a4:a6:aa:8e:a9:89:93:12:91:22:a9:76:
7e:59:c3:66:3f:2c:f4:37:93:4e:04:dd:d6:09:03:
9b:1c:09:21:61:9c:40:e9:98:56:7f:f5:03:1b:a8:
ad:6b:c8:3c:79:22:4a:b5:76:e5:09:21:ef:48:ad:
12:4b:64:18:a5:1e:57:c7:a3:4c:ce:ea:00:88:1f:
a6:5c:3d:7b:42:12:fc:54:b6:7a:df:8d:35:42:c2:
1a:4d:1e:62:08:26:03:71:b0:37:ed:04:65:f7:43:
2e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B4:2C:46:FA:22:2F:3C:2F:27:14:71:35:2B:3C:31:22:35:FA:F0
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/aLQsRvoiLzwvJxRxNSs8MSI1-vA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.2.0/23
Signature Algorithm: sha256WithRSAEncryption
78:b7:ff:aa:0a:7d:8c:12:d0:03:04:8a:e7:c7:cc:aa:fa:d9:
2b:d6:09:54:15:f9:55:d1:66:e9:44:bb:12:b1:6a:81:87:4a:
51:72:59:f1:ae:81:7e:78:5f:1c:f3:f9:a8:a9:eb:d1:99:52:
a8:7a:5a:cf:8b:69:0a:62:67:1c:f4:4d:1c:84:a9:ba:f1:62:
26:7e:d7:74:5e:9e:48:3a:7a:19:cb:de:c0:05:92:94:8d:00:
13:58:40:1e:72:03:8a:4e:83:62:c5:7e:03:db:ae:a4:77:6a:
7f:fb:e2:49:2e:44:ad:a2:9d:11:f3:d7:b0:ce:35:34:f3:23:
a7:cb:81:ea:d2:9a:d0:a0:e8:97:6f:5b:c9:96:0b:03:01:89:
8b:7d:bb:bb:62:a9:e3:3b:ae:f7:42:3d:1c:90:ae:06:db:7b:
4a:de:dd:70:33:48:32:9d:6a:1e:a3:0f:37:9e:e5:d3:5c:29:
95:e7:00:5e:c5:9b:55:83:e2:c1:58:47:b2:a5:13:d8:ec:d3:
0f:c9:ba:f9:c9:51:41:3c:98:8e:17:90:e7:2b:7e:da:ba:4b:
f7:30:8c:2d:3f:12:ba:91:fc:0f:75:ab:c7:c0:3e:b8:ae:ca:
7c:1e:f0:fc:93:60:6d:8b:b2:e6:17:3c:65:ff:50:11:60:d7:
76:9f:42:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:02 2023 by rpki-client on console-ams.rpki-client.org