Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/TEerV8A2Tq-oKGrHdJcy0XtdEVw.roa
File: TEerV8A2Tq-oKGrHdJcy0XtdEVw.roa (raw, json)
Hash identifier: kQuu+vp3I0XjJzo3yT48EhI26oy7d66LduOPhWcn3uw=
Subject key identifier: 4C:47:AB:57:C0:36:4E:AF:A8:28:6A:C7:74:97:32:D1:7B:5D:11:5C
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 01852009B6D3553265C245FB7360E86CE148
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/TEerV8A2Tq-oKGrHdJcy0XtdEVw.roa
Signing time: Sat 17 Dec 2022 12:23:05 +0000
ROA not before: Sat 17 Dec 2022 12:23:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61135
IP address blocks: 167.160.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:20:09:b6:d3:55:32:65:c2:45:fb:73:60:e8:6c:e1:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Dec 17 12:23:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c47ab57c0364eafa8286ac7749732d17b5d115c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e8:6f:56:e8:f4:fb:d6:3f:50:5a:82:61:cb:
8a:f6:c4:ba:91:91:f7:e9:b4:45:62:f3:bc:a3:d1:
3a:4a:85:42:42:f1:00:c5:80:fe:68:4a:4c:6c:45:
96:00:46:c1:da:46:c4:81:d2:37:b4:63:8b:26:8f:
b6:f5:77:3c:86:03:ae:82:9a:7e:ca:f1:e2:af:20:
74:40:86:4c:c0:26:4e:a5:5e:5b:35:5f:3e:14:15:
92:f7:ce:65:1e:98:3e:d8:00:16:20:7e:e6:53:5d:
b5:e9:1e:d9:66:4e:ae:99:94:4f:6d:9b:f8:05:8f:
1b:bf:b7:ac:5a:50:cf:73:23:b2:03:ff:a0:a9:49:
d2:44:53:02:ce:ae:02:1b:92:b7:76:6c:e5:8c:43:
95:53:1f:a3:7e:b1:83:db:5f:50:cb:a7:70:8c:bd:
0b:8c:36:61:5a:15:f6:ae:88:c7:e5:09:a3:26:b3:
43:35:c5:cc:61:a4:93:ef:de:ac:6a:ad:0e:b9:ba:
e7:3a:92:c7:ba:06:ed:cd:77:d8:90:31:5a:ab:b1:
06:17:15:be:21:ad:53:47:de:5b:4c:33:37:27:0b:
18:58:bc:0c:3d:07:52:2b:23:9b:34:3a:f8:ca:54:
de:00:d4:7d:48:69:14:ad:2a:97:33:ec:44:6f:b4:
aa:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:47:AB:57:C0:36:4E:AF:A8:28:6A:C7:74:97:32:D1:7B:5D:11:5C
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/TEerV8A2Tq-oKGrHdJcy0XtdEVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.10.0/24
Signature Algorithm: sha256WithRSAEncryption
19:58:7e:67:56:03:b3:71:96:da:98:ea:a8:ba:49:52:bc:69:
e3:2f:90:16:71:26:85:18:0a:75:c3:f0:cd:11:5e:ef:a2:a3:
9a:53:9d:06:d5:be:fa:21:cb:95:96:3a:e7:78:97:1a:39:37:
ce:e1:25:a0:ec:ad:07:37:c4:15:69:de:45:56:07:59:2c:b7:
15:25:68:c4:48:64:ef:59:96:ea:18:8c:a9:f0:5f:7e:ed:38:
c9:29:3e:a0:fd:68:58:b7:07:6d:a3:ab:a5:dc:7b:7f:14:7c:
88:68:0f:08:f0:25:6b:38:bc:60:13:24:56:bb:e9:d9:ca:43:
ae:82:45:1d:fa:94:5c:6c:c8:58:d2:61:f9:d1:8a:9a:d2:e9:
3e:8b:af:26:4c:9d:b3:32:9a:cf:a4:30:32:b5:2b:62:13:9f:
2c:ec:38:5b:41:d7:d7:7b:ea:44:34:df:8f:c6:55:f4:9a:f0:
e1:3f:ad:4d:17:58:ae:ea:31:48:22:1a:68:36:8a:dc:5a:67:
0b:01:f0:b1:8a:41:b1:21:4b:6b:66:9b:dc:52:ec:62:03:98:
d3:c9:10:75:4a:1a:79:46:5e:15:ed:c4:03:17:9d:8a:04:85:
e0:80:62:23:d6:59:32:4e:6c:cc:1c:63:7a:6e:e1:2e:ee:ac:
65:5a:98:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org