Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/pVq1oHh5oT535oBTJxGrB52scko.roa
File: pVq1oHh5oT535oBTJxGrB52scko.roa (raw, json)
Hash identifier: FYhdPCGAbzgBxBgGgJGmMI6AgC/QLSKQiItWUXxwgp4=
Subject key identifier: A5:5A:B5:A0:78:79:A1:3E:77:E6:80:53:27:11:AB:07:9D:AC:72:4A
Certificate issuer: /CN=1bc3c1bef15f4bccc4e748c08957ecc229a0f1ef
Certificate serial: 0B4C8530
Authority key identifier: 1B:C3:C1:BE:F1:5F:4B:CC:C4:E7:48:C0:89:57:EC:C2:29:A0:F1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G8PBvvFfS8zE50jAiVfswimg8e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/pVq1oHh5oT535oBTJxGrB52scko.roa
Signing time: Sat 01 Jan 2022 08:53:41 +0000
ROA not before: Sat 01 Jan 2022 08:53:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35370
IP address blocks: 160.20.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189564208 (0xb4c8530)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bc3c1bef15f4bccc4e748c08957ecc229a0f1ef
Validity
Not Before: Jan 1 08:53:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a55ab5a07879a13e77e680532711ab079dac724a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:23:3d:ca:39:ea:f6:8a:8f:cb:cd:36:e0:1a:
31:06:17:07:66:79:0d:52:d2:fb:35:31:fb:b8:88:
f5:6d:f5:ab:62:2f:32:5e:13:37:c9:85:16:88:3f:
dc:03:ad:14:c1:93:9c:a8:23:52:79:f8:30:25:ac:
02:e2:59:10:08:a5:1e:0d:30:6e:c4:d9:d4:78:88:
cc:cd:c1:07:9c:23:7d:f2:90:23:34:a5:ac:4e:12:
32:00:b9:c7:7c:71:b2:ca:e0:13:f5:49:c8:3b:15:
26:55:32:d7:2d:32:77:18:3f:f8:0d:7c:6e:ab:65:
cf:93:d3:75:9c:a1:08:7a:df:ce:6d:5a:9f:1b:a9:
90:2a:f8:4c:bb:30:97:06:c7:4a:06:78:db:85:e1:
43:6a:28:d5:04:f7:9e:f8:93:eb:b5:b1:2d:55:7c:
c8:e3:63:77:aa:a1:9a:c6:41:8f:4c:79:e7:49:f8:
a8:6a:e2:7f:6d:48:c7:37:ba:8c:c5:2a:a3:16:55:
7f:3b:d0:c5:86:ef:e8:29:31:e9:6b:e8:97:45:54:
5c:65:e8:03:26:ce:ae:c4:19:42:af:85:fc:d4:7c:
30:33:99:c5:4e:53:40:ef:a2:b2:b7:e8:b8:c1:20:
2b:89:5b:65:c7:46:1a:a3:28:97:6d:ac:92:24:49:
18:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5A:B5:A0:78:79:A1:3E:77:E6:80:53:27:11:AB:07:9D:AC:72:4A
X509v3 Authority Key Identifier:
keyid:1B:C3:C1:BE:F1:5F:4B:CC:C4:E7:48:C0:89:57:EC:C2:29:A0:F1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G8PBvvFfS8zE50jAiVfswimg8e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/pVq1oHh5oT535oBTJxGrB52scko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bc94df-7259-42d1-822a-3d9810098703/1/G8PBvvFfS8zE50jAiVfswimg8e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.100.0/22
Signature Algorithm: sha256WithRSAEncryption
55:61:b2:f5:be:b9:46:a8:82:ea:b0:4b:13:2f:ad:4b:3a:84:
0d:f1:c7:08:fa:67:e5:e1:3e:96:11:e1:e0:47:05:20:52:52:
56:c7:44:c4:04:a2:8d:7a:8e:35:45:c3:28:95:f4:70:c3:7f:
36:6f:20:de:dd:65:dd:91:4d:e2:fb:50:0c:80:12:6e:39:34:
f7:85:63:01:00:07:93:88:7c:6e:12:7f:01:35:5f:17:17:2c:
7d:4a:b5:a8:05:18:65:4a:d3:c0:37:19:33:fc:fe:4b:db:0c:
89:f5:2a:b5:2b:92:49:65:a3:71:b9:c2:55:ef:a0:9a:7a:40:
ab:94:db:e9:eb:94:d6:c1:b9:9d:08:0f:b0:cd:a2:9a:d2:4a:
6d:05:3d:2b:c8:ab:5c:c1:01:73:b9:9f:f3:2e:36:3e:67:4a:
0a:52:76:06:d4:e3:12:b9:e6:4e:be:4e:a0:48:00:8c:a6:5a:
8a:6e:d9:91:c0:d2:a9:3c:ab:ec:27:ef:8c:e0:ab:a8:79:0c:
51:a4:34:ad:34:5d:9c:e8:3f:4f:db:e1:b0:a8:5a:97:2f:48:
a5:9f:ec:5b:e5:30:b5:a8:3c:fb:76:e6:19:13:79:1b:60:7d:
66:73:08:50:df:59:61:f4:15:c1:1e:5e:38:c5:b8:c3:9f:34:
79:14:7f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:01 2023 by rpki-client on console-ams.rpki-client.org