Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/dDuEzEcJ1EYGKwcLH3Ug-Uw32jg.roa
File: dDuEzEcJ1EYGKwcLH3Ug-Uw32jg.roa (raw, json)
Hash identifier: Q44TYN+X2FQIczdb82EAKfqyn8JpC1/PT7EBCQC2BbA=
Subject key identifier: 74:3B:84:CC:47:09:D4:46:06:2B:07:0B:1F:75:20:F9:4C:37:DA:38
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 04CDA3B6
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/dDuEzEcJ1EYGKwcLH3Ug-Uw32jg.roa
Signing time: Tue 31 May 2022 16:18:13 +0000
ROA not before: Tue 31 May 2022 16:18:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204958
IP address blocks: 152.89.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80585654 (0x4cda3b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: May 31 16:18:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=743b84cc4709d446062b070b1f7520f94c37da38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:77:14:d7:48:d5:4a:a3:cd:e8:23:c0:47:9d:
c2:66:3f:f3:f9:63:35:b1:3c:57:b7:f9:09:07:08:
ce:a6:77:d7:dd:26:8f:48:a6:7c:a7:e8:1f:7c:f6:
61:2b:e4:2d:58:e3:31:c5:0e:be:fc:6b:a1:53:fd:
1b:81:79:42:5a:a8:3e:e4:62:32:7a:d3:24:42:29:
04:59:41:79:72:7f:c9:fb:da:7d:b5:7d:ac:3b:8e:
ab:6c:05:03:d8:13:b6:64:17:47:7b:e2:b6:e6:b5:
bc:89:40:2a:a5:03:dd:b9:50:32:01:9c:cd:b9:12:
63:b1:41:54:fc:29:c9:fc:09:dc:50:a6:c5:ba:46:
a2:cb:45:b8:83:b4:d4:99:1e:94:cd:56:d7:38:b4:
98:d4:66:6a:0b:1c:25:c3:95:14:a3:0d:38:5b:4a:
fe:b4:24:ab:e0:02:e9:12:7c:0e:55:3f:2a:87:df:
83:84:8d:f0:0d:c5:29:03:84:3e:84:53:b4:dc:ea:
80:08:a9:2f:13:44:30:4e:44:32:ef:12:e0:21:72:
a3:a5:78:2a:33:e6:67:68:b3:64:af:3a:18:3b:42:
8a:3b:02:6b:f3:5f:75:71:a9:77:11:e8:1d:f4:b2:
07:ce:9d:0c:de:98:e2:49:fd:87:f1:8c:50:a3:df:
a1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:3B:84:CC:47:09:D4:46:06:2B:07:0B:1F:75:20:F9:4C:37:DA:38
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/dDuEzEcJ1EYGKwcLH3Ug-Uw32jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.169.0/24
Signature Algorithm: sha256WithRSAEncryption
64:8f:b0:d8:fd:42:d0:8e:32:c1:1f:a0:7d:2f:6e:8f:8f:67:
f6:1a:67:92:16:a9:20:3e:22:d5:de:8a:8b:92:41:eb:68:4d:
93:be:d3:b4:5c:21:f8:6e:ba:eb:4d:18:7d:d8:27:3f:77:32:
56:76:03:fa:aa:a6:e6:4d:31:c8:92:91:41:f8:a5:63:26:71:
2a:4a:ac:88:76:95:9b:b0:f2:9a:22:9d:d6:73:24:da:af:ee:
56:3c:e2:c7:f9:57:8c:d5:83:64:55:a4:53:08:79:d4:e1:a5:
73:bf:7e:bc:02:3b:55:1c:4c:81:ff:ec:58:20:04:cd:de:30:
ed:e6:45:7c:42:8b:5e:42:0b:e3:ce:1b:c4:d7:5e:20:4e:4f:
cc:6b:62:d7:ed:cd:29:3a:a0:e3:98:fc:1b:a3:a9:d5:f1:1a:
f3:44:30:cc:32:de:32:51:4a:e1:5a:d8:10:69:96:89:24:7b:
56:6a:bd:3e:40:72:81:35:c6:2b:24:0e:d3:57:4e:23:47:7c:
38:a3:d6:11:50:e1:55:d9:5a:17:7b:ec:63:25:7a:2f:26:7e:
e9:e4:76:ee:f8:cd:df:a3:e0:ed:27:28:67:28:73:1c:0d:46:
43:d3:b2:08:17:5d:41:7d:c4:e7:44:7a:bb:fc:d7:8c:a0:ae:
7d:6c:a2:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:55 2025 by rpki-client