Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/hsFJym0TVurDhzYZJtxnAZ3VAyQ.roa
File: hsFJym0TVurDhzYZJtxnAZ3VAyQ.roa (raw, json)
Hash identifier: somp29btpEWzcLf2s4yz26OKkf5RS7GGdcKP4X4CMEs=
Subject key identifier: 86:C1:49:CA:6D:13:56:EA:C3:87:36:19:26:DC:67:01:9D:D5:03:24
Certificate issuer: /CN=f7822d4597e5493d15178bfb10e6841dd17e5897
Certificate serial: 01849E6602962F9629116D87D899BB1E526B
Authority key identifier: F7:82:2D:45:97:E5:49:3D:15:17:8B:FB:10:E6:84:1D:D1:7E:58:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/94ItRZflST0VF4v7EOaEHdF-WJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/hsFJym0TVurDhzYZJtxnAZ3VAyQ.roa
Signing time: Tue 22 Nov 2022 08:13:16 +0000
ROA not before: Tue 22 Nov 2022 08:13:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202098
IP address blocks: 158.47.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:66:02:96:2f:96:29:11:6d:87:d8:99:bb:1e:52:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7822d4597e5493d15178bfb10e6841dd17e5897
Validity
Not Before: Nov 22 08:13:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86c149ca6d1356eac387361926dc67019dd50324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:48:ae:1e:68:d6:27:f6:6b:46:53:79:58:d0:
5e:e3:10:40:54:be:79:47:3a:b0:38:94:78:b1:f2:
58:44:d5:ad:cc:c1:9e:53:85:6f:8f:6a:93:72:26:
52:34:10:0a:f0:7a:c2:a7:44:ab:25:51:01:13:41:
5a:b3:3c:e9:98:4d:61:d8:b1:81:23:69:cb:b8:23:
aa:b4:e3:b5:70:2a:95:fc:9e:c2:7e:04:e4:7c:48:
6c:8d:84:af:a2:cf:c0:3e:d6:41:bb:c2:55:5a:a6:
43:36:2e:b4:6f:06:9f:6e:8a:ba:b9:de:e8:bf:50:
51:c0:e1:cd:38:5e:ec:9a:c5:17:b4:36:08:54:ce:
79:c7:07:63:a2:63:8d:c7:a6:29:ad:a2:86:32:16:
1b:a7:28:f3:7d:c3:db:f7:3c:11:55:bc:81:0d:d5:
65:68:5b:09:90:b8:0f:b2:66:fb:de:62:7f:65:0d:
3e:3f:82:58:0b:c4:4d:b7:fc:54:c3:22:b9:25:96:
6c:33:5b:45:8f:5a:d4:bb:a1:f9:b5:dc:b9:be:3b:
52:5b:69:2f:52:24:c7:79:92:4f:b8:ec:60:7c:05:
95:43:64:fc:6b:21:bb:7e:b3:f1:e4:80:85:99:5d:
9f:a1:39:0e:9b:ea:f1:f3:c6:94:04:e1:c5:0c:f2:
54:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C1:49:CA:6D:13:56:EA:C3:87:36:19:26:DC:67:01:9D:D5:03:24
X509v3 Authority Key Identifier:
keyid:F7:82:2D:45:97:E5:49:3D:15:17:8B:FB:10:E6:84:1D:D1:7E:58:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/94ItRZflST0VF4v7EOaEHdF-WJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/hsFJym0TVurDhzYZJtxnAZ3VAyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/94ItRZflST0VF4v7EOaEHdF-WJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.47.224.0/19
Signature Algorithm: sha256WithRSAEncryption
a9:c1:71:28:49:cc:1d:e6:b6:ea:1c:ba:04:28:d6:88:06:70:
01:4d:7e:04:b5:37:94:1b:1c:c8:90:b4:3a:47:6b:35:c6:63:
41:09:5d:18:96:da:6e:ae:3d:b0:8f:f0:f4:03:c9:4d:04:b4:
29:5f:70:98:66:42:41:d7:48:58:a7:db:88:62:82:76:b3:49:
db:dd:a8:14:b3:e5:bc:63:82:bb:b9:7f:8a:27:9d:c3:24:03:
8e:64:6a:a3:e7:12:61:60:50:19:1e:bb:f3:6c:45:b8:2f:46:
16:24:05:2c:ba:1c:ec:a2:80:3d:40:8a:4a:4e:00:65:71:49:
d1:58:3d:ba:36:81:43:34:e4:f6:2a:f8:1f:a1:2c:0a:72:da:
24:3c:42:08:06:d2:36:3d:78:87:2a:7c:46:cc:b5:48:b9:b4:
fa:5d:57:ef:1a:da:6f:b6:73:ec:ea:ed:5f:20:96:e5:29:56:
40:c3:88:20:9c:d4:ca:a0:7a:66:90:fa:c9:6b:8e:1b:a1:c1:
87:8c:db:4f:5b:66:1b:24:3c:45:9a:b6:b0:04:22:c6:33:c0:
74:f9:9b:87:fc:15:27:c5:ea:07:1c:cd:3f:dd:b6:8e:a4:e6:
ee:c8:7a:8b:0b:55:9b:a0:b1:a5:d9:a0:8f:ec:b3:6b:d9:9f:
cb:e4:f0:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:24 2024 by rpki-client on console-ams.rpki-client.org