Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/1-ClCn-VLyshcmsSI951-C-Q4roI.roa
File: 1-ClCn-VLyshcmsSI951-C-Q4roI.roa (raw, json)
Hash identifier: 7w7Otx87q/IPoox+TBeREoXZULsNRnWpgtUvOEo6pQo=
Subject key identifier: F8:29:42:9F:E5:4B:CA:C8:5C:9A:C4:88:F7:9D:7E:0B:E4:38:AE:82
Certificate issuer: /CN=aba10057bcd00762eef43823c030e7e32d572241
Certificate serial: 0A136204
Authority key identifier: AB:A1:00:57:BC:D0:07:62:EE:F4:38:23:C0:30:E7:E3:2D:57:22:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/1-ClCn-VLyshcmsSI951-C-Q4roI.roa
Signing time: Sat 01 Jan 2022 10:56:25 +0000
ROA not before: Sat 01 Jan 2022 10:56:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 160.202.22.0/24 maxlen: 24
160.202.20.0/24 maxlen: 24
160.202.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169042436 (0xa136204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aba10057bcd00762eef43823c030e7e32d572241
Validity
Not Before: Jan 1 10:56:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f829429fe54bcac85c9ac488f79d7e0be438ae82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:eb:50:69:ad:09:05:93:37:e0:ac:fd:4a:00:
25:d3:5a:d8:ce:26:9f:3b:7e:83:7d:6d:ed:ae:23:
51:ba:c0:59:4e:de:1b:02:cf:cc:97:4b:1f:81:4e:
a5:20:22:0a:44:c2:7a:0f:07:a7:1b:85:33:6a:c2:
83:09:99:c6:ac:56:a3:3e:0b:c9:43:49:21:57:c6:
1e:f5:e9:f4:40:fd:2f:fb:81:35:ed:49:97:c7:ce:
ec:15:31:d3:71:24:54:42:82:f5:3f:ea:8a:26:0d:
3a:8c:65:0b:f9:40:ea:03:7a:d3:8c:36:9b:7a:f5:
f0:17:9d:c4:29:a9:22:3a:8d:cd:50:34:9e:05:cc:
6e:d3:19:ad:13:bb:c4:93:2d:b4:81:04:42:90:d8:
09:c0:c2:ca:bf:25:a7:6e:fb:33:d1:c1:30:64:67:
d3:34:da:b7:1e:7a:37:7a:a4:89:94:26:05:c3:94:
13:9c:d2:87:cc:f9:ac:1c:c5:82:8b:a5:90:43:6b:
3e:58:4a:b7:48:ec:07:0e:c5:5b:7a:c6:a4:5d:f4:
c7:41:fe:79:d7:af:59:bb:fd:3d:ee:8e:9c:1b:11:
7c:a2:d6:4b:87:74:ce:a8:8a:55:c7:22:7e:03:d5:
74:52:a0:72:20:8a:80:57:7d:15:9e:01:75:b5:ea:
df:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:29:42:9F:E5:4B:CA:C8:5C:9A:C4:88:F7:9D:7E:0B:E4:38:AE:82
X509v3 Authority Key Identifier:
keyid:AB:A1:00:57:BC:D0:07:62:EE:F4:38:23:C0:30:E7:E3:2D:57:22:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/1-ClCn-VLyshcmsSI951-C-Q4roI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.202.20.0-160.202.22.255
Signature Algorithm: sha256WithRSAEncryption
3d:5c:c8:e5:ec:1b:74:3d:a9:ae:f3:4b:1e:b0:d5:ab:e7:e7:
1d:0b:c2:55:e4:f0:f2:40:1b:65:1c:77:73:11:6b:d3:ba:fd:
17:45:6a:88:cf:91:74:0a:6b:aa:5b:85:ae:a9:05:da:a2:07:
77:e5:c7:6d:a5:f5:9e:db:f2:d1:b3:ef:b6:98:5f:91:45:48:
dc:ce:d5:27:60:e9:d2:8e:11:c0:31:ab:87:a2:cc:4a:1c:7b:
ef:5b:4f:5a:79:1e:2d:e9:f1:33:31:48:25:73:a9:f4:78:19:
7d:3e:04:2e:bb:ca:01:f6:c0:69:4d:7c:28:80:21:02:7b:af:
65:f8:33:a9:cd:e8:2a:d0:23:93:14:b3:a3:0c:fd:07:8d:a2:
38:82:36:3e:51:6c:28:37:4b:cd:ec:ef:fd:e1:b5:ea:70:e2:
08:51:e0:f4:9a:31:60:65:b5:e5:d5:84:d0:58:cb:06:57:29:
47:d8:6f:04:6b:48:e8:0e:5f:39:46:e6:3d:32:ba:13:9d:d6:
cc:05:68:d8:6e:65:d1:63:26:47:6e:35:59:fa:69:9a:60:44:
b1:00:ea:94:35:c3:79:c9:4f:94:19:7a:73:22:a3:10:58:4f:
ec:87:62:c5:4f:1f:16:58:52:89:68:59:4f:2d:39:3d:1f:ec:
42:c7:db:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:01 2024 by rpki-client on console-ams.rpki-client.org