Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/3ba7cd-e815-45ce-92e1-202c51720ab7/1/W1e8NKqj50VcoLDLWtf_ZSCal4A.roa
File: W1e8NKqj50VcoLDLWtf_ZSCal4A.roa (raw, json)
Hash identifier: lIEoOUvSImOSJpNSlNB/uQqkuqfy732iDec0kMTy9Ec=
Subject key identifier: 5B:57:BC:34:AA:A3:E7:45:5C:A0:B0:CB:5A:D7:FF:65:20:9A:97:80
Certificate issuer: /CN=e2c6816e0a3a2f616c3aa77a36b4caf7a9224034
Certificate serial: 103DE522
Authority key identifier: E2:C6:81:6E:0A:3A:2F:61:6C:3A:A7:7A:36:B4:CA:F7:A9:22:40:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4saBbgo6L2FsOqd6NrTK96kiQDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/3ba7cd-e815-45ce-92e1-202c51720ab7/1/W1e8NKqj50VcoLDLWtf_ZSCal4A.roa
Signing time: Sat 01 Jan 2022 12:04:46 +0000
ROA not before: Sat 01 Jan 2022 12:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 134.102.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272491810 (0x103de522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c6816e0a3a2f616c3aa77a36b4caf7a9224034
Validity
Not Before: Jan 1 12:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b57bc34aaa3e7455ca0b0cb5ad7ff65209a9780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a3:ce:14:53:f2:d8:50:45:3b:1e:f4:fb:06:
10:60:8e:1d:59:fc:66:cd:7e:29:4a:b6:b5:70:fe:
6b:82:fb:54:a3:c7:89:0f:68:49:10:0e:68:58:43:
78:99:f4:da:58:c4:b9:8b:3d:dc:83:d2:37:b3:d4:
46:ee:8e:62:be:09:80:5c:71:bf:74:01:eb:7d:26:
f0:3a:12:42:b0:1f:10:b9:e6:1e:38:b5:07:c1:9a:
47:ca:6a:48:be:58:63:2d:f4:7e:77:93:b2:05:43:
94:d0:ac:31:77:55:1f:5b:f8:80:3f:9d:7b:3c:9e:
d9:7e:e5:11:a4:32:af:26:d0:ee:ce:64:5c:94:81:
13:95:f5:ed:de:4d:c4:4a:52:bb:ce:d2:66:a2:e5:
53:84:ad:90:a6:d8:74:72:a6:5d:5d:56:b0:ad:97:
c2:fc:11:9c:bb:40:c6:67:36:f8:f3:56:80:6d:6e:
af:fc:36:09:02:3b:2c:7c:8c:0d:1c:21:d7:d6:02:
77:07:ed:21:b1:9c:7e:1a:04:bc:28:8e:92:97:26:
74:aa:f5:cd:4a:b4:c6:29:17:2d:24:83:31:d4:e7:
34:47:a9:f1:74:29:6d:33:bb:eb:a4:c3:3e:6e:88:
df:96:be:94:f6:d9:0b:e3:1e:4b:3f:68:d3:fc:b1:
f3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:57:BC:34:AA:A3:E7:45:5C:A0:B0:CB:5A:D7:FF:65:20:9A:97:80
X509v3 Authority Key Identifier:
keyid:E2:C6:81:6E:0A:3A:2F:61:6C:3A:A7:7A:36:B4:CA:F7:A9:22:40:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4saBbgo6L2FsOqd6NrTK96kiQDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/3ba7cd-e815-45ce-92e1-202c51720ab7/1/W1e8NKqj50VcoLDLWtf_ZSCal4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/3ba7cd-e815-45ce-92e1-202c51720ab7/1/4saBbgo6L2FsOqd6NrTK96kiQDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.102.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:61:96:eb:b2:95:e8:46:4d:f2:78:ed:f5:16:dd:26:62:40:
d1:31:f7:62:4e:0b:3e:dd:05:f0:04:8e:bb:08:6c:16:62:ad:
20:1b:9b:43:d0:bf:69:18:64:e1:16:0f:4b:8a:52:e1:94:6c:
44:a2:1b:87:f4:82:58:58:80:a4:12:7a:62:22:58:62:79:93:
a1:9e:7d:f9:db:e0:25:90:7b:23:dc:60:dc:0e:d5:80:79:3a:
0a:4e:9c:be:24:0d:2f:74:11:a8:7e:1d:c3:40:ea:51:c6:ff:
ae:95:bf:d6:7a:ed:a3:50:b1:f9:a3:56:a6:b7:1d:6d:51:00:
2b:74:75:c7:0f:fe:b6:12:fa:48:e6:86:1a:95:32:24:75:35:
9f:38:c7:cd:2e:69:a2:e9:87:83:fb:84:00:47:a2:6d:05:17:
b1:32:70:cb:a1:25:49:e8:c4:0b:9e:b4:f2:81:ce:77:f9:c2:
64:5c:2e:43:36:4f:a5:97:3a:6c:09:83:af:67:16:65:5d:87:
32:5d:0c:47:9d:de:5b:79:93:cd:ea:70:d7:45:2d:fd:75:0e:
4d:b3:b5:61:35:07:3a:5e:42:fb:14:2a:c6:1b:40:19:e8:ce:
23:18:c0:64:71:ab:f0:32:1c:67:cb:5a:e2:3f:c3:80:68:c2:
f0:97:76:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:37 2023 by rpki-client on console-ams.rpki-client.org