Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/B1FeAQcX7R7jw8vK463uUA1_SQ4.roa
File: B1FeAQcX7R7jw8vK463uUA1_SQ4.roa (raw, json)
Hash identifier: cbMvoXhxKXnFcLza55hRXYg7uDGo9icWF59FV/6M/r4=
Subject key identifier: 07:51:5E:01:07:17:ED:1E:E3:C3:CB:CA:E3:AD:EE:50:0D:7F:49:0E
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 43C67C0E
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/B1FeAQcX7R7jw8vK463uUA1_SQ4.roa
Signing time: Mon 02 May 2022 07:25:37 +0000
ROA not before: Mon 02 May 2022 07:25:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208760
IP address blocks: 192.165.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1137081358 (0x43c67c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 2 07:25:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07515e010717ed1ee3c3cbcae3adee500d7f490e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:41:1a:90:dc:39:db:61:fa:87:c7:12:8a:ee:
f4:ec:ec:68:9a:68:b7:d3:33:8c:e9:09:d3:07:7b:
a3:ca:1d:6c:60:b8:32:0d:27:da:ad:f4:02:f8:51:
2b:3e:bf:68:be:db:84:a5:3c:ff:3c:89:fe:77:52:
1d:97:97:d6:52:55:41:7a:f3:24:29:aa:01:b1:dd:
93:68:6e:9b:27:92:94:21:03:d9:9c:dd:a5:c2:2c:
d7:cd:58:8a:3d:16:b5:a9:a8:20:ce:cd:d9:9e:00:
71:af:ac:d3:2e:ee:42:d2:7d:2d:cf:95:2d:43:11:
18:d7:49:96:05:fb:c0:cb:3c:24:88:36:44:26:d3:
b3:66:01:79:e0:9e:70:b3:eb:75:76:d2:09:a1:f4:
e1:14:de:70:85:e0:90:0b:bb:a4:67:df:68:24:e6:
35:21:00:e4:de:09:67:f5:b6:7a:6c:1e:c6:d6:85:
d9:b2:60:17:ef:93:fc:66:75:81:d8:f4:c3:d6:78:
5e:ca:5e:41:60:ad:46:c4:b5:45:5d:49:49:23:d7:
a2:6e:83:ff:55:92:25:7b:3a:fe:bb:ac:88:b0:fb:
c2:fe:fa:4b:39:d7:02:5a:7f:c4:7d:43:63:80:9e:
2b:2d:7a:40:0f:a3:46:bb:7d:89:56:06:18:e4:b3:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:51:5E:01:07:17:ED:1E:E3:C3:CB:CA:E3:AD:EE:50:0D:7F:49:0E
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/B1FeAQcX7R7jw8vK463uUA1_SQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.165.10.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:5f:75:07:23:03:ca:91:5a:c0:5e:ac:07:47:55:d3:0d:9d:
ea:a5:90:15:58:62:51:db:b8:15:d6:e9:c6:af:76:1b:da:d7:
d3:03:c7:22:24:7b:1f:5f:d6:32:86:1d:89:7b:59:32:f8:70:
ff:13:24:15:5f:88:1d:66:6b:c9:2f:87:9a:6c:ab:ab:a6:ef:
2b:9c:e3:6a:fd:d5:37:f2:6f:98:a6:d3:4b:2c:15:86:2f:32:
ca:5a:f4:46:0f:75:8f:9f:32:35:d3:16:f3:79:2c:d5:6a:e3:
41:2a:12:6d:4a:fa:8b:b9:c0:9a:31:4e:99:d2:49:b3:a4:61:
01:d4:52:f4:ea:7e:d5:6a:37:ce:a2:57:d1:93:76:7b:96:ad:
d8:82:81:92:b1:68:f7:0d:82:7d:10:16:ed:86:fc:09:d2:6d:
0f:ee:04:a6:4e:02:3c:33:c8:b1:d0:ff:4f:26:4a:e2:14:af:
29:d8:b3:63:bb:53:8f:41:46:08:11:34:04:37:8b:00:f5:bd:
d1:2a:93:13:07:8b:08:d6:63:58:87:1a:1f:f6:a1:c5:6b:3f:
10:af:ca:a3:03:d5:30:94:e5:01:e6:df:0e:3c:c8:13:65:e3:
21:01:90:49:d7:ca:c6:5c:65:71:c2:db:ed:4a:51:bf:0a:e7:
55:f9:59:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org