Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/2f3229-a130-4dc8-a47b-2dc26dc4bc11/1/890bGrQSE1Poec4YnPkUeDKl6vk.roa
File: 890bGrQSE1Poec4YnPkUeDKl6vk.roa (raw, json)
Hash identifier: XesEjVefUUIchwN5iq60N7JpmWST+SAB5pYgQ7iTt/c=
Subject key identifier: F3:DD:1B:1A:B4:12:13:53:E8:79:CE:18:9C:F9:14:78:32:A5:EA:F9
Certificate issuer: /CN=9f63cff2446ececbebe0124636980b47e0b20fa6
Certificate serial: 019744
Authority key identifier: 9F:63:CF:F2:44:6E:CE:CB:EB:E0:12:46:36:98:0B:47:E0:B2:0F:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2PP8kRuzsvr4BJGNpgLR-CyD6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/2f3229-a130-4dc8-a47b-2dc26dc4bc11/1/890bGrQSE1Poec4YnPkUeDKl6vk.roa
Signing time: Fri 11 Mar 2022 12:11:37 +0000
ROA not before: Fri 11 Mar 2022 12:11:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49835
IP address blocks: 167.160.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104260 (0x19744)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f63cff2446ececbebe0124636980b47e0b20fa6
Validity
Not Before: Mar 11 12:11:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3dd1b1ab4121353e879ce189cf9147832a5eaf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ce:09:be:92:14:40:68:99:63:da:d7:f6:57:
c8:b8:75:68:7d:fa:e3:68:1e:da:35:a1:30:93:f4:
5b:03:f5:4b:a4:9c:e2:43:6f:0d:47:0c:5d:d6:e1:
9a:80:85:3a:bd:c1:56:57:61:81:d0:7c:a7:2e:24:
06:d7:ac:77:25:0f:e0:03:04:d7:bb:0e:d4:f0:c8:
26:d9:57:b1:2c:e5:f8:1d:e1:76:03:a4:30:b7:e6:
36:18:e0:11:3f:04:b2:98:5a:e4:17:8a:41:6f:5e:
e9:69:3f:ea:ba:5e:bc:51:2e:47:5e:d3:30:fa:21:
cf:18:61:71:38:7b:0d:f8:48:18:a4:51:b9:c5:f5:
de:9e:92:a6:01:e6:93:cc:c8:d3:c6:58:6e:65:19:
44:a6:e6:bc:fb:c5:2f:0b:15:6f:90:3b:41:c5:ae:
c3:03:a7:31:01:e2:33:09:29:88:54:7a:91:01:d2:
b6:d8:4a:3c:f5:1f:30:47:23:4f:38:0d:df:75:a2:
59:65:9a:ce:b6:75:06:35:dd:f5:5f:17:f5:e6:54:
35:39:4e:5f:a6:11:9c:9f:76:48:9f:4a:48:40:03:
84:4d:d6:d6:05:42:a8:e2:b7:a0:e5:4a:99:75:2e:
47:15:05:7a:a8:d5:9d:c0:15:2b:c5:c3:f7:41:a2:
3c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:DD:1B:1A:B4:12:13:53:E8:79:CE:18:9C:F9:14:78:32:A5:EA:F9
X509v3 Authority Key Identifier:
keyid:9F:63:CF:F2:44:6E:CE:CB:EB:E0:12:46:36:98:0B:47:E0:B2:0F:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2PP8kRuzsvr4BJGNpgLR-CyD6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/2f3229-a130-4dc8-a47b-2dc26dc4bc11/1/890bGrQSE1Poec4YnPkUeDKl6vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/2f3229-a130-4dc8-a47b-2dc26dc4bc11/1/n2PP8kRuzsvr4BJGNpgLR-CyD6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.15.0/24
Signature Algorithm: sha256WithRSAEncryption
82:07:2d:67:bd:e2:d1:a4:a8:15:d1:af:2a:78:64:94:d8:f8:
4c:c8:49:2d:77:31:1b:e8:0d:4a:09:9b:f6:92:ee:6e:27:85:
42:59:cb:7a:d4:4a:29:66:9f:9d:19:ed:0a:0d:5c:30:f3:08:
a9:dd:d0:a2:84:1b:36:16:e0:63:3c:4d:f7:f2:dd:df:67:01:
dd:0e:f2:4b:f0:90:cd:66:84:c2:ee:1d:26:3b:21:93:ee:da:
72:63:1e:5b:07:ec:70:53:c9:1d:46:39:fa:bc:ea:67:71:de:
df:88:78:13:55:cb:eb:c9:ed:3f:1c:00:df:70:df:dd:c7:09:
1b:ca:c6:69:62:7a:68:67:44:ec:d5:b4:cb:f6:a6:50:e0:f1:
85:86:15:3e:17:1c:38:18:59:f3:0b:44:79:1e:27:64:b7:9f:
31:a2:31:06:ee:e0:74:6e:80:5b:1d:95:a6:a9:3a:d1:a1:2f:
96:8b:a6:da:0b:ee:39:c6:1b:fb:e8:df:e5:0e:fe:16:1d:cb:
aa:ad:56:3b:fb:c7:00:2a:38:10:d8:1d:20:ac:42:24:36:00:
78:e6:45:3a:4a:82:40:7f:52:00:1f:fa:bb:8c:76:29:98:00:
a4:25:69:1f:fa:df:77:bb:44:be:79:cb:85:96:fe:9f:25:31:
00:4b:e3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:43 2024 by rpki-client on console-fra.rpki-client.org