Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/idkLOdVknvu6hfWfIoHEWy1TRW8.roa
File: idkLOdVknvu6hfWfIoHEWy1TRW8.roa (raw, json)
Hash identifier: bo/eqgJowAe9IFIxRKtLd1ONBIU5ujIwbmK5yQFgD1I=
Subject key identifier: 89:D9:0B:39:D5:64:9E:FB:BA:85:F5:9F:22:81:C4:5B:2D:53:45:6F
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 01837DEC6AFC53D9151E40E7D908C8DEC48D
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/idkLOdVknvu6hfWfIoHEWy1TRW8.roa
Signing time: Tue 27 Sep 2022 07:49:49 +0000
ROA not before: Tue 27 Sep 2022 07:49:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 92.53.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7d:ec:6a:fc:53:d9:15:1e:40:e7:d9:08:c8:de:c4:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Sep 27 07:49:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89d90b39d5649efbba85f59f2281c45b2d53456f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:67:27:cf:68:7b:9d:00:37:54:d2:8c:65:b7:
23:58:12:44:da:93:10:e6:b5:f1:c5:f9:0f:e3:d3:
5d:a7:a6:dc:da:bb:e1:79:ba:31:19:6c:65:c9:4a:
4c:7f:95:a1:2b:ec:d4:8a:72:88:5a:8c:31:a7:f0:
d2:92:f3:63:70:8a:57:85:71:9a:d9:c2:21:79:52:
36:04:85:cc:e0:a3:43:16:72:4b:ca:3d:19:7a:17:
92:6a:5a:07:57:99:c6:40:69:5d:d8:9d:38:46:f6:
b8:1f:70:15:a0:66:fd:f2:83:94:0a:7f:3f:2e:7e:
7c:5d:60:1f:a0:7e:ee:5b:0c:32:9b:78:4e:31:9a:
bd:ab:46:16:56:b8:88:f6:71:01:a2:fe:41:97:90:
86:5f:49:20:38:0a:ea:0d:99:72:3c:26:92:ab:d8:
c2:fc:3b:a8:e0:50:5a:82:b9:67:f2:ff:fb:9f:12:
39:3d:2b:81:c3:ee:ff:63:be:45:e8:fd:b6:54:1d:
04:ae:f4:bf:32:94:61:26:f7:7a:de:d0:a4:dd:58:
b5:63:e5:18:ab:e2:b0:a2:9e:9f:ee:ae:1e:fb:f8:
33:41:d8:f4:87:90:d4:49:51:54:4b:b2:ff:58:0b:
f8:3e:11:9a:95:56:72:5a:b0:20:d8:af:b4:ce:a1:
31:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D9:0B:39:D5:64:9E:FB:BA:85:F5:9F:22:81:C4:5B:2D:53:45:6F
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/idkLOdVknvu6hfWfIoHEWy1TRW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.188.0/22
Signature Algorithm: sha256WithRSAEncryption
78:96:65:c1:2e:db:72:80:e8:28:49:9c:c8:fd:74:f3:1e:eb:
ed:68:c1:21:a6:a8:6e:1c:3f:83:72:61:7f:de:f7:06:5b:66:
3f:5c:f8:29:6b:f4:d9:5d:92:57:2e:27:09:5f:88:8e:42:5e:
16:10:20:e9:ff:9b:50:34:d8:3b:85:e4:98:20:4d:6c:75:2b:
e6:90:9a:f7:cd:40:40:f5:c4:4f:c6:61:33:fb:5c:39:f8:0b:
93:7b:30:72:62:00:e3:57:d8:95:3b:a8:63:49:dd:4c:6d:a0:
41:d8:36:cc:af:ed:03:5d:4f:21:bc:7e:f3:fb:a9:4d:f6:45:
96:4d:39:b6:76:da:69:7d:70:c6:0a:f5:0e:17:dd:07:a0:7c:
f9:db:db:e3:1a:eb:e5:82:cb:78:b6:7e:72:d7:b2:12:63:87:
d6:ba:3f:1c:18:9b:70:ee:16:96:30:80:a7:ad:ea:77:e5:49:
f0:e5:45:ae:ac:5c:99:33:b5:d5:41:71:be:5c:9e:15:a5:5d:
1a:9f:f2:9c:dd:89:7b:6a:19:fd:03:83:3a:29:34:1b:03:70:
3b:00:f9:ea:ff:c5:07:73:77:ed:53:63:ca:04:74:23:3a:9a:
66:9f:82:49:87:0f:a1:c3:3f:ab:0b:bb:bc:46:7e:32:6e:4f:
bc:86:bf:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:17 2023 by rpki-client on console-ams.rpki-client.org