Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/3157NKT3CRUYGf9sKoQE9Tp57hs.roa
File: 3157NKT3CRUYGf9sKoQE9Tp57hs.roa (raw, json)
Hash identifier: q/SL4eA3V13ELahHbKyLV3h9it1gT99B9BY+57+41vc=
Subject key identifier: DF:5E:7B:34:A4:F7:09:15:18:19:FF:6C:2A:84:04:F5:3A:79:EE:1B
Certificate issuer: /CN=68d1ef163a661cce5bc62117ec763758b1b5bb89
Certificate serial: 046E8F06
Authority key identifier: 68:D1:EF:16:3A:66:1C:CE:5B:C6:21:17:EC:76:37:58:B1:B5:BB:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNHvFjpmHM5bxiEX7HY3WLG1u4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/3157NKT3CRUYGf9sKoQE9Tp57hs.roa
Signing time: Sat 01 Jan 2022 15:01:02 +0000
ROA not before: Sat 01 Jan 2022 15:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 206.204.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74354438 (0x46e8f06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d1ef163a661cce5bc62117ec763758b1b5bb89
Validity
Not Before: Jan 1 15:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df5e7b34a4f709151819ff6c2a8404f53a79ee1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0d:50:38:4b:ef:81:74:a2:40:aa:4d:f2:09:
86:8f:3e:2a:b9:1b:bd:ef:16:de:8b:eb:9a:db:53:
e0:08:07:66:37:f9:6a:d9:e4:e7:39:f9:2e:85:03:
17:25:08:b0:36:5c:09:60:1f:bc:14:af:6d:b2:22:
82:5c:2b:15:78:be:4b:c2:52:85:45:32:c5:16:7e:
80:e4:10:d1:02:9d:dc:73:66:42:4e:10:fa:aa:ba:
e3:fe:71:65:d2:f6:cf:d5:ff:be:ab:d7:44:a1:cc:
2b:da:7f:a5:37:d9:60:15:d9:f0:a1:36:39:e9:94:
dc:ab:bc:66:84:73:f2:c5:bc:fe:4d:0f:04:9f:57:
bb:59:cc:9a:49:b2:63:cc:50:98:f0:5f:a4:cd:68:
98:b4:5c:ee:dc:a1:61:0d:85:1c:c1:e8:87:be:ff:
58:44:4c:a4:2e:23:3f:d1:2a:1f:a7:60:0e:74:cd:
92:b0:d1:9a:a1:64:e3:6c:f7:3e:88:1b:ef:3f:29:
a5:55:9b:41:45:d1:80:ac:d1:61:c0:85:a5:8a:1e:
a3:b4:f0:33:50:c1:01:e9:aa:0c:18:16:2b:ed:82:
c0:47:14:7e:9f:39:18:33:93:15:00:b1:63:4e:66:
1b:5b:53:00:56:aa:11:ec:8d:e0:0f:69:e8:27:f8:
a6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:5E:7B:34:A4:F7:09:15:18:19:FF:6C:2A:84:04:F5:3A:79:EE:1B
X509v3 Authority Key Identifier:
keyid:68:D1:EF:16:3A:66:1C:CE:5B:C6:21:17:EC:76:37:58:B1:B5:BB:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNHvFjpmHM5bxiEX7HY3WLG1u4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/3157NKT3CRUYGf9sKoQE9Tp57hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6aa017-2fe8-4cd8-8a7d-3a8a61006a4f/1/aNHvFjpmHM5bxiEX7HY3WLG1u4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.204.104.0/24
Signature Algorithm: sha256WithRSAEncryption
97:0e:22:f3:20:87:a0:3f:34:e1:40:a9:d8:0a:49:ce:10:98:
f0:cd:e0:1a:9e:1d:55:c8:39:60:2e:90:4b:d7:d5:40:fd:cb:
7c:1a:6b:e7:21:9e:96:4f:22:52:08:74:0a:0d:04:b2:ad:6b:
61:b4:07:40:aa:21:ec:2f:40:f3:21:df:73:48:09:48:a1:07:
d3:0c:9f:4b:3b:d1:86:c8:e1:3b:56:06:91:67:4b:51:c4:6e:
9e:21:89:e6:55:ae:44:3e:64:b6:53:91:f4:59:cd:61:d0:c2:
8e:3b:81:ea:45:26:c7:5d:66:4e:51:2e:1e:9b:92:00:aa:5c:
8d:0f:37:fc:69:0e:dc:f1:a3:6a:62:51:f1:8e:3f:2c:64:7a:
4a:12:26:ea:03:a7:62:c6:68:9f:10:fa:1d:b3:84:b8:1f:87:
d2:70:41:33:6a:21:1d:e9:07:ea:26:61:41:db:d4:80:de:7f:
30:e2:10:85:3c:e2:71:21:23:99:ac:fb:59:52:32:5f:06:80:
d4:86:1b:26:27:8f:0d:62:52:6e:b9:00:73:66:80:24:1a:ca:
74:bf:0d:e4:cb:c2:ac:f8:51:10:42:65:19:d0:7f:dd:25:0c:
80:67:df:f2:ff:a5:28:3b:17:1a:51:d7:4e:59:2b:76:30:14:
e2:46:a5:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:58 2024 by rpki-client on console-fra.rpki-client.org