Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/rBVD37rjpy77DfaKaAeRiu2-rdI.roa
File: rBVD37rjpy77DfaKaAeRiu2-rdI.roa (raw, json)
Hash identifier: CdAh3A0ZAGn63x+swqRzgQoLUcdYeApIePrLcqZhJHo=
Subject key identifier: AC:15:43:DF:BA:E3:A7:2E:FB:0D:F6:8A:68:07:91:8A:ED:BE:AD:D2
Certificate issuer: /CN=90620638ca1d835650e08ddcf363f10789b53057
Certificate serial: 22AFDAD7
Authority key identifier: 90:62:06:38:CA:1D:83:56:50:E0:8D:DC:F3:63:F1:07:89:B5:30:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/rBVD37rjpy77DfaKaAeRiu2-rdI.roa
Signing time: Sat 01 Jan 2022 12:03:07 +0000
ROA not before: Sat 01 Jan 2022 12:03:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397918
IP address blocks: 206.195.48.0/24 maxlen: 24
2a04:5781:3001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 581950167 (0x22afdad7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90620638ca1d835650e08ddcf363f10789b53057
Validity
Not Before: Jan 1 12:03:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac1543dfbae3a72efb0df68a6807918aedbeadd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:80:4c:71:08:fc:fa:f8:1f:f1:7c:94:e6:4d:
58:18:54:2b:48:1a:16:e2:44:b5:e6:43:3a:a3:81:
bc:fd:a9:f1:e9:a5:7d:3f:5d:80:1f:5a:3a:cf:6a:
e7:53:25:04:ea:11:31:37:fe:d8:89:48:22:cf:d0:
56:2c:6f:01:c1:63:b1:70:d8:e9:7b:c0:39:76:ed:
c2:67:d9:40:18:8f:41:d0:b1:9f:b2:79:c6:e8:0b:
e6:55:21:4c:d3:cf:e4:58:05:bf:fc:f9:f4:3c:e5:
4b:95:0f:ee:c7:a7:dc:e8:0f:93:e8:a3:1b:cc:69:
7b:a2:b0:4a:40:e7:f4:ff:74:b9:20:9e:dc:f1:6b:
42:3b:24:5c:78:49:d7:40:f5:a1:9b:93:e1:b2:19:
bf:1d:50:2f:25:4e:86:77:38:aa:ef:94:fe:24:04:
a5:8c:df:0d:4c:21:f1:dc:b0:a9:32:af:00:b6:4e:
88:79:1e:68:d5:2c:c6:16:2d:51:16:59:1d:68:f6:
32:17:0e:15:28:d9:6f:52:e5:5a:fb:5b:4a:78:47:
d0:b3:b6:a3:a2:42:47:d6:6e:d7:fe:7e:00:8a:28:
66:33:8a:39:4d:de:1f:b1:d2:1f:5b:88:f7:97:20:
20:9f:05:ce:24:14:28:2c:49:5e:11:ec:9f:a7:f6:
81:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:15:43:DF:BA:E3:A7:2E:FB:0D:F6:8A:68:07:91:8A:ED:BE:AD:D2
X509v3 Authority Key Identifier:
keyid:90:62:06:38:CA:1D:83:56:50:E0:8D:DC:F3:63:F1:07:89:B5:30:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/rBVD37rjpy77DfaKaAeRiu2-rdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/kGIGOModg1ZQ4I3c82PxB4m1MFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.195.48.0/24
IPv6:
2a04:5781:3001::/48
Signature Algorithm: sha256WithRSAEncryption
4c:7c:7d:70:23:a5:76:b5:7b:bf:05:93:7e:fd:6a:8a:d4:d2:
da:7c:c6:ea:72:f2:25:71:38:54:92:df:c4:89:2b:db:d9:d4:
ed:d3:cd:64:06:48:81:13:7a:21:53:6c:34:3b:1a:d7:f1:8e:
f4:b5:ed:d8:8d:23:3b:eb:16:48:84:05:23:f5:8b:d0:7d:28:
51:b4:07:35:7b:0b:39:98:f1:86:4c:a2:9e:2e:d5:d1:9b:f2:
87:5e:b1:a5:20:ba:ad:f2:c9:20:11:5d:36:ac:04:b7:e8:a4:
ba:32:4b:53:60:6e:b2:15:30:29:ca:fb:2a:5a:8e:27:37:d5:
f6:b4:16:31:43:8b:e0:5b:90:e8:b5:e6:ea:3c:84:3b:b1:fe:
45:81:84:e6:fc:c5:3d:3d:33:38:f8:e0:65:25:63:de:01:11:
62:fb:d8:5f:4d:99:f9:d9:db:e1:63:5d:bf:2c:b8:fa:ef:4c:
a4:87:c9:3d:cb:17:ef:cd:a2:1c:40:54:b8:f1:84:1f:5c:9d:
9f:30:2c:02:00:93:41:00:02:ed:7b:a3:e6:ac:ad:c0:85:bf:
0f:fd:b5:e8:1c:1e:cc:82:93:7d:b1:c0:e2:b2:6c:fe:4b:17:
c0:cb:0b:cc:60:7e:90:2a:c2:d9:a4:8b:9d:f5:b3:a2:6c:0f:
82:1e:44:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:27 2023 by rpki-client on console-fra.rpki-client.org