Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/eHWQiF5KFZHd-sLUpOrl2A_OgcM.roa
File: eHWQiF5KFZHd-sLUpOrl2A_OgcM.roa (raw, json)
Hash identifier: aqIFLnuGesSvwfI94LYAvXft7tjVppnWZn7odcXqG0o=
Subject key identifier: 78:75:90:88:5E:4A:15:91:DD:FA:C2:D4:A4:EA:E5:D8:0F:CE:81:C3
Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Certificate serial: 0685E79B
Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/eHWQiF5KFZHd-sLUpOrl2A_OgcM.roa
Signing time: Sat 01 Jan 2022 15:04:36 +0000
ROA not before: Sat 01 Jan 2022 15:04:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 141.7.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109438875 (0x685e79b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Validity
Not Before: Jan 1 15:04:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=787590885e4a1591ddfac2d4a4eae5d80fce81c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2f:c7:7b:22:59:94:58:a2:f1:af:48:41:e8:
57:cf:af:62:f1:bf:22:ab:fe:db:45:a9:57:69:12:
8b:00:cb:05:dd:f1:44:90:9d:a2:89:fc:83:83:00:
b9:ea:12:4d:d3:63:c7:b7:df:30:d0:cf:59:a7:f7:
04:98:f2:56:60:30:a8:f9:78:37:e8:7a:89:40:51:
97:13:68:1f:bc:1f:b9:b0:cf:32:90:06:69:1d:fa:
e7:7f:89:c7:93:ee:c0:cb:8c:e8:ca:a3:12:4d:8d:
b3:1c:78:51:b1:78:8e:5d:ae:f5:03:67:8b:b4:e9:
5f:0e:b7:22:ba:19:ce:bb:de:d4:c0:0a:ee:e6:55:
c0:25:85:da:ef:8e:bc:a0:62:5f:3a:f7:cc:ae:46:
8c:60:97:8c:d6:ed:1a:18:d2:fd:7f:01:c4:46:39:
ad:f6:f3:e4:82:75:0f:0e:fe:e4:f0:f3:d4:68:21:
15:a4:ac:90:4b:c0:ec:2d:e8:91:0f:4b:09:4d:22:
c4:f5:30:b5:a7:bd:ae:ed:0f:7c:01:62:3c:54:c6:
e0:5a:29:33:a9:9d:24:74:ab:0b:a4:76:67:e9:f2:
fd:24:3a:81:8d:b9:3b:a2:3f:49:be:54:1d:d8:07:
7b:24:ba:28:03:04:31:57:a2:94:35:20:c5:02:ef:
f0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:75:90:88:5E:4A:15:91:DD:FA:C2:D4:A4:EA:E5:D8:0F:CE:81:C3
X509v3 Authority Key Identifier:
keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/eHWQiF5KFZHd-sLUpOrl2A_OgcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.7.0.0/16
Signature Algorithm: sha256WithRSAEncryption
17:2d:ca:b8:22:4b:62:52:58:a5:54:72:de:12:36:39:ed:16:
ab:4b:e6:0b:a5:d8:0c:ba:6e:f3:66:e3:53:68:6f:bf:d3:e1:
9a:e1:4a:fe:b8:1f:1f:68:1a:4c:bf:63:88:5d:a3:98:57:26:
5c:b7:c6:3b:43:a2:3a:12:a3:5f:95:cf:a3:de:29:bc:ec:5b:
a8:ab:b9:2b:29:6c:cb:52:77:1d:a7:ab:39:56:51:a0:e0:34:
6c:ee:3f:b8:0d:3d:36:08:89:3f:c8:df:f9:94:1d:24:9e:87:
a2:14:ed:3b:43:a5:60:05:05:2d:a9:41:ec:9d:1d:47:ca:c4:
d6:86:25:c7:96:e5:cc:65:57:8e:ff:48:d7:7f:7d:cf:43:b1:
33:ca:e2:42:3e:32:a4:5e:fc:c3:fe:d6:eb:e7:39:cd:0a:78:
ec:f5:31:c1:14:ff:60:5e:ad:7f:bb:d4:3d:93:44:28:6c:cb:
c5:dd:24:d3:e1:b1:b9:79:ee:42:91:5d:52:e2:5d:e1:f9:03:
26:10:f5:db:0a:07:b0:9b:c3:16:51:09:4e:38:0c:43:2f:5d:
8c:4c:09:76:05:a3:01:f0:30:e8:59:49:46:9e:e4:fe:ef:eb:
15:79:75:04:98:5f:e9:3c:c5:df:91:84:63:fd:ae:87:5e:38:
89:18:5a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:28 2024 by rpki-client on console-ams.rpki-client.org