Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/03f256-7401-4af4-97d0-ead1af8691ba/1/wJzSa_Jq2R5mhhE_-1LB75R8Os8.roa
File: wJzSa_Jq2R5mhhE_-1LB75R8Os8.roa (raw, json)
Hash identifier: Q5Ql9Yi0aQuxXdQhFzGqkDWSN0fKMfgQHE7AyP+1Mqc=
Subject key identifier: C0:9C:D2:6B:F2:6A:D9:1E:66:86:11:3F:FB:52:C1:EF:94:7C:3A:CF
Certificate issuer: /CN=9be0a611e0678b8d329ee550312b246e0dcf4698
Certificate serial: 130ECB90
Authority key identifier: 9B:E0:A6:11:E0:67:8B:8D:32:9E:E5:50:31:2B:24:6E:0D:CF:46:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-CmEeBni40ynuVQMSskbg3PRpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/03f256-7401-4af4-97d0-ead1af8691ba/1/wJzSa_Jq2R5mhhE_-1LB75R8Os8.roa
Signing time: Sat 01 Jan 2022 12:03:47 +0000
ROA not before: Sat 01 Jan 2022 12:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6744
IP address blocks: 150.140.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319736720 (0x130ecb90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9be0a611e0678b8d329ee550312b246e0dcf4698
Validity
Not Before: Jan 1 12:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c09cd26bf26ad91e6686113ffb52c1ef947c3acf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5f:cc:f4:9a:9f:0c:f2:70:fb:64:fd:c1:ea:
eb:ff:01:56:29:f0:14:9b:d4:f2:69:ea:ef:e2:f4:
cc:3e:a4:20:0b:e1:31:38:b3:62:de:b9:e5:b5:d6:
de:64:0c:3e:3f:bb:60:56:79:7b:96:b0:58:33:f8:
b9:c7:d6:ac:a5:fc:00:7d:2d:08:37:ed:fa:61:36:
b4:a1:75:d5:df:8c:16:3a:30:3f:f5:42:8b:1d:88:
1d:f5:5d:4e:e8:8a:8a:18:97:28:54:e1:bc:f2:58:
92:fc:87:df:bf:df:c8:1f:31:10:d5:eb:a8:f9:b6:
ba:c4:79:98:68:d4:7d:d9:8c:6b:b6:ec:b1:41:a5:
e6:e6:9e:7e:e2:da:2c:f1:cc:ba:20:8d:3b:44:f6:
d4:aa:da:14:ac:45:be:b8:b5:6d:c2:e8:db:49:fb:
bf:f2:6a:c1:c6:2c:74:a7:a9:47:2a:be:68:50:be:
92:6a:8b:2a:2b:ec:34:3f:6a:8c:94:89:aa:b8:c4:
36:d9:60:48:3b:01:00:b6:5e:54:4b:f4:c9:18:6a:
7b:d9:25:69:59:88:74:b6:7f:b7:1a:70:e8:d9:ff:
e9:1e:d7:de:b0:9c:53:a6:6f:c6:c1:87:05:32:13:
70:65:d5:d2:29:44:f7:78:2f:57:ef:0f:7c:19:11:
74:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:9C:D2:6B:F2:6A:D9:1E:66:86:11:3F:FB:52:C1:EF:94:7C:3A:CF
X509v3 Authority Key Identifier:
keyid:9B:E0:A6:11:E0:67:8B:8D:32:9E:E5:50:31:2B:24:6E:0D:CF:46:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-CmEeBni40ynuVQMSskbg3PRpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/03f256-7401-4af4-97d0-ead1af8691ba/1/wJzSa_Jq2R5mhhE_-1LB75R8Os8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/03f256-7401-4af4-97d0-ead1af8691ba/1/m-CmEeBni40ynuVQMSskbg3PRpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.140.0.0/17
Signature Algorithm: sha256WithRSAEncryption
02:ce:d5:4a:96:64:3c:3b:d0:d3:d7:af:d6:ea:52:67:84:c8:
ec:de:c3:f1:f8:1c:48:6c:cc:36:8c:bf:3e:90:c9:b0:a6:43:
14:23:4d:38:b7:4b:4c:60:f9:7f:3d:f6:84:fc:32:e6:e8:f8:
2b:62:6c:50:7f:24:dd:f7:62:61:3a:e9:45:7c:e8:b0:bb:25:
ab:e7:d3:46:e0:7e:b4:55:d8:ff:d1:e1:ee:09:05:65:27:8b:
cc:9a:0b:b3:f0:68:40:f6:d2:e0:21:c6:48:6e:ab:2d:62:5f:
d7:3b:83:6f:cd:9b:5c:1c:90:b0:68:79:3c:70:28:2d:ff:af:
ea:97:07:58:5a:92:75:63:83:0c:3d:7f:84:0a:25:51:bc:cc:
35:ac:e5:14:72:29:54:62:e6:be:21:79:88:5a:f1:6b:cb:a8:
80:1e:61:5a:46:d8:11:a0:95:19:d7:f4:82:8f:be:72:1f:1c:
71:0c:94:42:71:7f:ff:de:15:69:57:3c:4c:74:c6:f4:25:39:
d7:fb:e6:1a:d3:06:6f:9c:d1:b2:85:4d:40:ef:f0:28:f4:75:
a8:4e:75:dd:c0:4d:4d:53:71:ef:a6:dd:02:84:fc:2a:d9:1d:
83:bf:9e:fb:14:e4:4c:b8:10:f7:78:f3:d7:84:ef:b6:7e:4f:
af:f4:f3:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:03 2024 by rpki-client on console-fra.rpki-client.org