Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/FKdSqOcS2n5V2T28hCit_9OCnfw.roa
File: FKdSqOcS2n5V2T28hCit_9OCnfw.roa (raw, json)
Hash identifier: q4H5KzpIy5K/ng8u5j7O7SIZka0C6SwWpUyhj3F6GFI=
Subject key identifier: 14:A7:52:A8:E7:12:DA:7E:55:D9:3D:BC:84:28:AD:FF:D3:82:9D:FC
Certificate issuer: /CN=1954e32570bbfb9af11c2381e81c797c2f40087c
Certificate serial: 0418A183
Authority key identifier: 19:54:E3:25:70:BB:FB:9A:F1:1C:23:81:E8:1C:79:7C:2F:40:08:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/FKdSqOcS2n5V2T28hCit_9OCnfw.roa
Signing time: Sat 01 Jan 2022 05:55:35 +0000
ROA not before: Sat 01 Jan 2022 05:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 144.2.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68723075 (0x418a183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1954e32570bbfb9af11c2381e81c797c2f40087c
Validity
Not Before: Jan 1 05:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14a752a8e712da7e55d93dbc8428adffd3829dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9e:6e:8e:80:19:67:e8:a5:bf:4d:77:2a:1a:
f2:8b:9d:26:4e:a3:e6:6b:41:4e:7d:4f:0d:17:2a:
7a:2d:6f:76:95:82:3a:c5:19:e0:7f:3b:b2:83:2a:
20:16:4f:0c:48:21:50:fd:f7:b0:4f:f2:57:7e:21:
ce:d0:fc:a4:a7:3c:66:fd:ab:f1:e0:58:3f:cf:98:
5f:92:fb:8d:ec:12:6b:73:33:65:eb:64:45:0a:b4:
c4:60:06:c5:3e:72:80:be:6c:db:f9:47:85:bb:69:
8f:05:9f:c5:8a:c5:34:52:4d:3e:c3:3f:0f:67:25:
8d:cd:af:9b:43:59:2e:e6:8a:3b:be:f7:9c:ed:38:
62:fd:77:92:de:f1:82:b1:33:d9:78:97:ad:5b:b8:
3a:70:f6:9b:5e:d1:00:bd:d0:fb:3b:d9:2e:18:9f:
dc:4f:d0:57:c3:1c:d9:f8:25:24:4a:94:94:af:34:
a7:6e:45:fd:b4:23:40:d9:d7:bc:05:71:b1:13:a0:
9e:54:ca:52:5c:91:0f:f9:04:6f:84:7f:22:de:ed:
31:97:a3:76:44:ae:86:5d:5d:ad:25:b6:4e:86:1e:
62:0f:40:80:b8:bc:ed:44:ed:50:59:b9:ed:93:43:
1b:dd:bc:e9:a4:79:53:2f:b4:33:f6:80:8b:c5:8d:
04:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A7:52:A8:E7:12:DA:7E:55:D9:3D:BC:84:28:AD:FF:D3:82:9D:FC
X509v3 Authority Key Identifier:
keyid:19:54:E3:25:70:BB:FB:9A:F1:1C:23:81:E8:1C:79:7C:2F:40:08:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/FKdSqOcS2n5V2T28hCit_9OCnfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.170.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:7a:b6:46:e7:a5:6a:11:72:5f:99:f4:4c:51:66:07:da:81:
4e:ba:db:b6:50:e7:9a:48:a1:a3:56:53:62:66:8a:c9:2f:de:
f5:fc:f6:e2:e5:68:9a:91:ff:27:b8:5e:00:78:4a:44:2d:1c:
fa:0d:8d:a3:95:8e:80:2c:72:b1:09:32:aa:6d:eb:59:38:2c:
d7:d4:94:fb:c2:fd:29:3d:2e:af:c4:15:a2:ec:dc:d2:f4:d5:
67:07:73:7a:68:7b:57:5a:93:01:43:98:4f:3e:85:96:89:83:
7f:cd:70:33:1c:3f:a2:d6:94:c4:7f:c6:c4:e2:5d:8d:e4:d3:
95:d9:19:06:eb:02:69:0e:bc:60:2f:71:8b:6b:7e:cc:19:cf:
f9:2b:c7:47:81:b9:17:42:7c:ea:6d:5a:cd:90:82:3e:ae:72:
81:d7:75:41:58:49:22:ec:6b:e5:17:fd:05:d4:75:50:bb:49:
17:02:60:a8:d3:cd:1e:61:84:3b:0d:4a:e6:05:64:c7:37:8f:
6f:2f:df:be:ae:7e:e9:b0:87:66:41:52:1f:00:08:e7:88:7a:
e8:c0:dc:46:e0:fd:32:2c:17:35:95:cb:0f:fb:46:70:b2:fe:
ca:07:ac:a6:d8:b9:c4:e4:5f:04:ee:02:8f:18:36:be:b4:41:
a6:62:20:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:00 2023 by rpki-client on console-ams.rpki-client.org