Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/trnHtPeYj8Ijn2ekR6l1BDPb9Ew.roa
File: trnHtPeYj8Ijn2ekR6l1BDPb9Ew.roa (raw, json)
Hash identifier: dExgNZNrP2qW5h1lgS0Oeg+SDABu8k2faM02Dl8VZgU=
Subject key identifier: B6:B9:C7:B4:F7:98:8F:C2:23:9F:67:A4:47:A9:75:04:33:DB:F4:4C
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 02F5B601
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/trnHtPeYj8Ijn2ekR6l1BDPb9Ew.roa
Signing time: Tue 29 Mar 2022 17:34:11 +0000
ROA not before: Tue 29 Mar 2022 17:34:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209045
IP address blocks: 147.189.192.0/20 maxlen: 22
194.61.20.0/22 maxlen: 22
2a09:7000::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49657345 (0x2f5b601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: Mar 29 17:34:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6b9c7b4f7988fc2239f67a447a9750433dbf44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:21:17:f1:d1:4f:4c:d7:bb:eb:7a:a7:dc:25:
65:45:2a:e4:4f:47:a4:ac:6f:0b:e1:64:76:28:c2:
60:56:14:b3:a0:c9:8a:cb:bf:83:46:58:3f:8d:1c:
0c:8e:d9:1b:26:34:b4:b3:61:c0:99:06:cb:14:66:
73:2c:68:a3:6d:0f:3b:5c:f0:ee:8a:4f:fd:a0:4d:
a0:d5:61:c4:46:71:f6:5b:c9:4b:d5:c1:76:a4:69:
9d:32:b9:13:5e:39:f6:ff:ff:ae:10:c6:d0:cd:2f:
1f:c6:59:1b:27:de:2b:ab:6c:11:65:f1:33:30:f5:
14:51:1c:36:c4:e2:a8:9f:5a:8c:b8:41:e9:a6:54:
45:a5:a0:71:57:99:43:30:ca:c1:69:35:44:bd:39:
2b:6a:82:b5:ff:9e:8b:d2:ec:e0:7a:59:d7:b6:f7:
e2:a4:3c:ed:59:fc:c3:d0:f8:4d:9f:b9:02:48:dd:
43:ff:40:2a:cb:09:b0:61:48:21:18:36:7e:80:e9:
ad:b9:96:25:4a:3b:1d:6b:b4:24:10:7a:5e:79:51:
f7:90:e9:48:06:27:25:6c:15:53:88:11:f9:62:e1:
e5:8a:08:24:9d:81:73:b8:4b:84:8c:70:83:9f:3d:
de:3e:a9:52:d8:4e:44:de:19:a3:58:03:59:db:2c:
13:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B9:C7:B4:F7:98:8F:C2:23:9F:67:A4:47:A9:75:04:33:DB:F4:4C
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/trnHtPeYj8Ijn2ekR6l1BDPb9Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.192.0/20
194.61.20.0/22
IPv6:
2a09:7000::/29
Signature Algorithm: sha256WithRSAEncryption
a7:a2:4b:a5:f4:6e:19:26:9f:fe:a6:9c:41:66:b5:8c:08:93:
d1:41:9e:41:42:5a:a2:bf:3d:bd:bd:10:61:8c:74:aa:4d:0a:
dd:21:29:5e:74:ed:ff:43:f1:2d:c3:bf:3d:6d:b5:60:74:c4:
2a:32:b1:28:bd:2b:43:bf:9f:81:a3:f4:c1:0f:63:54:13:a0:
2c:50:71:63:2e:b3:02:dc:a2:52:aa:29:40:ee:ef:a4:35:02:
bb:40:00:7b:4a:a8:40:45:c2:03:eb:20:5e:03:4c:9c:1f:1b:
f3:32:d6:c2:ba:5e:6f:e1:f4:0e:16:e1:26:78:37:b7:0f:77:
7c:55:91:e1:25:16:f1:fc:63:47:be:d9:dc:17:d1:2d:ea:c3:
27:93:a1:8d:7b:b3:e0:72:02:68:74:1a:20:00:78:76:59:27:
a8:62:e8:6d:a4:14:3d:9c:db:dd:15:44:d1:9f:7a:48:28:fa:
a9:82:7c:17:ff:0f:2a:e1:da:55:bd:10:3b:07:ff:88:cc:8c:
ad:3e:57:a8:87:e0:9b:8d:f1:cf:08:38:b3:16:e0:f6:e7:a2:
ea:ca:08:48:ac:42:cc:aa:78:57:69:ae:11:b4:27:4c:fd:af:
58:52:10:2f:3b:75:61:ef:6d:0b:b4:dc:19:be:60:12:d5:fb:
ea:2c:b6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:36 2024 by rpki-client on console-ams.rpki-client.org