Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/aUd7Abe84LivLo8kmvLRsQCD3fU.roa
File: aUd7Abe84LivLo8kmvLRsQCD3fU.roa (raw, json)
Hash identifier: QBj1UDCHW77b/T9M6ALPuTyuRaDz4iuGi9hk8TEAaQs=
Subject key identifier: 69:47:7B:01:B7:BC:E0:B8:AF:2E:8F:24:9A:F2:D1:B1:00:83:DD:F5
Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Certificate serial: 024AC9B2
Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/aUd7Abe84LivLo8kmvLRsQCD3fU.roa
Signing time: Sat 01 Jan 2022 16:02:11 +0000
ROA not before: Sat 01 Jan 2022 16:02:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212212
IP address blocks: 151.248.70.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38455730 (0x24ac9b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Validity
Not Before: Jan 1 16:02:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69477b01b7bce0b8af2e8f249af2d1b10083ddf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:64:8b:35:a0:48:24:cc:e3:e8:1d:71:08:1c:
10:ac:01:b5:c4:1c:96:fc:ee:5b:94:ce:1c:bb:f6:
89:a7:8e:b7:f3:6d:f9:45:c2:1f:48:20:44:8c:93:
48:19:d3:a1:ea:ce:26:65:13:7c:18:d7:a8:07:3e:
eb:61:d1:3b:06:9f:5f:8d:fb:3c:dc:d2:05:08:52:
83:29:29:11:94:e3:1f:71:0c:81:48:5c:e8:01:99:
d2:12:3f:a5:d9:ee:dc:9d:cc:bf:4d:fa:c1:a1:f3:
39:77:06:7a:54:aa:17:e8:8d:c8:26:32:b4:ce:4e:
5c:7e:70:89:a8:21:75:15:09:76:3d:24:52:29:07:
b9:4c:12:c6:d7:94:41:da:cc:5e:b2:e0:0d:90:17:
5c:aa:7e:b9:be:b8:dd:14:a7:df:f5:20:35:66:dd:
0c:67:72:87:e3:77:8b:06:b7:a3:09:dd:bf:53:df:
07:d0:4c:04:73:23:6f:b4:ed:2f:2d:4d:66:5f:63:
46:e6:2e:30:a3:b1:d3:f4:f0:c8:6d:f8:83:01:70:
b5:07:15:57:ba:12:32:0d:95:30:cc:75:a9:bf:42:
b4:02:82:54:d0:92:b7:13:c5:bf:a4:7d:da:6c:bb:
95:31:9d:7b:9c:29:80:1d:74:55:72:77:91:c2:ac:
da:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:47:7B:01:B7:BC:E0:B8:AF:2E:8F:24:9A:F2:D1:B1:00:83:DD:F5
X509v3 Authority Key Identifier:
keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/aUd7Abe84LivLo8kmvLRsQCD3fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.248.70.0/23
Signature Algorithm: sha256WithRSAEncryption
39:b7:ec:8c:da:bd:d8:d4:28:41:65:d7:42:a0:df:01:ca:1f:
55:ba:a9:8c:c6:dd:81:ac:da:61:4e:4c:d5:08:7d:2a:df:25:
7d:07:87:8d:7b:39:28:dd:94:dd:df:bc:64:a5:2f:2a:f8:9c:
41:b5:30:12:d1:d7:80:6f:92:d2:a4:24:93:b0:69:7a:c9:49:
1d:73:66:8f:e3:c4:d5:f4:c2:07:d5:c3:45:aa:86:01:fd:28:
86:87:bf:d3:07:bf:f7:02:42:2a:b8:4f:74:14:f5:e7:3e:d6:
4b:ae:02:4c:e2:55:61:27:e2:89:05:ca:f7:9c:fe:c7:d4:ab:
e8:19:a0:e5:3c:b6:70:9f:03:7d:b0:9d:09:1f:1d:c9:6c:5b:
12:f7:f5:27:4b:64:07:20:14:b2:67:23:b8:f3:6b:8f:75:d7:
7f:f5:cf:18:7d:0d:9b:30:26:c3:d2:ea:c3:8d:eb:e9:e6:0e:
4d:ac:94:07:d0:a1:b6:80:c4:83:c8:4f:6a:42:a1:6f:35:95:
a8:46:c4:d0:22:c7:2c:17:fa:22:ef:fd:db:16:17:ab:43:97:
f3:3d:bc:c2:6a:96:4f:53:0f:cd:5a:8f:7f:97:96:8f:46:c8:
2d:cc:7e:b6:2c:57:7a:9e:c4:41:d7:56:2f:6b:6e:70:ca:98:
1c:49:3b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:29 2024 by rpki-client on console-ams.rpki-client.org