Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/xqH6ptQNmUbztnYnO1KKjUirPwg.roa
File: xqH6ptQNmUbztnYnO1KKjUirPwg.roa (raw, json)
Hash identifier: chAiIpOd4vJRlX/Iyb6K9xt0r47ovtypHe07nBCWXao=
Subject key identifier: C6:A1:FA:A6:D4:0D:99:46:F3:B6:76:27:3B:52:8A:8D:48:AB:3F:08
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 0185353038AE74D1B2A051235B87F5C2DC6B
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/xqH6ptQNmUbztnYnO1KKjUirPwg.roa
Signing time: Wed 21 Dec 2022 14:57:10 +0000
ROA not before: Wed 21 Dec 2022 14:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200443
IP address blocks: 167.160.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:35:30:38:ae:74:d1:b2:a0:51:23:5b:87:f5:c2:dc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Dec 21 14:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6a1faa6d40d9946f3b676273b528a8d48ab3f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7a:97:34:8d:fd:37:b7:c3:bf:ad:a6:51:f8:
bc:f3:19:4e:c3:e9:32:dc:d6:f4:ea:c2:c6:5b:9c:
a9:93:31:5c:94:3a:c9:56:de:e9:ea:31:e5:c5:38:
9e:a0:7d:4c:53:56:b5:e1:8f:37:8b:59:46:6c:fc:
5c:cc:a4:7a:55:f8:52:36:ca:91:06:1a:e8:08:54:
19:81:95:b6:a3:62:0c:47:c0:30:2e:0e:ee:13:1c:
56:92:c6:f1:17:ab:29:af:b5:e4:f2:02:d2:de:e1:
bc:f7:85:ea:f5:ee:ff:c4:ed:79:bc:05:a8:8e:54:
2e:83:40:a9:56:13:ab:8c:3c:df:d2:fb:42:2b:c2:
e3:7f:61:ee:30:e5:ba:75:d6:f1:99:b4:9f:9f:2f:
1f:29:03:1d:71:cd:eb:3b:e2:30:26:f2:df:4f:6a:
18:e3:f9:15:6a:79:65:8a:57:54:05:76:a3:7b:86:
2f:73:25:bb:3b:7f:e1:42:26:c4:2c:d5:7e:55:ff:
96:84:9c:0d:be:e5:14:d3:e9:ee:ec:94:03:18:2b:
0b:a3:9a:7b:ac:ff:04:3f:f5:e7:71:d1:d5:c9:0a:
24:4f:a5:60:37:2c:85:43:62:e5:f8:d9:a2:9e:3e:
b5:33:87:8e:20:1b:43:d0:45:b1:1b:aa:3a:a4:33:
8e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A1:FA:A6:D4:0D:99:46:F3:B6:76:27:3B:52:8A:8D:48:AB:3F:08
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/xqH6ptQNmUbztnYnO1KKjUirPwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.10.0/24
Signature Algorithm: sha256WithRSAEncryption
71:fe:45:c7:91:8c:e9:10:18:da:dc:48:d1:db:1c:45:4b:a9:
5e:1d:53:77:af:13:ee:05:65:ab:b2:d0:23:83:f2:e1:42:78:
2c:ed:4c:f9:d2:e6:97:51:31:35:56:18:50:68:6d:d0:cc:15:
a3:fd:60:2a:fd:60:74:08:8b:ec:b8:3a:b1:b4:b3:47:e7:76:
14:ff:4e:e7:14:6e:a3:ea:96:0a:a2:77:85:08:e7:69:41:2c:
3a:49:f8:27:23:5a:2d:e4:2a:a5:06:86:41:77:23:a9:87:32:
ef:9d:12:28:94:4d:bf:cf:ca:d7:aa:ce:14:73:b5:52:0c:62:
84:c2:cb:72:0b:90:84:10:9c:93:c1:d1:86:4f:91:08:1a:b6:
a6:cb:fd:9e:9e:1d:c9:47:25:ce:99:31:5b:2b:1a:9e:9a:04:
72:d9:cf:57:96:da:ac:0e:da:d2:2b:e2:88:9e:ce:8e:39:f8:
90:64:2f:0b:c7:42:5d:18:d7:0a:5d:48:d2:84:27:f4:c4:a6:
36:4a:94:ef:fd:f1:a9:19:39:4c:b3:d3:5e:00:b3:fd:d2:2b:
78:db:f4:05:e6:08:31:0c:cc:a6:3a:4d:09:18:f5:29:72:1b:
7c:bd:d0:3e:b7:d0:e0:1c:9e:9c:da:1f:bd:76:1f:dd:93:0a:
46:09:93:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:09 2024 by rpki-client on console-ams.rpki-client.org