Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/84b03b-5619-4272-947f-13d51328a9f7/1/4i9Vi63VAslYn26NO_3HuJiKPXs.roa
File: 4i9Vi63VAslYn26NO_3HuJiKPXs.roa (raw, json)
Hash identifier: yOG7oLJXcYAWkhAow28w+FPVOCH5eMAs8br/Wtkglgw=
Subject key identifier: E2:2F:55:8B:AD:D5:02:C9:58:9F:6E:8D:3B:FD:C7:B8:98:8A:3D:7B
Certificate issuer: /CN=93515f25986e4b572a78b109d995c9ddf5da1266
Certificate serial: 63F63A
Authority key identifier: 93:51:5F:25:98:6E:4B:57:2A:78:B1:09:D9:95:C9:DD:F5:DA:12:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k1FfJZhuS1cqeLEJ2ZXJ3fXaEmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/84b03b-5619-4272-947f-13d51328a9f7/1/4i9Vi63VAslYn26NO_3HuJiKPXs.roa
Signing time: Sat 01 Jan 2022 01:54:50 +0000
ROA not before: Sat 01 Jan 2022 01:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60855
IP address blocks: 143.126.251.0/24 maxlen: 24
143.126.250.0/24 maxlen: 24
143.126.250.0/23 maxlen: 23
143.126.249.0/24 maxlen: 24
143.126.248.0/23 maxlen: 23
143.126.248.0/24 maxlen: 24
143.126.255.0/24 maxlen: 24
143.126.203.0/24 maxlen: 24
143.126.100.0/24 maxlen: 24
143.126.211.0/24 maxlen: 24
143.126.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6551098 (0x63f63a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93515f25986e4b572a78b109d995c9ddf5da1266
Validity
Not Before: Jan 1 01:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e22f558badd502c9589f6e8d3bfdc7b8988a3d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7a:e9:7c:46:f5:71:7e:7c:f3:52:7b:7b:81:
da:fb:dc:f9:8e:14:ba:81:d6:aa:c1:31:34:5f:89:
2c:cd:eb:bf:27:6e:c0:37:c3:98:7b:9c:20:ea:e4:
37:d1:bf:db:8c:b1:6a:0c:99:d8:fa:01:3f:1a:3f:
42:35:fd:b2:75:f9:8c:d5:16:ba:9e:bf:90:d6:ba:
fb:06:b7:ed:c9:9d:d3:a0:62:03:e6:5a:4a:97:9c:
f5:59:7c:56:51:3a:cc:08:06:83:4d:8a:99:1f:10:
5b:66:0b:5c:7a:e7:4d:51:07:b5:f0:43:51:e4:cb:
d3:f8:b8:3b:e8:a9:23:69:be:20:4c:63:60:3f:60:
54:c2:93:e0:0e:fa:a5:1c:fb:97:e6:a3:fc:c3:c6:
5a:08:a2:f4:39:8b:0b:db:58:cb:10:25:ce:44:5a:
ab:a0:88:e8:34:12:14:1b:b4:05:aa:69:88:09:19:
ed:57:16:22:fe:51:8f:f2:4c:94:e8:2f:fd:60:72:
ce:b1:47:7d:bc:1e:83:01:f5:c6:e3:34:da:8d:3f:
e9:a5:1c:80:83:7c:f4:bb:53:91:f4:4b:0c:b1:fc:
0e:38:50:06:29:ff:38:86:f6:95:a8:b3:a6:23:60:
c7:80:b4:5e:b1:07:22:77:5b:08:5f:a7:8f:6e:65:
83:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:2F:55:8B:AD:D5:02:C9:58:9F:6E:8D:3B:FD:C7:B8:98:8A:3D:7B
X509v3 Authority Key Identifier:
keyid:93:51:5F:25:98:6E:4B:57:2A:78:B1:09:D9:95:C9:DD:F5:DA:12:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k1FfJZhuS1cqeLEJ2ZXJ3fXaEmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/84b03b-5619-4272-947f-13d51328a9f7/1/4i9Vi63VAslYn26NO_3HuJiKPXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/84b03b-5619-4272-947f-13d51328a9f7/1/k1FfJZhuS1cqeLEJ2ZXJ3fXaEmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.126.100.0/24
143.126.203.0/24
143.126.211.0/24
143.126.221.0/24
143.126.248.0/22
143.126.255.0/24
Signature Algorithm: sha256WithRSAEncryption
92:e4:62:8e:4a:5d:9f:de:31:7f:27:83:c2:a3:95:be:50:3d:
0a:8f:57:06:84:3d:8c:7a:2a:6d:3b:95:6d:cd:2e:71:2f:18:
1c:a2:9e:b0:7e:b8:36:b8:4f:40:bc:9a:b5:d9:9e:7a:31:59:
45:e6:7c:77:94:a4:6a:8c:ce:7b:43:dc:19:07:c0:97:89:83:
48:d5:cb:36:4e:4c:58:a4:d3:a3:69:e8:9c:f1:b7:1d:75:d9:
ff:c9:9d:4f:1a:24:a8:ce:48:cd:8e:d3:05:66:69:dc:7d:df:
e9:cc:f4:11:f6:cc:7d:1d:0f:02:05:17:24:79:9b:22:e0:e1:
9c:39:5e:65:f3:27:7c:6b:5a:aa:70:78:60:a9:15:67:5e:43:
ce:41:44:6a:f2:d6:ad:2b:e1:80:9c:6b:b2:f6:b5:19:ab:f6:
68:aa:6f:ed:f9:12:da:97:18:f0:7d:27:4a:e9:fb:1b:0b:98:
88:05:b8:61:5f:aa:87:0e:3d:1c:fc:4c:af:03:84:54:c9:0a:
0a:25:6b:3b:6d:fc:4a:d0:20:54:54:da:c9:a3:08:27:38:22:
75:a8:5d:87:7e:6f:27:e1:81:58:86:00:16:b6:d5:3d:b6:14:
19:c3:25:2a:78:82:70:90:3e:f9:eb:42:cb:64:89:15:ba:2a:
a9:5e:4d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:11 2024 by rpki-client on console-ams.rpki-client.org