Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/41f4c7-9668-4cf4-9e9d-e0e0468e69d7/1/Twm7KnkdADRp6VYiBo6f6FHqLnc.roa
File: Twm7KnkdADRp6VYiBo6f6FHqLnc.roa (raw, json)
Hash identifier: u61G7CG+HZXxkrebztaPTYBOnyL8mPcIivKsuRzhMng=
Subject key identifier: 4F:09:BB:2A:79:1D:00:34:69:E9:56:22:06:8E:9F:E8:51:EA:2E:77
Certificate issuer: /CN=82b3dcdf31af6ef0c934eaf24884ad99516edd76
Certificate serial: 0957CFE6
Authority key identifier: 82:B3:DC:DF:31:AF:6E:F0:C9:34:EA:F2:48:84:AD:99:51:6E:DD:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grPc3zGvbvDJNOrySIStmVFu3XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/41f4c7-9668-4cf4-9e9d-e0e0468e69d7/1/Twm7KnkdADRp6VYiBo6f6FHqLnc.roa
Signing time: Sat 01 Jan 2022 02:53:25 +0000
ROA not before: Sat 01 Jan 2022 02:53:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398642
IP address blocks: 144.57.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156749798 (0x957cfe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b3dcdf31af6ef0c934eaf24884ad99516edd76
Validity
Not Before: Jan 1 02:53:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f09bb2a791d003469e95622068e9fe851ea2e77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8f:e6:a4:57:00:0c:5f:63:22:79:51:d6:31:
fb:b8:11:ce:20:5e:9d:c4:43:e3:83:33:43:9a:73:
0b:be:e0:9d:92:80:b9:49:91:40:6c:e9:c9:e7:db:
c6:d7:a4:62:96:53:2f:0b:67:65:d2:45:af:ff:06:
2a:8b:ef:56:ae:3c:36:13:d9:5c:f0:7d:fc:4b:bf:
b7:46:82:2c:de:cb:7e:e2:dc:4f:6f:f0:96:6a:84:
37:19:33:92:c9:97:d5:19:32:3d:17:a1:00:13:56:
ac:be:1d:13:b9:ce:6c:63:99:4d:f3:bc:c9:0d:d2:
99:00:0c:05:7a:1b:64:be:cc:8f:5d:2e:49:83:f4:
36:d4:3e:76:f8:08:e0:de:f2:d6:0f:cc:3b:dc:d6:
72:5a:2f:56:f3:46:5a:d0:6f:ca:98:63:29:30:0f:
a0:7f:20:25:bc:97:d0:67:75:37:3c:98:17:91:83:
53:bb:08:73:d7:94:c3:95:7b:3d:47:19:f6:fd:8c:
5c:4e:1c:a2:89:8d:f4:0a:86:eb:91:64:33:97:fb:
be:44:57:35:36:a6:7d:bb:ce:76:9d:ed:50:e9:be:
29:b7:15:35:40:14:0a:9e:69:a2:5f:9c:c2:c9:ce:
b6:f1:a8:e1:a6:ef:aa:fb:ff:1e:6a:19:60:08:7d:
68:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:09:BB:2A:79:1D:00:34:69:E9:56:22:06:8E:9F:E8:51:EA:2E:77
X509v3 Authority Key Identifier:
keyid:82:B3:DC:DF:31:AF:6E:F0:C9:34:EA:F2:48:84:AD:99:51:6E:DD:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grPc3zGvbvDJNOrySIStmVFu3XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/41f4c7-9668-4cf4-9e9d-e0e0468e69d7/1/Twm7KnkdADRp6VYiBo6f6FHqLnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/41f4c7-9668-4cf4-9e9d-e0e0468e69d7/1/grPc3zGvbvDJNOrySIStmVFu3XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.57.48.0/21
Signature Algorithm: sha256WithRSAEncryption
22:60:cf:ed:a3:1b:34:f9:5b:ea:20:3c:a9:7a:6c:40:e8:5b:
8a:5e:ea:5d:a1:24:d3:80:44:17:19:4f:9a:18:22:3a:4c:25:
75:ed:f3:fd:2e:fd:36:45:d9:1c:fe:62:da:16:fd:1f:42:f7:
4b:e9:f4:ac:6e:81:e0:24:37:29:f2:ed:85:cb:9f:25:95:a0:
7c:7d:92:9b:9a:37:77:f8:b2:f6:de:eb:e5:e9:c7:d4:3f:dc:
16:8e:0e:49:64:84:59:d5:56:32:c8:64:f8:f8:e5:dc:c3:2b:
66:e4:e2:4c:5b:1c:9b:9c:24:c0:b8:01:a4:79:1a:18:2a:85:
5e:76:8a:42:b0:9c:1b:8e:4d:b5:e0:d3:c8:0c:51:6c:e0:59:
17:a0:0b:f3:f9:84:67:4e:b2:8c:6c:00:a6:ba:12:07:a3:53:
e9:23:b7:a4:61:be:80:1b:bc:b6:44:d1:5f:f9:21:ee:19:3a:
c1:c7:3b:d0:65:e2:69:43:5c:c6:ea:9d:fd:1b:ac:7a:fb:95:
e1:1e:07:c8:86:e3:d3:38:dc:6b:a7:65:63:2a:cb:9d:02:e6:
00:c2:3f:9e:e7:81:73:6d:62:92:f2:b4:b6:84:c7:6a:ce:42:
d7:bb:12:e8:c7:03:fd:1a:b2:58:81:4f:cf:68:2d:fa:e2:37:
98:f6:83:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:28 2023 by rpki-client on console-fra.rpki-client.org