Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9e024e-c6e5-4977-b369-1ff9ff192cd7/1/AtpLSZgzdN4Fr3hfT5-8r6buFi8.roa
File: AtpLSZgzdN4Fr3hfT5-8r6buFi8.roa (raw, json)
Hash identifier: elzwvh1FSdXxhjm9j5wsQG4xTMiIb5FGNwroXgX1kyg=
Subject key identifier: 02:DA:4B:49:98:33:74:DE:05:AF:78:5F:4F:9F:BC:AF:A6:EE:16:2F
Certificate issuer: /CN=4aae738ee1782735939a4fb0d672a6317b7f5243
Certificate serial: 12E57D50
Authority key identifier: 4A:AE:73:8E:E1:78:27:35:93:9A:4F:B0:D6:72:A6:31:7B:7F:52:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sq5zjuF4JzWTmk-w1nKmMXt_UkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9e024e-c6e5-4977-b369-1ff9ff192cd7/1/AtpLSZgzdN4Fr3hfT5-8r6buFi8.roa
Signing time: Sat 01 Jan 2022 14:56:01 +0000
ROA not before: Sat 01 Jan 2022 14:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 192.53.103.0/24 maxlen: 24
141.25.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317029712 (0x12e57d50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aae738ee1782735939a4fb0d672a6317b7f5243
Validity
Not Before: Jan 1 14:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02da4b49983374de05af785f4f9fbcafa6ee162f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9d:a6:10:c4:47:64:e3:25:d3:ff:1f:2d:23:
f1:44:97:b1:b2:cf:b8:69:15:a9:3e:5f:12:a0:72:
e3:f2:b7:49:46:7a:ba:99:7e:3e:a1:08:7f:8d:15:
ba:2f:63:b1:3f:e6:45:ad:f4:27:c5:d4:bd:a5:bf:
12:34:ee:d5:be:a0:61:07:66:d3:a0:ee:d5:39:72:
ef:8d:85:0d:87:52:23:79:5d:11:2c:01:09:6d:6f:
24:86:a8:31:af:2e:90:c4:b1:69:9f:87:95:ca:61:
b9:7c:06:1c:42:2d:c1:1e:3b:78:f1:09:d1:ef:ad:
78:86:c8:97:a4:8c:00:f8:89:9e:fe:2c:fb:c2:66:
52:6d:16:d6:0b:a3:01:00:43:a8:7e:33:20:17:c7:
85:f9:99:77:3c:ce:bb:6f:99:32:b4:8b:52:28:d6:
32:52:24:c7:8b:51:c8:9b:6e:0d:4f:e1:6f:87:3a:
d2:83:af:a9:dc:97:be:54:16:b8:e3:62:75:d9:f8:
8b:da:95:da:39:97:5b:93:b0:ab:0c:f7:c7:38:cf:
dc:c3:dd:06:90:b5:f9:f7:d0:57:cd:95:6b:a7:87:
52:9a:3c:09:51:cf:14:1d:92:aa:2a:80:76:76:e5:
d5:21:02:8d:93:14:1b:67:2b:1c:82:c3:7a:42:7c:
80:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DA:4B:49:98:33:74:DE:05:AF:78:5F:4F:9F:BC:AF:A6:EE:16:2F
X509v3 Authority Key Identifier:
keyid:4A:AE:73:8E:E1:78:27:35:93:9A:4F:B0:D6:72:A6:31:7B:7F:52:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sq5zjuF4JzWTmk-w1nKmMXt_UkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9e024e-c6e5-4977-b369-1ff9ff192cd7/1/AtpLSZgzdN4Fr3hfT5-8r6buFi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9e024e-c6e5-4977-b369-1ff9ff192cd7/1/Sq5zjuF4JzWTmk-w1nKmMXt_UkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.25.0.0/16
192.53.103.0/24
Signature Algorithm: sha256WithRSAEncryption
18:b1:54:6b:c8:0c:5f:f2:36:a8:4e:53:51:4b:ca:69:da:d8:
35:8e:dc:6c:a1:24:41:26:95:98:4f:a8:72:7a:51:07:5c:80:
87:78:1e:66:f5:a1:8d:b9:44:67:8d:f3:7c:13:9c:78:5d:b3:
a7:76:ee:51:d5:18:2a:a0:6c:75:d3:35:9c:d6:3d:13:92:65:
5e:d3:84:eb:85:95:10:62:48:f8:0b:17:d0:ca:46:d8:b4:93:
9a:76:57:8c:a2:40:74:3d:6d:99:22:a3:65:1f:e6:c3:c4:01:
e4:cb:c9:c0:90:5d:a2:a5:3c:96:69:bb:1b:41:63:05:e0:18:
d8:ad:19:50:99:58:77:11:1b:ea:fb:0b:62:08:c6:70:51:a7:
d8:86:45:bb:43:f6:ad:22:c4:2c:a1:36:1e:4e:bf:21:30:b3:
7f:b9:3f:0c:27:47:a2:1c:0a:c8:0b:ea:42:00:e3:0f:29:e9:
2f:75:35:32:6a:2d:b9:9f:2d:8a:6f:2f:20:c9:58:70:51:fd:
c4:7c:d3:e9:97:35:d8:52:9a:80:6a:7b:01:c8:ab:85:e5:70:
76:b4:d1:5a:cf:a7:a3:87:a7:86:f4:c8:42:1d:bc:c7:82:34:
3b:11:d9:a4:b5:f3:9e:2c:bb:2c:d8:26:c9:fd:46:c4:8c:66:
5e:88:f4:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net