Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/deb70d-1ffd-4da0-a097-d8a0b41f46e8/1/sBPmTDyHUd30LIM6tQ44Xy9KFgw.roa
File: sBPmTDyHUd30LIM6tQ44Xy9KFgw.roa (raw, json)
Hash identifier: OfsPR4uykend2Hb3EqAEtnS0KNCSxF1ze2fdG8R/wKg=
Subject key identifier: B0:13:E6:4C:3C:87:51:DD:F4:2C:83:3A:B5:0E:38:5F:2F:4A:16:0C
Certificate issuer: /CN=c5a1fb5bbc2fa8571e3d5f8cae4196a8d7e96c35
Certificate serial: 09247967
Authority key identifier: C5:A1:FB:5B:BC:2F:A8:57:1E:3D:5F:8C:AE:41:96:A8:D7:E9:6C:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaH7W7wvqFcePV-MrkGWqNfpbDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/deb70d-1ffd-4da0-a097-d8a0b41f46e8/1/sBPmTDyHUd30LIM6tQ44Xy9KFgw.roa
Signing time: Sat 01 Jan 2022 09:02:19 +0000
ROA not before: Sat 01 Jan 2022 09:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1715
IP address blocks: 141.115.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153385319 (0x9247967)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a1fb5bbc2fa8571e3d5f8cae4196a8d7e96c35
Validity
Not Before: Jan 1 09:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b013e64c3c8751ddf42c833ab50e385f2f4a160c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:87:40:df:0a:9b:72:ec:d5:a7:75:81:32:01:
6f:05:78:a6:e9:32:14:e2:24:55:f0:46:b3:56:7f:
93:c7:a6:e8:fc:dd:60:20:6c:33:58:08:e4:7d:56:
7b:48:48:df:57:79:c0:28:71:7a:38:42:a1:26:75:
b4:f7:b7:6b:7d:75:70:20:15:0f:e4:b5:a2:9c:51:
1c:e6:89:c8:56:52:6c:55:12:72:83:59:c1:bb:7c:
c3:50:5c:16:21:05:01:3c:35:29:ef:21:fa:c8:12:
41:80:98:08:72:78:6c:3d:e1:93:57:3f:d2:fd:80:
96:a4:74:4a:d0:d7:ff:07:9f:86:98:27:e5:e2:4f:
35:05:ff:9e:ef:c9:fb:5c:7d:86:73:f7:bf:d3:f0:
dc:cc:70:44:34:10:26:81:c7:f3:60:b6:5a:75:36:
d9:a8:e9:65:18:a7:c8:99:9f:0a:b1:da:c8:7b:36:
69:58:95:fc:93:19:b0:b0:6c:ca:c4:a2:5c:ac:9c:
95:87:fe:a3:ad:04:be:1c:67:7d:ee:e8:74:ca:21:
64:4f:99:19:b4:b5:19:96:4b:52:a0:92:c1:7b:f8:
a2:56:15:07:08:d8:ba:4f:36:3c:af:8f:5a:f5:d0:
fa:0a:e5:88:57:bc:7b:84:ca:b2:0f:85:f3:5a:97:
c4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:13:E6:4C:3C:87:51:DD:F4:2C:83:3A:B5:0E:38:5F:2F:4A:16:0C
X509v3 Authority Key Identifier:
keyid:C5:A1:FB:5B:BC:2F:A8:57:1E:3D:5F:8C:AE:41:96:A8:D7:E9:6C:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaH7W7wvqFcePV-MrkGWqNfpbDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/deb70d-1ffd-4da0-a097-d8a0b41f46e8/1/sBPmTDyHUd30LIM6tQ44Xy9KFgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/deb70d-1ffd-4da0-a097-d8a0b41f46e8/1/xaH7W7wvqFcePV-MrkGWqNfpbDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b0:8a:58:2a:18:50:5d:88:98:2f:10:1b:da:8b:e4:11:65:3e:
99:ed:ce:a7:7a:08:ac:65:79:11:b3:8d:a9:3b:72:4b:dc:36:
fe:dc:4d:ef:d1:aa:25:12:80:34:ed:7e:ff:66:68:c9:55:9e:
15:3e:81:02:93:84:2f:7d:d2:ef:f2:5c:e3:3f:10:06:9d:a3:
ab:68:85:a0:78:16:67:8f:62:82:66:d7:92:12:b3:69:b8:16:
8c:4e:cc:01:c8:66:1d:44:66:38:2f:74:3b:b8:b3:fa:0b:83:
b5:69:23:9c:5a:34:b3:46:44:b9:f2:fc:6e:7f:6d:2a:ac:1e:
f5:71:19:12:4f:83:c1:3a:a5:22:47:e0:7e:f3:46:4f:03:ae:
72:4a:6d:96:e1:cd:79:b4:dc:c0:66:6d:c4:4b:e1:cf:65:05:
49:77:9a:2e:ad:2e:7d:7f:33:8c:7d:d1:99:0c:d7:79:ea:b8:
84:b2:0b:a6:eb:cd:f4:a5:a0:38:10:2e:88:c5:63:39:04:23:
0e:6d:0d:57:4e:01:19:a8:6d:26:5b:62:bf:b8:80:16:c9:ab:
ba:1b:ec:a7:39:77:e0:96:0a:ef:96:62:4a:2e:63:18:b0:16:
a0:24:63:8c:6f:8f:53:50:df:89:96:c6:36:c5:1c:b3:c2:f4:
d8:0b:3d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:24 2023 by rpki-client on console-ams.rpki-client.org