Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/1-2ZrhFb4pFqMdkF-5ZQtw-UmOo0.roa
File: 1-2ZrhFb4pFqMdkF-5ZQtw-UmOo0.roa (raw, json)
Hash identifier: sCHASdsmDcn8ah+k9jDQvfOnhjfjkP3p6QLOzGQZMtg=
Subject key identifier: FB:66:6B:84:56:F8:A4:5A:8C:76:41:7E:E5:94:2D:C3:E5:26:3A:8D
Certificate issuer: /CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Certificate serial: 044E04E1
Authority key identifier: BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/1-2ZrhFb4pFqMdkF-5ZQtw-UmOo0.roa
Signing time: Sat 01 Jan 2022 06:54:27 +0000
ROA not before: Sat 01 Jan 2022 06:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140693
IP address blocks: 157.23.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72221921 (0x44e04e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bba35cf8ab6f3eaa2aebadd9e2373dec0893625e
Validity
Not Before: Jan 1 06:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb666b8456f8a45a8c76417ee5942dc3e5263a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4b:a9:85:1c:0d:05:4f:ba:be:99:de:11:f4:
c0:f9:15:58:49:5c:d3:0d:f5:70:40:ba:0d:3f:7b:
01:60:79:6c:9d:5d:06:52:1e:ea:1e:48:ce:a9:24:
d0:7c:33:23:69:a0:2e:13:6d:69:46:c8:f0:ff:78:
37:ca:8a:73:95:24:f2:1e:3e:3f:cc:d9:ee:15:f9:
2e:6c:b4:8a:44:86:61:1e:de:59:d9:e2:4b:73:e0:
d3:bc:23:3d:ec:b3:eb:39:df:20:52:09:b0:10:3a:
6f:27:55:24:bb:7f:42:07:d6:b9:63:fd:64:26:cc:
55:fd:fe:97:a8:9b:fa:b0:14:f8:93:e2:2b:b4:56:
b7:64:da:f0:2b:e7:23:81:56:4a:2c:2a:69:c2:17:
2a:07:27:53:b9:05:a1:e2:ba:ec:e4:9c:71:36:f5:
03:d9:ff:e9:f5:61:6a:70:eb:b7:54:1b:e9:f3:47:
0f:5b:65:6b:90:db:80:a5:ef:5b:85:be:4c:5c:e1:
85:b4:0e:26:2e:09:76:c6:9c:77:20:cc:58:67:b2:
e0:37:3c:f0:b3:76:dd:cb:b1:3e:1d:ea:1a:12:d9:
7d:50:02:fa:31:4a:ce:e9:a1:76:2c:79:06:6f:9e:
73:e8:e3:d5:cd:d8:5e:84:a3:14:85:88:ac:af:26:
e8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:66:6B:84:56:F8:A4:5A:8C:76:41:7E:E5:94:2D:C3:E5:26:3A:8D
X509v3 Authority Key Identifier:
keyid:BB:A3:5C:F8:AB:6F:3E:AA:2A:EB:AD:D9:E2:37:3D:EC:08:93:62:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u6Nc-KtvPqoq663Z4jc97AiTYl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/1-2ZrhFb4pFqMdkF-5ZQtw-UmOo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a0e01a-9bbc-44ee-98a3-597b6e2492ab/1/u6Nc-KtvPqoq663Z4jc97AiTYl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.23.248.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:96:fb:5e:b3:bc:4f:e3:ca:60:77:58:a4:cb:2c:3d:33:06:
38:a1:02:c5:2c:56:a7:4d:2f:70:d6:16:39:e0:ec:a4:84:93:
14:5a:28:1b:30:e3:d2:71:e4:bb:4d:5f:fa:d3:d4:60:f2:20:
51:39:38:03:66:17:13:41:d1:63:89:ad:b2:53:e6:7e:4f:38:
4d:11:2f:9a:39:0c:5b:6e:21:87:10:b8:e0:0d:94:b1:ec:11:
92:e8:08:ea:ee:fe:eb:8f:fb:e3:17:d9:74:92:e7:cd:cf:6c:
cd:89:b7:56:30:d7:9c:a8:15:f9:97:92:e1:c7:b3:6e:8f:93:
a6:87:62:6f:df:db:e7:59:18:6f:bb:22:51:47:5c:91:9c:fb:
b3:da:9b:f0:a8:38:68:36:5e:ba:61:3f:16:12:9d:78:7f:80:
d9:83:75:c8:e2:da:71:00:f2:91:db:7e:4a:9e:8c:70:59:d7:
2e:f2:3c:43:c4:7b:b7:43:df:a7:80:da:96:5e:24:dc:43:bc:
79:81:09:f9:6e:5a:cf:1e:26:18:15:e9:0d:27:ff:c6:e3:8d:
f3:bc:92:b5:ae:13:7b:d7:24:3e:66:05:5c:a1:de:9e:ea:bf:
fc:8b:d4:10:52:3a:69:02:c5:5e:90:16:d4:3a:d4:09:26:25:
21:7f:24:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:32 2024 by rpki-client on console-fra.rpki-client.org