Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/157SVIgX2uWS_DLmCOroE5jokHw.roa
File: 157SVIgX2uWS_DLmCOroE5jokHw.roa (raw, json)
Hash identifier: pXlcNIoWXwXTwOkHv/TzfX3TVWXPkDGRtIJGb8ws7+g=
Subject key identifier: D7:9E:D2:54:88:17:DA:E5:92:FC:32:E6:08:EA:E8:13:98:E8:90:7C
Certificate issuer: /CN=1b68656126198373d07886bf4ab8fb06b9006780
Certificate serial: 083A8C5C
Authority key identifier: 1B:68:65:61:26:19:83:73:D0:78:86:BF:4A:B8:FB:06:B9:00:67:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/157SVIgX2uWS_DLmCOroE5jokHw.roa
Signing time: Mon 31 Jan 2022 17:32:47 +0000
ROA not before: Mon 31 Jan 2022 17:32:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59566
IP address blocks: 2a0e:1bc1:2000::/35 maxlen: 35
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138054748 (0x83a8c5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b68656126198373d07886bf4ab8fb06b9006780
Validity
Not Before: Jan 31 17:32:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d79ed2548817dae592fc32e608eae81398e8907c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bd:75:88:c3:08:e1:2b:26:f5:98:82:8a:10:
c7:f8:75:c0:7c:8f:f5:7c:4a:62:44:13:e1:7c:3d:
a0:2a:b2:8c:46:76:16:96:6e:22:31:b8:9a:0d:81:
27:29:6e:1d:f1:00:53:6c:9a:92:ad:7b:b4:1b:92:
55:a6:38:89:29:d8:66:9c:ec:e8:b4:eb:b1:18:9d:
df:cf:53:6b:92:83:9d:e2:22:b6:4d:3d:30:d5:41:
9c:72:dc:0c:2a:44:b2:5a:9d:99:e9:bf:c3:ae:e9:
26:a7:b4:cf:0e:6a:a8:77:89:18:1a:f0:cd:0b:9e:
9c:6c:ff:b2:e8:a9:46:dd:b0:eb:38:80:dd:90:a0:
24:e7:09:12:6a:26:d9:a5:9f:da:92:90:fc:23:07:
b3:ba:26:04:74:e0:bc:c7:35:1d:b0:b5:ea:f7:86:
54:1d:ee:ae:eb:c0:9b:f8:a9:10:a7:51:0c:91:3b:
95:ec:dd:d5:25:1f:cb:52:bb:b7:ac:55:a4:f7:62:
a7:63:f0:ad:88:75:18:2e:75:e2:fb:c7:ab:02:89:
9b:5c:ae:5f:13:70:08:64:eb:d4:8e:c9:3f:43:b5:
6f:1b:96:9d:10:58:03:c1:9a:23:28:91:1a:b8:99:
f1:66:90:b5:64:06:e8:49:c4:13:32:3b:6d:de:7b:
04:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9E:D2:54:88:17:DA:E5:92:FC:32:E6:08:EA:E8:13:98:E8:90:7C
X509v3 Authority Key Identifier:
keyid:1B:68:65:61:26:19:83:73:D0:78:86:BF:4A:B8:FB:06:B9:00:67:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/157SVIgX2uWS_DLmCOroE5jokHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1bc1:2000::/35
Signature Algorithm: sha256WithRSAEncryption
41:8d:e5:0b:db:24:70:59:8c:aa:54:d4:44:a8:e7:e5:e9:3b:
e7:27:e9:86:71:95:87:73:a7:0a:d2:62:c3:1d:cd:fa:db:f1:
4f:8c:9d:31:f4:67:da:59:37:a4:52:d4:cd:a3:8d:4f:f6:b5:
6e:e1:6c:82:9e:f5:4d:b6:78:6c:b7:bb:d4:c5:c0:2f:2f:81:
ea:3f:32:e8:48:9d:37:a3:f6:15:51:8f:b5:bf:5f:39:33:66:
0b:b0:0c:b6:3b:da:5d:ab:96:6c:66:8a:7f:fa:35:d7:82:51:
25:bf:51:fa:34:25:27:c8:19:71:4d:e9:b0:b1:81:92:20:b8:
b1:10:86:fe:a9:af:18:87:7d:65:5d:42:d0:8d:b7:97:87:ff:
66:8a:92:5e:37:bd:66:e0:14:27:46:a6:1f:07:df:30:2f:55:
b3:1d:2c:8a:60:a8:d8:d2:63:96:1a:1e:83:42:29:23:28:04:
a2:f8:9d:c4:8b:67:20:f0:c3:f2:62:3f:58:66:8f:e2:36:81:
e3:8e:20:0a:4f:d1:12:f5:81:1f:47:79:45:47:6c:ba:16:0a:
21:04:62:2d:c9:34:51:a7:88:22:a9:f0:05:88:8b:de:a3:87:
5b:f8:f6:0d:a7:20:ae:02:40:f9:e2:3d:3f:bf:e2:24:72:4b:
d5:53:a1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:17 2023 by rpki-client on console-fra.rpki-client.org