Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b88ff8-fa66-4b7b-a9a0-69c435d32bc4/1/47AcwY-v6vmnjxWy7hmZEizlYd0.roa
File: 47AcwY-v6vmnjxWy7hmZEizlYd0.roa (raw, json)
Hash identifier: 1c4EGik3UkZMIh1B1pnQVj1L5BC5BFohkFC2SfuM964=
Subject key identifier: E3:B0:1C:C1:8F:AF:EA:F9:A7:8F:15:B2:EE:19:99:12:2C:E5:61:DD
Certificate issuer: /CN=f2aa7841643ab912508e610cd00adb6d0088da48
Certificate serial: 07C7811F
Authority key identifier: F2:AA:78:41:64:3A:B9:12:50:8E:61:0C:D0:0A:DB:6D:00:88:DA:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qp4QWQ6uRJQjmEM0ArbbQCI2kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b88ff8-fa66-4b7b-a9a0-69c435d32bc4/1/47AcwY-v6vmnjxWy7hmZEizlYd0.roa
Signing time: Sat 01 Jan 2022 01:03:04 +0000
ROA not before: Sat 01 Jan 2022 01:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203641
IP address blocks: 5.182.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130515231 (0x7c7811f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2aa7841643ab912508e610cd00adb6d0088da48
Validity
Not Before: Jan 1 01:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3b01cc18fafeaf9a78f15b2ee1999122ce561dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ba:f8:3f:55:45:ac:dd:4d:37:7f:9a:7b:9d:
d8:54:d8:c1:e5:80:3f:6f:91:8d:7d:b4:97:05:7e:
bf:61:dc:e2:41:28:8e:9f:70:b3:71:f8:a1:15:be:
75:cb:1f:60:35:f6:4f:9a:76:c8:67:3e:a4:4a:3f:
b5:fb:56:b8:16:f0:84:23:d7:82:1a:81:60:1d:b0:
d8:31:f6:3c:d1:93:68:0b:22:e6:56:b0:d7:af:dd:
61:96:fb:39:78:87:18:3c:c2:3b:8d:76:60:6f:33:
b1:45:f6:35:cc:80:9f:2e:cb:d9:42:50:57:49:77:
14:ea:95:a2:26:b4:2f:03:8d:75:90:aa:bb:aa:44:
47:6b:d8:38:ef:12:b2:d2:c9:c3:f7:8e:c7:d9:7a:
d2:a8:ae:87:3c:37:3e:82:4c:1f:30:d8:66:87:b8:
67:2a:b9:62:80:ba:cb:f0:88:be:5e:f4:79:77:4e:
17:77:3a:88:ef:c4:c2:26:1d:3d:58:d5:1f:06:b9:
59:48:0a:94:a4:85:29:00:43:52:54:89:d5:b8:8b:
67:22:4e:72:d6:63:db:94:1a:da:3d:9f:79:36:d4:
bf:c2:65:ba:60:8d:46:78:a6:cb:98:38:7c:d7:1f:
e4:34:bc:a1:10:f1:06:13:1c:ef:90:77:73:e7:27:
1d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B0:1C:C1:8F:AF:EA:F9:A7:8F:15:B2:EE:19:99:12:2C:E5:61:DD
X509v3 Authority Key Identifier:
keyid:F2:AA:78:41:64:3A:B9:12:50:8E:61:0C:D0:0A:DB:6D:00:88:DA:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qp4QWQ6uRJQjmEM0ArbbQCI2kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b88ff8-fa66-4b7b-a9a0-69c435d32bc4/1/47AcwY-v6vmnjxWy7hmZEizlYd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b88ff8-fa66-4b7b-a9a0-69c435d32bc4/1/8qp4QWQ6uRJQjmEM0ArbbQCI2kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.160.0/22
Signature Algorithm: sha256WithRSAEncryption
73:d6:cf:e2:4d:b2:94:e9:d8:2e:70:b0:02:26:fe:66:e9:20:
eb:46:1d:62:14:a9:5c:85:76:91:7b:c0:b9:e6:c0:46:30:42:
62:bc:9f:fa:ce:46:cc:a2:4c:7c:83:12:88:c7:63:21:49:9d:
f5:67:8d:aa:29:45:aa:50:29:94:39:c8:97:df:3d:75:08:ae:
23:88:9e:b8:c8:d0:d3:b3:84:20:e8:0d:e3:b5:f1:d2:09:c5:
a1:4e:29:b3:c5:76:d3:9a:b4:f3:8c:44:97:cd:3e:ed:6c:d7:
47:57:bc:94:bd:5a:92:14:b8:98:12:c5:e9:96:7e:0a:28:9a:
a1:0c:28:2b:c7:f8:b5:4f:3b:0c:1f:0d:94:6d:30:3c:2a:5f:
c1:43:8e:c5:29:3d:66:e3:bd:e8:d9:9c:68:6f:44:2f:3d:aa:
df:3d:1b:3a:51:1a:8e:1b:c2:3d:68:ac:76:e4:c9:8a:2c:52:
79:23:d1:0e:b3:e1:30:f4:d7:f3:43:75:b3:86:ad:95:74:8a:
07:8c:16:ee:90:1c:1f:1c:2c:3c:26:d1:cc:86:3c:31:1b:c1:
9e:68:c2:f5:f0:95:a7:79:42:78:16:f0:59:cb:7a:72:19:55:
81:f1:8d:e6:58:48:26:76:9c:d9:04:70:9a:49:8b:92:56:1e:
4b:41:8d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:26 2023 by rpki-client on console-ams.rpki-client.org