Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/0NiySyzFW1bGNGYHzi2AdeLXMzk.roa
File: 0NiySyzFW1bGNGYHzi2AdeLXMzk.roa (raw, json)
Hash identifier: A+qfZdirV5zlTow2/E+I4rps6sGxeAqS5ADtUb3gUfg=
Subject key identifier: D0:D8:B2:4B:2C:C5:5B:56:C6:34:66:07:CE:2D:80:75:E2:D7:33:39
Certificate issuer: /CN=13ea78b28f054f72f5226ae3ec454980ed2a10c9
Certificate serial: 03B3D41A
Authority key identifier: 13:EA:78:B2:8F:05:4F:72:F5:22:6A:E3:EC:45:49:80:ED:2A:10:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-p4so8FT3L1Imrj7EVJgO0qEMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/0NiySyzFW1bGNGYHzi2AdeLXMzk.roa
Signing time: Sat 01 Jan 2022 14:58:47 +0000
ROA not before: Sat 01 Jan 2022 14:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8678
IP address blocks: 161.9.152.0/21 maxlen: 21
161.9.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62116890 (0x3b3d41a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ea78b28f054f72f5226ae3ec454980ed2a10c9
Validity
Not Before: Jan 1 14:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0d8b24b2cc55b56c6346607ce2d8075e2d73339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a6:69:3a:73:d3:d2:29:c7:c2:3c:80:87:e9:
67:09:ac:69:19:b3:fb:35:e5:68:8c:c5:98:5a:ef:
e3:10:3b:9e:07:57:d4:19:fa:98:57:ca:d8:70:23:
8e:83:48:c9:64:c2:2a:32:6d:ac:d4:f1:f1:9c:03:
63:65:22:d7:29:35:77:0a:8d:b4:10:a8:f6:09:7b:
0f:af:a1:15:ac:d1:02:d9:5f:46:81:ab:d9:7c:6b:
3c:ee:ee:68:0f:b7:0e:f7:69:f7:64:4a:5a:bd:11:
72:c4:62:f0:95:54:26:7a:73:d6:57:1b:e7:bd:14:
6f:43:49:2a:a3:5d:f2:e5:95:e1:17:f9:19:37:a7:
dc:10:e6:ec:3d:0c:f7:21:89:f0:3b:63:72:90:67:
1e:ba:2f:63:ab:52:79:1d:75:ff:79:23:cd:9f:39:
53:a2:76:8d:21:ba:8c:92:6f:86:3c:e4:54:81:fc:
fd:8c:ed:82:84:67:62:26:98:0b:39:74:f3:cc:5a:
32:b6:f4:a1:e0:9f:74:6c:5c:e1:77:00:6c:66:fd:
2a:47:2d:f5:ad:6e:61:69:a8:61:c2:ce:fa:c4:a2:
83:b5:d2:83:b3:ef:21:ed:a6:80:a9:29:34:02:25:
4e:d5:61:b4:ee:d1:b2:d5:01:14:67:ec:20:c2:a7:
33:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D8:B2:4B:2C:C5:5B:56:C6:34:66:07:CE:2D:80:75:E2:D7:33:39
X509v3 Authority Key Identifier:
keyid:13:EA:78:B2:8F:05:4F:72:F5:22:6A:E3:EC:45:49:80:ED:2A:10:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-p4so8FT3L1Imrj7EVJgO0qEMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/0NiySyzFW1bGNGYHzi2AdeLXMzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/E-p4so8FT3L1Imrj7EVJgO0qEMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.9.152.0/21
161.9.180.0/22
Signature Algorithm: sha256WithRSAEncryption
86:62:29:a1:95:3f:1c:37:d4:43:89:cb:c0:3f:f5:2f:f9:37:
de:bc:48:50:3b:77:34:53:12:85:f8:92:10:0c:9c:cd:44:b2:
33:21:77:58:ae:2f:bf:1e:10:0d:32:51:fa:e6:1d:a0:b8:f4:
79:e8:fa:aa:85:b3:34:9e:5d:0f:7f:63:ae:c7:90:06:36:9c:
88:38:85:3a:3f:9c:3d:94:43:55:8e:f3:4c:a3:96:b5:ad:88:
b8:cb:d4:81:dd:e6:71:03:fc:3c:1a:0a:16:ca:9b:f9:08:fe:
5f:f8:60:a5:c5:e0:c2:70:3e:80:7a:de:8f:36:56:db:4d:90:
46:7f:6f:7c:01:dd:39:5a:ac:52:4b:23:08:e1:79:10:e2:44:
25:22:74:b0:6c:7f:fc:ea:9f:b9:f5:68:23:53:b6:ad:ee:da:
d0:f1:a0:6b:cf:51:2c:6e:17:c0:de:f6:c0:81:f7:29:86:66:
df:5b:95:cb:ba:df:40:2e:f2:28:59:ba:c6:a5:85:8a:67:69:
e1:da:21:c1:b7:e4:8b:6a:ee:cd:e5:29:9f:8d:33:dc:0e:10:
e3:c0:f3:dc:d8:83:ff:3b:b4:0a:a5:c0:2e:b5:ca:08:bb:4a:
5b:66:ab:34:ce:95:79:4f:ad:eb:6f:fa:29:1a:8e:5a:2c:88:
d6:dc:f0:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:14 2024 by rpki-client on console-ams.rpki-client.org