Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/3H88RZxyiASd8InYzFlC9g4_nBA.roa
File: 3H88RZxyiASd8InYzFlC9g4_nBA.roa (raw, json)
Hash identifier: 9cK7FgB9is4VniLYNNNu08gPqZiw1lu+BromEA5NbVk=
Subject key identifier: DC:7F:3C:45:9C:72:88:04:9D:F0:89:D8:CC:59:42:F6:0E:3F:9C:10
Certificate issuer: /CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Certificate serial: 064D6C3C
Authority key identifier: 5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/3H88RZxyiASd8InYzFlC9g4_nBA.roa
Signing time: Sun 20 Mar 2022 20:32:48 +0000
ROA not before: Sun 20 Mar 2022 20:32:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209465
IP address blocks: 171.22.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105737276 (0x64d6c3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Validity
Not Before: Mar 20 20:32:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc7f3c459c7288049df089d8cc5942f60e3f9c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:06:15:f4:ef:43:51:6b:9d:d4:0e:f1:d2:16:
8e:81:5d:3c:de:e3:2b:7b:bc:f7:98:97:a3:db:06:
75:97:9e:e0:f6:ee:92:29:d6:8e:c9:47:68:73:4c:
ac:46:28:c3:4f:b9:80:a1:84:11:5f:05:2b:5a:e6:
fb:e6:7c:6e:a1:d1:51:d2:f4:1f:24:9b:9c:59:42:
92:d0:a4:f5:90:b4:8f:33:a7:f1:e1:6c:a9:7f:3f:
38:7a:1a:8c:8d:85:4c:91:9d:35:e2:e7:7a:73:c8:
d9:a3:c6:22:c6:93:02:22:34:89:2e:3a:59:c6:79:
80:56:c6:a0:1b:ae:52:20:95:a9:44:62:03:cb:3b:
2f:ae:e2:b6:b6:ff:28:25:17:12:ee:24:f3:3b:12:
d6:de:ab:73:38:a7:f3:f9:d3:fa:46:34:75:bc:61:
47:26:58:b3:bc:bc:e7:13:e5:68:07:16:8c:27:ec:
7f:b7:d6:88:16:cd:8f:30:c7:f7:88:83:45:01:f1:
e9:9b:ed:35:fb:b5:5b:f4:75:db:de:a9:23:8f:86:
86:48:10:50:5b:c6:ad:34:8e:dc:61:c4:e9:01:b0:
b6:38:a1:ba:b6:d7:d7:89:4e:19:e9:ba:04:96:79:
8f:76:2b:cf:89:98:07:d6:6f:20:2c:48:54:29:98:
3d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:7F:3C:45:9C:72:88:04:9D:F0:89:D8:CC:59:42:F6:0E:3F:9C:10
X509v3 Authority Key Identifier:
keyid:5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/3H88RZxyiASd8InYzFlC9g4_nBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.151.0/24
Signature Algorithm: sha256WithRSAEncryption
98:2a:44:08:28:28:63:5d:d1:c9:f6:43:42:aa:cd:6b:34:78:
c9:e9:c2:f2:bc:c3:70:39:86:04:21:93:a8:07:0f:8f:f8:17:
47:e8:ba:f3:2d:f8:30:3d:3a:7f:b7:45:47:c1:ab:e0:fe:45:
a2:c2:9d:87:b8:c3:3e:f3:d5:53:e2:12:11:e6:a8:f4:78:43:
62:c9:21:ad:47:97:37:2a:f7:fa:b0:8e:3c:0f:50:ca:64:9c:
13:4d:68:c1:32:1f:c5:38:6e:d7:72:7b:8c:7a:ee:e0:4b:da:
7a:72:33:af:ea:4e:27:3e:cd:3f:cc:37:d9:3a:82:23:8d:cf:
03:d7:80:b3:72:b4:8c:cd:f9:12:b7:3a:8c:53:1c:24:3f:00:
09:ba:83:12:2d:40:7a:29:7e:e5:52:6e:be:20:ba:e7:02:eb:
50:b9:fa:7d:e5:94:71:60:78:10:e7:2b:c6:94:4d:71:7e:f5:
4b:8c:2b:3d:20:ff:c3:de:44:a5:d2:bb:44:ba:1d:70:4d:9b:
27:2d:17:d8:5d:1a:35:74:99:07:ab:8a:3e:65:f2:c5:86:82:
c0:3d:53:25:9b:aa:29:f5:34:95:48:27:4e:ae:4e:25:60:57:
fd:72:35:81:bf:f4:46:a7:83:a5:ff:00:a1:40:8c:a8:88:d0:
96:9a:64:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:19 2023 by rpki-client on console-ams.rpki-client.org