Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/fdb398-3fb5-4b6a-a003-cfc4a676d6e0/1/tuXjkJ6U7eXPqOqeXu_EuxBCNYg.roa
File: tuXjkJ6U7eXPqOqeXu_EuxBCNYg.roa (raw, json)
Hash identifier: sRo+5LLeSYqXEI7Aza6VfEjWpmn0WWUyuQco+ZCMBtE=
Subject key identifier: B6:E5:E3:90:9E:94:ED:E5:CF:A8:EA:9E:5E:EF:C4:BB:10:42:35:88
Certificate issuer: /CN=0395add86baf6b2d06ff41f5526d347f71eeb410
Certificate serial: 0AA388CC
Authority key identifier: 03:95:AD:D8:6B:AF:6B:2D:06:FF:41:F5:52:6D:34:7F:71:EE:B4:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5Wt2Guvay0G_0H1Um00f3HutBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/fdb398-3fb5-4b6a-a003-cfc4a676d6e0/1/tuXjkJ6U7eXPqOqeXu_EuxBCNYg.roa
Signing time: Sat 01 Jan 2022 05:58:36 +0000
ROA not before: Sat 01 Jan 2022 05:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 163.9.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178489548 (0xaa388cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0395add86baf6b2d06ff41f5526d347f71eeb410
Validity
Not Before: Jan 1 05:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6e5e3909e94ede5cfa8ea9e5eefc4bb10423588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1d:76:86:5b:91:d7:42:6a:91:9e:ea:fd:68:
1d:81:b5:ed:57:b1:9a:46:49:f6:61:d2:25:a5:92:
b5:bf:e6:4b:c6:1a:98:e7:2a:a6:7a:23:77:41:7a:
32:5e:0b:34:20:0f:cc:24:00:a2:2c:b7:81:cf:61:
ec:62:7b:17:8a:1c:93:97:a4:a4:ab:ea:c1:a6:af:
19:c6:45:f4:7a:ed:e2:ca:f8:d2:41:44:4e:3a:31:
f1:1a:7f:76:6a:e8:36:e6:db:9c:1a:da:eb:58:90:
9a:a8:d5:8e:ea:8f:dc:df:4f:b0:4c:bf:0a:90:4a:
7f:3a:76:d7:90:65:51:c9:c6:10:3d:45:7a:b3:12:
56:a6:e2:3d:54:34:02:a5:b1:7d:4d:72:dc:fc:fe:
3c:7e:07:7a:66:8a:03:b2:a5:88:72:37:ee:33:35:
c9:56:a1:28:f9:7e:00:a2:a0:73:ab:a7:a0:2f:a6:
a7:93:c8:80:8d:1f:af:22:aa:87:5a:b5:5a:70:4e:
c7:7c:42:8b:75:b8:a0:48:eb:70:42:b9:cf:0a:73:
a4:55:0b:52:e5:bb:ac:81:b6:da:90:8b:88:ff:92:
a3:86:56:d2:ff:f1:25:c2:27:7f:d5:7a:f4:51:4d:
4b:c2:3d:be:da:fe:d4:22:01:e1:ab:67:90:68:75:
b3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E5:E3:90:9E:94:ED:E5:CF:A8:EA:9E:5E:EF:C4:BB:10:42:35:88
X509v3 Authority Key Identifier:
keyid:03:95:AD:D8:6B:AF:6B:2D:06:FF:41:F5:52:6D:34:7F:71:EE:B4:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5Wt2Guvay0G_0H1Um00f3HutBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/fdb398-3fb5-4b6a-a003-cfc4a676d6e0/1/tuXjkJ6U7eXPqOqeXu_EuxBCNYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/fdb398-3fb5-4b6a-a003-cfc4a676d6e0/1/A5Wt2Guvay0G_0H1Um00f3HutBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.9.0.0/16
Signature Algorithm: sha256WithRSAEncryption
30:df:32:75:db:a6:f1:f3:74:f7:90:ae:82:f5:cd:c8:04:b5:
7c:40:8c:19:36:82:c7:09:21:7e:81:9e:13:14:f2:d9:ac:da:
2a:80:77:f6:88:f8:96:47:ed:84:93:cb:0c:b0:ac:83:8d:78:
bd:a0:47:bb:15:ca:13:76:c3:9a:44:8e:20:a6:f4:db:b2:a0:
0d:5e:b2:6a:b5:34:04:14:de:90:ec:5d:29:02:5c:85:7c:5a:
1f:bc:84:09:79:d8:a4:f3:4b:9e:81:fe:0f:20:31:f5:37:df:
85:b8:72:08:99:8a:63:19:d7:4a:41:19:ee:8c:a8:9c:5b:c2:
97:2b:93:d1:59:67:30:3d:52:e9:1b:7d:3b:9f:21:77:02:11:
2a:88:04:ef:0c:9f:38:59:b5:76:6e:88:04:d1:1c:82:04:7b:
ae:93:e9:fc:0f:33:c6:88:76:ec:7a:b0:13:0a:6d:99:2a:5c:
ef:26:8f:ab:49:0d:04:be:75:bd:ed:d2:47:72:d8:06:f4:0f:
ce:cb:d1:da:b9:b2:23:c1:59:88:6f:fd:74:9d:c9:50:b5:32:
e8:22:c1:1d:14:fa:64:e4:7f:73:a2:67:c2:bf:41:c8:3e:05:
02:f4:79:56:73:ae:be:5d:99:94:dd:fe:66:89:dc:98:d7:9c:
cc:af:95:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-ams.rpki-client.org