Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9fc14c-c366-46ff-aaf7-8949e751b219/1/l9OLFmzSYg8s_D-Pwm7ru5nXO-8.roa
File: l9OLFmzSYg8s_D-Pwm7ru5nXO-8.roa (raw, json)
Hash identifier: 3F/VPzQ0ZmEs3/hPR9wHJKPHmXKm/uJQ4dRse79wQmo=
Subject key identifier: 97:D3:8B:16:6C:D2:62:0F:2C:FC:3F:8F:C2:6E:EB:BB:99:D7:3B:EF
Certificate issuer: /CN=de19baa8c880a9459dc5f44d675dea4ef96dbdef
Certificate serial: 067C4C7A
Authority key identifier: DE:19:BA:A8:C8:80:A9:45:9D:C5:F4:4D:67:5D:EA:4E:F9:6D:BD:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hm6qMiAqUWdxfRNZ13qTvltve8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9fc14c-c366-46ff-aaf7-8949e751b219/1/l9OLFmzSYg8s_D-Pwm7ru5nXO-8.roa
Signing time: Sat 01 Jan 2022 05:52:09 +0000
ROA not before: Sat 01 Jan 2022 05:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 141.59.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108809338 (0x67c4c7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de19baa8c880a9459dc5f44d675dea4ef96dbdef
Validity
Not Before: Jan 1 05:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97d38b166cd2620f2cfc3f8fc26eebbb99d73bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5e:a1:a9:b2:c1:2b:59:22:95:48:1d:b1:21:
34:66:e6:6d:d4:24:f6:c1:76:98:02:67:4f:13:65:
23:19:8c:ff:9e:53:4d:14:d8:08:22:71:48:e1:5a:
6c:38:9e:3d:e8:9c:38:b8:8a:bf:60:3d:b2:a6:de:
c9:a6:08:a9:66:33:fb:a4:a4:3c:13:f0:48:c4:ce:
37:58:4a:6d:5c:73:32:21:e1:c5:cb:6d:ee:0f:1a:
78:ee:48:e9:f4:b2:32:7e:9c:84:f1:ba:09:af:a3:
cd:8d:41:56:99:db:40:78:f3:15:e8:6a:1d:9a:bb:
30:76:08:fc:b5:e1:75:6a:b9:2d:0c:7f:7b:f2:9e:
cc:ba:55:94:45:48:68:40:22:62:5a:4f:15:45:3e:
42:d2:2e:97:69:0f:be:9b:85:d8:50:c7:e4:98:7e:
82:a4:8d:12:33:02:91:ee:a8:90:91:16:55:e6:31:
9b:22:72:21:01:bb:a0:0a:11:a0:16:1b:e3:c2:98:
0a:35:76:6d:6c:5d:b9:83:56:e3:3a:b0:1d:88:2d:
82:6c:6c:30:8b:a6:ed:04:51:07:3c:d2:8d:d6:bc:
92:b0:22:a9:ed:7d:6c:7c:65:e8:a1:72:ae:0d:4b:
22:2c:03:65:43:ce:f0:6c:6d:9d:1a:4f:77:ec:02:
7c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D3:8B:16:6C:D2:62:0F:2C:FC:3F:8F:C2:6E:EB:BB:99:D7:3B:EF
X509v3 Authority Key Identifier:
keyid:DE:19:BA:A8:C8:80:A9:45:9D:C5:F4:4D:67:5D:EA:4E:F9:6D:BD:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hm6qMiAqUWdxfRNZ13qTvltve8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9fc14c-c366-46ff-aaf7-8949e751b219/1/l9OLFmzSYg8s_D-Pwm7ru5nXO-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9fc14c-c366-46ff-aaf7-8949e751b219/1/3hm6qMiAqUWdxfRNZ13qTvltve8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5c:0f:cc:a1:a9:f3:94:f1:ab:74:cf:d8:41:50:2d:29:22:58:
a8:e6:d1:33:24:47:45:51:89:5e:75:ac:e0:da:5a:9e:a8:ec:
b2:5b:b2:3b:4c:1e:e0:a0:4a:ac:4a:72:f5:0c:c6:92:ef:d3:
69:a0:2a:01:f9:01:83:a0:9a:82:48:ce:0e:fa:0b:30:0d:8e:
73:3c:84:3b:f5:88:9a:ad:d1:db:98:9d:b1:f0:62:b5:e5:7b:
df:a6:88:f1:2d:cf:3f:47:a8:95:74:b2:26:c8:57:6d:dc:41:
d6:c0:cf:50:f2:50:69:8b:a2:c6:a3:f8:71:17:4b:a0:d4:a9:
e9:e4:4b:c0:4a:c6:d9:63:14:54:af:75:24:04:3b:46:a8:35:
6f:b3:7c:c8:13:52:6b:a1:cd:aa:45:d8:7f:e9:4d:f1:f2:2b:
d4:1f:9c:5d:3f:6a:1a:90:5b:6c:15:8b:92:09:a0:5c:84:52:
5c:cf:31:61:98:f9:fd:68:6f:70:41:61:99:c8:23:30:ef:50:
6a:82:97:fe:69:f4:3b:90:4d:18:c7:3b:d8:37:91:e3:b7:bd:
df:82:0a:63:d8:45:38:50:a3:a2:36:ab:07:91:85:fa:12:b5:
a1:8b:5b:bb:3f:7a:ad:3a:ea:57:d3:7d:b6:6c:27:ae:ad:9e:
7c:c8:39:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-fra.rpki-client.org