Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e3b27b-d4d3-4904-9fb5-442b18aaf56f/1/UcI0-0CJCi2Q-QFS8JJSY5feA_4.roa
File: UcI0-0CJCi2Q-QFS8JJSY5feA_4.roa (raw, json)
Hash identifier: qLf2kmSECSKRL8lQrwsoAtZVgiKm28RE8lJXOV30pck=
Subject key identifier: 51:C2:34:FB:40:89:0A:2D:90:F9:01:52:F0:92:52:63:97:DE:03:FE
Certificate issuer: /CN=d47cce8a97e202a8b44b26f57f4f70950218e52c
Certificate serial: 09350E15
Authority key identifier: D4:7C:CE:8A:97:E2:02:A8:B4:4B:26:F5:7F:4F:70:95:02:18:E5:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HzOipfiAqi0Syb1f09wlQIY5Sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e3b27b-d4d3-4904-9fb5-442b18aaf56f/1/UcI0-0CJCi2Q-QFS8JJSY5feA_4.roa
Signing time: Sat 01 Jan 2022 09:06:18 +0000
ROA not before: Sat 01 Jan 2022 09:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24904
IP address blocks: 171.22.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154471957 (0x9350e15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d47cce8a97e202a8b44b26f57f4f70950218e52c
Validity
Not Before: Jan 1 09:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51c234fb40890a2d90f90152f092526397de03fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:30:f5:5f:fd:36:cf:09:a6:6a:99:67:87:14:
56:14:f6:91:6b:09:2c:a7:01:6f:74:8f:be:a3:ac:
81:92:b5:39:88:5c:6c:7f:e5:60:e9:9c:2e:e8:d0:
42:6a:73:58:24:b2:21:8c:ce:db:7d:13:3a:a3:90:
14:ed:98:cd:e4:ab:6a:2c:2d:b0:0b:13:42:d4:cc:
e7:7b:f8:fb:1f:b1:9a:69:76:85:ba:5e:58:01:d8:
00:cf:d4:a0:bf:93:53:87:c0:08:e9:10:61:0e:05:
9a:53:66:f7:5e:ab:b1:2a:61:19:da:c5:4d:f8:df:
46:1a:9e:b1:90:22:d7:c6:98:6c:63:bc:6d:6c:ab:
8d:0e:af:2b:55:dd:db:a8:db:20:4d:45:90:d5:f4:
af:2e:6f:b8:1e:d7:bd:b9:bd:a7:8d:8f:e6:37:3b:
7b:ae:93:f3:cd:85:7f:8c:e3:a3:86:07:a3:94:06:
92:c8:41:ab:dc:3a:7f:ef:f8:5e:46:b4:1a:73:05:
a8:b1:e3:e1:64:ce:11:ae:7a:ea:a5:4b:cc:a4:fa:
88:de:62:c6:c1:42:14:fb:05:a7:7f:9f:7c:fd:64:
c8:5e:8c:8d:cb:40:35:12:07:d7:27:77:6b:3c:df:
45:32:e4:9e:03:66:e4:43:59:46:91:b4:af:24:5e:
c4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C2:34:FB:40:89:0A:2D:90:F9:01:52:F0:92:52:63:97:DE:03:FE
X509v3 Authority Key Identifier:
keyid:D4:7C:CE:8A:97:E2:02:A8:B4:4B:26:F5:7F:4F:70:95:02:18:E5:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HzOipfiAqi0Syb1f09wlQIY5Sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e3b27b-d4d3-4904-9fb5-442b18aaf56f/1/UcI0-0CJCi2Q-QFS8JJSY5feA_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e3b27b-d4d3-4904-9fb5-442b18aaf56f/1/1HzOipfiAqi0Syb1f09wlQIY5Sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.0.0/22
Signature Algorithm: sha256WithRSAEncryption
44:eb:78:61:42:c0:2a:a8:05:fa:a5:71:55:57:46:73:cf:b1:
0c:b0:fc:27:e8:68:32:ae:82:b7:44:0f:9c:b6:11:a9:7e:6d:
37:05:63:eb:db:6a:e6:b7:8f:b9:55:9e:91:e4:0d:1a:76:ae:
b9:46:61:3a:f0:78:1b:60:8e:60:50:9a:4e:26:b4:f8:e8:bf:
71:bc:e0:3e:5a:e8:eb:cd:b1:36:6c:b7:8f:e9:db:99:ae:da:
89:99:37:61:7b:44:8f:dc:15:57:8e:42:d5:69:80:f5:1c:d7:
be:eb:26:cd:a0:0e:48:e3:57:bf:1f:11:66:e7:fd:c3:5c:a1:
f7:a7:f6:24:8b:c3:c6:e1:02:dd:f3:fb:8b:a3:14:f4:81:de:
5a:4a:a5:88:06:63:1a:cd:53:c4:8e:6a:ed:db:91:23:6c:62:
bd:6c:a9:d6:5a:bd:2b:81:10:77:13:65:de:c1:2a:53:22:c7:
5f:2b:3d:6a:c1:98:32:59:04:ae:6f:75:dd:53:14:0f:97:02:
1d:17:1f:6a:32:46:35:78:28:48:d4:c5:55:d5:e4:01:0b:a2:
8a:33:28:cc:ee:95:68:ca:5f:f1:d1:db:77:ec:97:ea:00:e7:
b5:8d:71:b4:4d:a7:bf:b0:26:34:f1:59:e9:c2:87:da:87:59:
16:f3:cf:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:14 2024 by rpki-client on console-ams.rpki-client.org