Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/KeyZRYa59WaQqOAxSMvh68MoNKg.roa
File: KeyZRYa59WaQqOAxSMvh68MoNKg.roa (raw, json)
Hash identifier: R1pCoay3ACO/J3VbkBWi9AlX6i4Ox2+i1ECRHAjgAoY=
Subject key identifier: 29:EC:99:45:86:B9:F5:66:90:A8:E0:31:48:CB:E1:EB:C3:28:34:A8
Certificate issuer: /CN=1954e32570bbfb9af11c2381e81c797c2f40087c
Certificate serial: 0418E36F
Authority key identifier: 19:54:E3:25:70:BB:FB:9A:F1:1C:23:81:E8:1C:79:7C:2F:40:08:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/KeyZRYa59WaQqOAxSMvh68MoNKg.roa
Signing time: Sat 01 Jan 2022 05:55:35 +0000
ROA not before: Sat 01 Jan 2022 05:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 144.2.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68739951 (0x418e36f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1954e32570bbfb9af11c2381e81c797c2f40087c
Validity
Not Before: Jan 1 05:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29ec994586b9f56690a8e03148cbe1ebc32834a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:41:91:e2:25:0d:9c:41:a5:e3:27:ca:ca:44:
a3:05:b3:e4:e9:45:34:7f:40:1a:c6:1f:45:bd:7a:
04:ae:20:9c:2f:87:a8:c2:85:d1:01:aa:4a:4e:7f:
6f:32:2e:f3:a6:db:07:5b:4d:ec:0d:70:3a:27:e0:
6f:db:c4:1a:40:07:44:b1:c6:64:c5:25:e9:a6:b0:
05:c9:b1:ae:dd:1b:7c:66:c1:b1:ab:f5:f3:5a:fc:
8f:45:62:19:8f:03:b9:f4:61:5d:ff:cf:46:5a:a3:
54:dc:b4:40:f2:57:9b:7c:a7:27:c8:fa:fa:ee:0f:
e6:14:c0:43:f8:d5:c5:26:b0:52:c2:8c:12:c8:50:
89:f4:ba:74:9c:b9:2f:65:3e:24:a9:65:60:cb:1e:
64:4e:24:5d:f0:76:cb:9c:6d:ba:70:dc:e6:db:e8:
92:38:ce:ba:3a:4f:d5:81:11:c5:ee:a9:f6:ae:26:
64:06:4c:bc:ef:03:a7:77:27:d8:22:18:3c:3f:f2:
00:c0:9c:40:46:21:39:7b:67:ac:a0:41:90:4b:4b:
2f:69:82:cd:8d:4f:b7:d9:4c:e4:68:72:0e:b8:41:
6d:fa:4b:fc:b3:d1:fb:67:fd:18:8f:0b:8d:46:6f:
74:17:39:53:f8:df:8e:d8:37:8b:1e:e5:6e:40:f6:
d0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EC:99:45:86:B9:F5:66:90:A8:E0:31:48:CB:E1:EB:C3:28:34:A8
X509v3 Authority Key Identifier:
keyid:19:54:E3:25:70:BB:FB:9A:F1:1C:23:81:E8:1C:79:7C:2F:40:08:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/KeyZRYa59WaQqOAxSMvh68MoNKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.170.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:79:ca:6d:93:cf:1b:61:25:6d:9e:30:9d:67:50:54:86:20:
bd:c4:bf:87:67:8a:51:e8:12:63:cd:13:c3:55:b7:a5:c0:6f:
54:bd:0b:70:47:e0:c9:ef:ae:8b:2a:9e:51:cf:25:94:3e:56:
b9:8a:c3:99:3e:59:98:17:61:d2:27:14:08:67:42:66:90:4d:
51:7f:03:f4:4b:60:1a:9f:75:9d:9a:13:32:0f:ec:3f:7c:53:
b2:0f:1c:99:32:4e:03:21:0c:3c:ff:21:b1:9b:c4:95:8c:2c:
70:00:da:f2:e6:41:71:f4:24:15:2d:1a:c6:97:24:46:0b:32:
2e:12:cd:68:b8:d2:72:ba:6d:f5:84:e2:ec:bc:5a:e9:e7:1f:
b3:3e:04:77:09:a8:3e:c0:2d:31:0c:b0:af:31:5d:69:20:96:
73:e1:59:cc:35:f6:e4:9d:9a:a7:33:ec:80:03:36:fa:aa:f9:
dc:8e:c4:68:16:b4:20:58:16:89:75:14:00:a1:70:40:42:9b:
32:44:6d:76:e8:ef:33:54:a7:f9:db:e2:7e:7e:5f:61:ce:89:
43:ab:0f:67:a9:4d:58:55:36:2a:a1:3a:ad:bb:fb:ff:ff:89:
c8:f1:5b:ba:da:1d:d0:47:1e:eb:bd:9f:26:68:c7:ef:c0:1c:
88:b1:32:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:07 2023 by rpki-client on console-fra.rpki-client.org