Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/hWhRLE18nUXaHWcnMcVc0uaK0L8.roa
File: hWhRLE18nUXaHWcnMcVc0uaK0L8.roa (raw, json)
Hash identifier: QcHLrHBgtCro14tgRhNV4UWS64+68TOEhwmSmh2FcwY=
Subject key identifier: 85:68:51:2C:4D:7C:9D:45:DA:1D:67:27:31:C5:5C:D2:E6:8A:D0:BF
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 06441011
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/hWhRLE18nUXaHWcnMcVc0uaK0L8.roa
Signing time: Sat 01 Jan 2022 11:01:06 +0000
ROA not before: Sat 01 Jan 2022 11:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4862
IP address blocks: 57.72.0.0/24 maxlen: 24
57.72.0.0/15 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105123857 (0x6441011)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 1 11:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8568512c4d7c9d45da1d672731c55cd2e68ad0bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:40:77:fe:d3:89:74:89:46:84:56:55:5e:36:
0b:76:84:39:f7:70:23:9d:c4:02:95:9c:18:9d:3d:
85:f8:b9:7d:2b:fe:27:1f:a4:65:78:35:2d:ad:e3:
0a:c9:f4:9b:0b:0d:99:3d:96:af:6e:be:0a:fd:ae:
6c:3b:b2:50:26:0f:48:f2:9c:57:f8:59:1b:0a:65:
b8:cf:30:58:a0:88:11:79:fe:c8:b3:87:28:b5:9a:
a3:cf:a3:a3:d0:a1:48:2a:26:df:4f:4a:9e:26:cc:
09:20:c9:28:16:b7:40:71:c3:89:74:71:06:48:9a:
34:2e:48:a6:e1:f2:02:c7:c3:b8:0a:9c:93:1b:5f:
5d:7a:75:34:9e:7c:90:cc:98:c0:fe:e0:35:79:c9:
83:b4:bc:fd:f0:e2:d6:96:23:64:a1:c3:f7:56:40:
71:e7:3c:a5:c6:ab:9b:f2:e6:aa:f0:d4:b1:eb:57:
8b:a0:0a:e6:55:f8:0a:80:73:12:eb:5f:40:25:06:
88:35:81:b6:c8:51:e9:30:4f:f7:81:fe:78:7f:e3:
20:6c:4b:f5:bb:14:89:b8:7d:92:20:e2:e1:90:36:
51:fc:7a:9a:f9:c2:cd:68:0f:7c:b8:9d:1d:ed:7e:
bd:82:59:9b:a4:68:81:91:2e:2f:8f:29:ea:31:49:
12:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:68:51:2C:4D:7C:9D:45:DA:1D:67:27:31:C5:5C:D2:E6:8A:D0:BF
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/hWhRLE18nUXaHWcnMcVc0uaK0L8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.72.0.0/15
Signature Algorithm: sha256WithRSAEncryption
52:c8:5a:12:66:78:2c:85:8c:0c:d0:bf:a2:63:8b:0a:57:c3:
8c:6c:1a:85:02:59:a4:6b:98:f0:d6:d6:16:bd:35:8a:68:ca:
d4:17:bd:b4:a1:3e:c4:4f:8f:52:9c:4d:80:d8:ee:ab:10:4b:
a0:0e:35:fd:a7:da:b1:c1:ec:66:5a:79:ae:66:cf:39:9a:81:
fc:79:10:71:b5:e9:61:20:7d:cb:d7:82:1a:a0:cb:5a:c1:19:
30:98:c7:d7:7f:22:34:c2:10:81:b2:c7:0a:73:96:6c:65:58:
4b:36:0a:8b:56:0a:07:98:89:cd:2f:13:5c:75:fc:4d:a8:25:
57:50:44:22:17:15:6f:36:6c:db:05:ec:a6:45:43:fc:05:73:
66:6b:4a:1f:ac:4c:88:70:9b:da:ef:61:27:47:56:14:28:88:
78:be:c3:ac:00:67:0f:b2:d4:56:7a:e4:64:8a:13:62:f3:5f:
ec:3a:bf:fd:96:6c:66:08:14:54:6d:46:c8:ed:c9:5a:0b:22:
c2:d4:ef:32:cb:50:d0:64:84:b0:f8:70:c0:36:39:59:c8:ab:
d7:c0:5f:0f:6a:9a:0c:29:1e:01:29:d0:e5:99:15:87:e2:b1:
b2:58:8a:17:26:8f:ed:f2:14:08:ee:e2:68:05:72:ad:16:a6:
c7:6e:dd:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:35 2024 by rpki-client on console-ams.rpki-client.org