Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/P0s4HMDd3rCONRbBIaJ6pgWLzMw.roa
File: P0s4HMDd3rCONRbBIaJ6pgWLzMw.roa (raw, json)
Hash identifier: 3+u6efZBfSVvUBE8dMzpq1S2trwC19ROen4yXvAcLPE=
Subject key identifier: 3F:4B:38:1C:C0:DD:DE:B0:8E:35:16:C1:21:A2:7A:A6:05:8B:CC:CC
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 3A0BCAD7
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/P0s4HMDd3rCONRbBIaJ6pgWLzMw.roa
Signing time: Sat 01 Jan 2022 14:00:43 +0000
ROA not before: Sat 01 Jan 2022 14:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203689
IP address blocks: 157.25.130.0/23 maxlen: 23
157.25.174.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 973851351 (0x3a0bcad7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 1 14:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f4b381cc0dddeb08e3516c121a27aa6058bcccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7e:f6:0e:d0:46:29:0c:db:34:bc:96:aa:63:
13:19:62:81:a5:37:d1:c2:6f:c6:cf:ca:64:55:59:
e8:8b:4c:15:7d:3d:17:3d:e5:bc:38:7c:fc:86:a8:
fd:35:af:e8:b1:d8:e4:a0:78:95:0e:f6:8e:ab:a1:
84:1e:05:b8:4f:5b:25:2a:4a:02:a6:30:7d:1f:bc:
dc:b6:1c:a2:09:de:d8:ec:74:52:87:6d:83:74:11:
47:1c:5a:8c:ea:77:f2:81:50:93:91:f3:33:88:50:
3c:0c:89:9b:55:65:9f:22:86:b8:07:8c:0c:b0:e8:
91:da:8e:b0:63:5a:ea:76:89:21:46:5e:ce:8f:b6:
aa:3f:72:9a:eb:e7:4a:e3:a2:0a:2b:fd:80:18:01:
67:5f:92:19:a9:a3:f4:fc:af:dd:d2:f6:58:e0:c3:
3d:d3:fc:a6:21:8b:6c:85:34:6c:40:dd:5a:9d:a6:
fc:cd:54:2a:cd:db:45:25:af:81:08:98:52:9a:b7:
e7:1b:d4:a3:68:3b:ec:b1:1d:66:03:ad:4c:54:57:
60:d2:f5:ac:55:d6:61:2c:d4:6f:59:9c:2d:1c:3b:
f7:76:dc:f2:59:70:ba:91:a7:3c:9a:d5:22:a2:cc:
3c:68:7e:f0:8b:27:f3:fd:72:4b:eb:06:d5:9a:b1:
21:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:4B:38:1C:C0:DD:DE:B0:8E:35:16:C1:21:A2:7A:A6:05:8B:CC:CC
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/P0s4HMDd3rCONRbBIaJ6pgWLzMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.25.130.0/23
157.25.174.0/23
Signature Algorithm: sha256WithRSAEncryption
31:19:f1:64:ea:9d:1f:82:ea:26:12:44:48:aa:07:e6:e8:ea:
cb:c9:90:f1:fb:f0:92:49:16:00:3b:21:4d:71:7f:2c:89:3a:
c0:5d:01:70:a2:57:3b:77:75:66:ae:2a:17:fa:d0:1f:2a:e6:
50:60:70:35:99:4e:ac:f6:4e:3f:97:84:16:0c:89:ef:5b:0e:
76:8f:9c:50:e3:14:1c:c2:4a:5f:7f:bb:a7:de:25:a8:91:b0:
9d:73:11:8b:d6:f2:d3:83:5e:3c:5f:32:5c:77:dc:77:a9:5c:
15:8c:70:bb:48:af:d6:a5:7b:b5:5e:58:9f:2a:fc:01:48:8d:
35:f1:f5:bf:5f:89:94:33:d3:2c:1c:72:16:7f:f6:19:c7:4e:
65:4e:b7:7a:ec:2e:53:a5:ec:82:be:f3:19:54:36:42:42:6e:
d3:1b:24:23:d0:3a:22:6c:c2:f1:c6:f1:45:16:52:1d:cb:a1:
6c:98:46:7d:12:06:5b:35:89:52:92:38:a0:97:bf:1f:13:1a:
6c:75:7d:8e:a6:1d:a3:b3:49:b3:7d:a0:72:88:7a:c0:f0:c5:
c5:55:cf:83:7b:3b:8f:30:a4:70:6f:2d:21:9b:e3:d8:c6:d0:
f3:c1:85:0a:38:f2:5e:0c:c7:01:46:9a:13:c8:83:31:b6:60:
eb:2f:98:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:02 2023 by rpki-client on console-ams.rpki-client.org