Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/auF2IcVrbWOi8EZYhZriE2YjPjI.roa
File: auF2IcVrbWOi8EZYhZriE2YjPjI.roa (raw, json)
Hash identifier: xt9mt2x+9qmNO7DR3FACAMqxCVaHM2ioHmeDVgjnX18=
Subject key identifier: 6A:E1:76:21:C5:6B:6D:63:A2:F0:46:58:85:9A:E2:13:66:23:3E:32
Certificate issuer: /CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Certificate serial: C11899
Authority key identifier: 61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/auF2IcVrbWOi8EZYhZriE2YjPjI.roa
Signing time: Wed 18 May 2022 01:39:29 +0000
ROA not before: Wed 18 May 2022 01:39:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 159.60.0.0/20 maxlen: 24
159.60.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12654745 (0xc11899)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Validity
Not Before: May 18 01:39:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ae17621c56b6d63a2f04658859ae21366233e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:44:8e:37:8d:b9:7a:00:f3:1b:39:9c:50:ac:
86:e3:fd:03:70:6e:c3:4d:13:cf:b3:9e:64:0e:f9:
13:b5:17:51:e8:87:ca:32:74:3f:69:97:3f:25:7c:
46:34:80:aa:49:a6:aa:74:05:20:3e:98:5a:75:c3:
24:89:db:17:f9:2e:80:5d:fb:43:ff:a5:c0:5c:e7:
a9:ee:02:f5:78:de:d2:61:2e:c7:32:36:a5:17:2e:
60:f2:f1:cd:a7:82:66:af:dc:00:fe:5d:87:c5:a9:
f0:96:10:80:a0:c3:31:eb:65:3a:d7:16:4b:17:cc:
d5:f5:de:56:2f:25:53:db:48:cb:07:b2:f8:c9:9d:
12:91:64:93:41:d7:46:65:21:af:3d:84:4d:64:73:
dc:a8:a7:74:d4:d2:17:9c:1b:0f:d8:f8:0a:69:81:
1b:4f:54:b7:16:14:1e:f3:58:8d:78:12:a2:13:32:
b4:71:b2:2d:e4:24:a0:44:8f:e0:8c:92:83:3b:cb:
1e:5b:73:eb:47:74:72:ca:87:80:59:d5:51:96:0c:
ee:fb:ac:0a:a7:b8:6f:be:57:ca:78:35:50:bd:20:
fe:ed:04:53:b8:dd:9f:e0:79:a3:4c:56:59:80:76:
b0:ed:37:3c:1f:5b:2c:92:dc:50:11:39:c4:06:81:
f0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E1:76:21:C5:6B:6D:63:A2:F0:46:58:85:9A:E2:13:66:23:3E:32
X509v3 Authority Key Identifier:
keyid:61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/auF2IcVrbWOi8EZYhZriE2YjPjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.60.0.0/20
159.60.192.0/18
Signature Algorithm: sha256WithRSAEncryption
98:f0:5a:34:38:8d:e5:f8:69:4f:d4:ee:80:57:59:a3:e6:2f:
5f:82:bc:c3:d2:21:3f:52:7c:b2:5b:6a:99:7a:8e:8b:73:5a:
e6:15:87:31:bf:51:d1:33:48:79:8e:11:9a:06:ad:56:fe:d2:
7b:5e:aa:0b:87:e6:31:3c:f6:58:ad:0f:74:ff:ba:99:92:6c:
3b:0d:1d:44:fa:49:98:d7:14:bf:c2:1d:11:39:cb:03:90:b6:
d3:ba:97:a5:b9:00:f9:25:df:95:fe:17:a5:79:36:8a:06:0e:
64:df:8a:fe:e4:f6:02:b6:cc:b0:20:0f:80:cb:e3:10:5f:fa:
02:2c:73:bb:01:cb:a0:a1:37:0f:6a:a5:c9:84:66:73:7c:74:
2a:2d:df:fd:4a:58:19:7f:ee:6d:95:7b:93:ed:2e:5b:e3:d8:
65:76:b4:33:00:2f:a6:f3:52:6f:eb:07:1d:30:c1:14:48:b8:
81:16:64:d0:cd:20:62:a7:eb:12:f8:f9:4e:29:b3:19:b4:76:
de:aa:cd:bd:e7:6d:69:9d:ac:bf:eb:56:ce:d3:08:26:b1:82:
21:61:64:55:dd:fc:95:99:47:10:0a:0f:28:7b:a0:c6:2d:e0:
c3:b0:28:a5:f2:b6:91:e4:cd:d9:ca:09:cf:38:ae:be:69:9f:
bf:1d:65:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:15 2024 by rpki-client on console-ams.rpki-client.org