Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/c55be7-fe64-4e73-a063-1b0ef44f7884/1/S6Q6MElMsaFIj1pbnKsbZK_OosM.roa
File: S6Q6MElMsaFIj1pbnKsbZK_OosM.roa (raw, json)
Hash identifier: nrnXenRVko1DbYJyn/DhcEySqI6LZRd0vBLNSZd1r/U=
Subject key identifier: 4B:A4:3A:30:49:4C:B1:A1:48:8F:5A:5B:9C:AB:1B:64:AF:CE:A2:C3
Certificate issuer: /CN=b3c856e956c4addb61598f3c2489f2bdf6ed1d18
Certificate serial: 10772CBB
Authority key identifier: B3:C8:56:E9:56:C4:AD:DB:61:59:8F:3C:24:89:F2:BD:F6:ED:1D:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8hW6VbErdthWY88JInyvfbtHRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/c55be7-fe64-4e73-a063-1b0ef44f7884/1/S6Q6MElMsaFIj1pbnKsbZK_OosM.roa
Signing time: Sat 01 Jan 2022 14:55:07 +0000
ROA not before: Sat 01 Jan 2022 14:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41289
IP address blocks: 141.17.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276245691 (0x10772cbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c856e956c4addb61598f3c2489f2bdf6ed1d18
Validity
Not Before: Jan 1 14:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ba43a30494cb1a1488f5a5b9cab1b64afcea2c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:fc:e0:d8:b7:38:4d:1a:36:30:67:eb:24:4b:
c8:32:b6:1b:8b:5f:44:93:7a:81:ef:9b:89:88:99:
a9:37:8e:6a:6d:2b:b4:23:17:bb:77:2a:eb:65:c2:
b1:d6:12:29:9e:5b:62:a5:48:1b:1b:ec:bb:78:c7:
72:42:55:41:07:30:44:ef:31:39:3a:25:66:d8:ea:
2c:1d:39:83:fe:08:58:b4:e2:44:be:0f:c2:8e:a3:
c6:bc:c5:b0:52:95:37:68:82:50:57:2e:1c:35:00:
c7:27:34:fb:61:3f:65:79:69:4c:a7:e3:ec:f9:f8:
be:f6:a4:48:eb:98:db:e1:05:38:61:4f:59:39:73:
fc:5c:db:95:6e:f1:c5:06:5d:af:f7:c8:a5:84:d8:
7b:53:b9:ca:d0:d6:e7:ae:78:92:41:97:71:17:55:
57:a8:57:82:f7:d7:e5:8f:84:a4:6c:8e:78:1d:77:
2c:1b:4f:2f:43:a0:aa:d0:6c:9c:cb:35:84:b6:5d:
d9:32:33:94:8d:1c:85:2e:ec:b8:96:5c:59:7a:95:
d8:d8:d4:55:58:68:34:ad:3c:33:29:4a:0f:79:d8:
f8:cd:b4:a3:79:a1:e0:09:29:86:84:44:37:d6:53:
9d:05:7d:8b:d4:89:6a:9e:b5:b8:72:fa:7e:44:6a:
75:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A4:3A:30:49:4C:B1:A1:48:8F:5A:5B:9C:AB:1B:64:AF:CE:A2:C3
X509v3 Authority Key Identifier:
keyid:B3:C8:56:E9:56:C4:AD:DB:61:59:8F:3C:24:89:F2:BD:F6:ED:1D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8hW6VbErdthWY88JInyvfbtHRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c55be7-fe64-4e73-a063-1b0ef44f7884/1/S6Q6MElMsaFIj1pbnKsbZK_OosM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c55be7-fe64-4e73-a063-1b0ef44f7884/1/s8hW6VbErdthWY88JInyvfbtHRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.17.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a3:a0:5d:9a:57:b6:71:25:0b:82:56:8b:5e:26:3f:4d:65:49:
f5:30:16:43:7b:a5:e4:f6:90:c5:66:b0:18:d3:a3:8f:00:12:
ca:63:86:5f:07:87:04:5d:2d:48:93:21:70:4d:63:58:fb:dc:
d2:f5:db:99:d9:96:8c:c0:cb:f8:b8:75:b6:27:f5:91:49:16:
6d:3d:2c:b4:a1:d1:76:f6:44:d1:7c:f5:aa:0c:55:fc:41:cb:
cb:17:a3:bc:f0:2f:c9:0d:37:d3:0c:66:0f:6a:09:9b:d4:a7:
04:52:47:81:4d:7c:53:95:ab:2e:35:24:c9:41:db:bf:ae:bf:
3b:b6:30:6e:ce:54:c6:70:5c:78:c2:cb:77:d5:57:c9:a1:c1:
ce:a7:41:d4:80:b5:2f:95:fc:f6:12:ce:59:0c:4e:83:98:9e:
77:8f:bf:e7:26:eb:82:d2:0a:2f:eb:6e:9a:66:fe:a2:a7:21:
d0:9c:c5:c7:fb:a0:cd:09:54:1c:38:9f:d9:f0:e1:83:84:57:
11:4a:ef:74:be:63:80:9d:1d:18:e4:9e:9b:3e:c6:47:a1:99:
01:15:56:4c:4b:d3:da:f5:d7:5f:23:c7:bd:8c:32:c5:a1:ed:
9a:d3:db:46:57:41:f4:ac:79:b1:38:2a:af:f2:b7:ba:8d:2d:
0e:90:87:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:38 2023 by rpki-client on console-fra.rpki-client.org