Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/AE7IlJPnAQYKHwqgbknVY02rJK8.roa
File: AE7IlJPnAQYKHwqgbknVY02rJK8.roa (raw, json)
Hash identifier: A68K6ndA524MtAmKkctuTkaMT57Q/GxHswHRLtLDorc=
Subject key identifier: 00:4E:C8:94:93:E7:01:06:0A:1F:0A:A0:6E:49:D5:63:4D:AB:24:AF
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 0138B690
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/AE7IlJPnAQYKHwqgbknVY02rJK8.roa
Signing time: Mon 23 May 2022 07:13:29 +0000
ROA not before: Mon 23 May 2022 07:13:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 2.59.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20493968 (0x138b690)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: May 23 07:13:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=004ec89493e701060a1f0aa06e49d5634dab24af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:57:b9:99:3f:b0:84:07:f1:5d:6e:74:42:f8:
c4:8d:82:af:8a:9c:ff:ea:34:4a:9d:d1:1e:a1:a7:
bd:51:e9:e6:4e:d6:f7:16:57:88:00:3c:bd:92:f0:
a9:92:28:18:9d:72:55:65:2a:d3:8b:96:ce:f9:78:
49:3f:07:26:2b:17:2e:64:b7:87:e5:43:55:b2:ad:
20:43:9f:d9:79:a9:a3:0f:b1:a5:21:33:cb:b1:11:
e0:0d:1f:b9:b6:70:0c:3f:29:4a:58:e4:ea:02:84:
4a:99:e9:78:cf:0d:51:49:44:7f:fb:eb:c2:e3:00:
19:f6:33:da:1b:7c:96:85:c8:37:f9:da:c1:cd:8a:
05:58:b5:a1:ee:3e:8d:f8:c9:46:e0:fb:ea:49:14:
39:14:47:69:95:61:de:25:10:ae:5b:65:10:45:d8:
5c:b1:75:a5:73:1b:00:2b:1f:f2:d2:c4:7e:be:a0:
13:b0:fb:43:56:03:8f:e4:6e:a7:e3:75:90:e9:a6:
3f:0e:aa:fc:90:41:6d:e3:cf:46:d3:db:f1:18:13:
d0:e5:c0:1a:41:b6:2f:0b:f8:ab:d1:11:14:71:ad:
40:3e:bc:e5:07:33:62:43:c2:48:eb:38:7f:ae:1c:
4a:74:f3:60:3e:91:3d:b3:d6:34:ac:b8:92:0e:58:
c2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4E:C8:94:93:E7:01:06:0A:1F:0A:A0:6E:49:D5:63:4D:AB:24:AF
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/AE7IlJPnAQYKHwqgbknVY02rJK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.182.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:20:19:2a:f5:20:d0:da:1f:62:35:b6:b2:c3:ee:b0:e8:98:
eb:ce:69:a1:cc:16:f2:6c:72:bd:6a:49:be:36:14:4e:6b:12:
23:a7:08:05:2f:81:f3:72:8e:ff:a9:65:e5:c4:3a:9d:1f:fb:
83:5c:16:2c:ea:43:fb:94:3c:48:39:c3:a6:e9:3c:05:19:9a:
94:76:d8:83:7b:74:32:9d:1d:67:37:27:d4:f9:95:e2:a6:5a:
73:fc:a9:87:76:5c:07:3a:81:9f:08:bf:5f:08:ef:1f:d2:fa:
69:96:06:3c:a9:78:6c:02:06:1b:23:82:35:5a:a7:6a:3d:e3:
82:40:08:fd:cb:94:13:5b:d0:51:0d:9e:db:8c:b0:ab:5c:f1:
e4:3f:f2:70:2e:44:49:93:50:96:9a:03:91:63:f4:bd:ba:c1:
ba:39:b0:a2:58:63:98:b1:9e:7a:d1:16:c0:d8:12:fa:ea:03:
3d:e9:b1:8a:6e:58:b1:b6:ac:5d:07:e3:a8:6d:27:dd:26:38:
95:81:03:04:ab:53:b7:f2:d0:22:7c:43:02:07:b0:79:27:77:
02:08:61:e6:99:02:7c:41:64:a8:f0:cd:c1:57:ac:82:55:8d:
f9:0e:2f:63:58:ca:3c:77:d6:b5:30:9c:e5:19:4b:28:f3:cb:
73:96:81:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-fra.rpki-client.org