Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/ojUw9e8eq2AWA1h7KSXXsW0aR6A.roa
File: ojUw9e8eq2AWA1h7KSXXsW0aR6A.roa (raw, json)
Hash identifier: PY+unxGcxcG2S4bmJFkTkPyu78Xgc0pWVfX38/PJecQ=
Subject key identifier: A2:35:30:F5:EF:1E:AB:60:16:03:58:7B:29:25:D7:B1:6D:1A:47:A0
Certificate issuer: /CN=66ec789976d3b584016cac19f34bbede966cd230
Certificate serial: 0931F4A7
Authority key identifier: 66:EC:78:99:76:D3:B5:84:01:6C:AC:19:F3:4B:BE:DE:96:6C:D2:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zux4mXbTtYQBbKwZ80u-3pZs0jA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/ojUw9e8eq2AWA1h7KSXXsW0aR6A.roa
Signing time: Sat 01 Jan 2022 09:56:14 +0000
ROA not before: Sat 01 Jan 2022 09:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203201
IP address blocks: 171.22.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154268839 (0x931f4a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ec789976d3b584016cac19f34bbede966cd230
Validity
Not Before: Jan 1 09:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a23530f5ef1eab601603587b2925d7b16d1a47a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:46:42:d2:42:0d:45:bb:a7:02:82:95:45:36:
e3:b9:b3:8b:f7:fa:61:09:94:31:01:d8:49:c2:60:
d5:31:c8:1c:52:52:2a:8f:74:86:88:88:c5:ce:be:
43:72:bb:75:d7:e8:00:6c:ad:1b:1a:52:16:10:ab:
9f:05:16:87:02:19:77:05:be:3b:ac:d9:4b:b9:fe:
74:7e:22:98:4a:bf:41:61:fb:a2:2e:ee:19:50:64:
a0:2d:4e:34:9b:b5:33:42:18:bf:95:01:19:fc:a1:
a0:00:14:11:99:20:f0:bc:7e:b4:ed:1d:06:f6:ad:
d3:c6:e9:d5:b4:7e:21:69:d3:05:ed:f5:4f:49:8e:
54:59:e4:0e:38:40:b8:82:ed:95:f1:b3:6a:1b:aa:
16:61:55:35:9a:61:3b:eb:b8:a0:2b:da:79:bc:58:
b0:5d:4e:a8:42:79:48:4c:85:4f:e8:8a:66:82:3e:
f5:0b:dd:e6:a9:ae:7d:70:27:21:fa:2d:37:da:39:
ad:19:e3:2e:85:d5:4d:54:8a:98:fd:e2:42:1f:40:
d6:10:16:99:43:4b:13:13:d4:28:3f:5b:2e:9a:7f:
f1:b4:c5:f0:3b:d4:75:9b:24:66:1a:83:27:f8:5c:
bf:82:dc:7e:f2:0e:2d:30:2f:1e:8e:68:1b:f4:d3:
af:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:35:30:F5:EF:1E:AB:60:16:03:58:7B:29:25:D7:B1:6D:1A:47:A0
X509v3 Authority Key Identifier:
keyid:66:EC:78:99:76:D3:B5:84:01:6C:AC:19:F3:4B:BE:DE:96:6C:D2:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zux4mXbTtYQBbKwZ80u-3pZs0jA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/ojUw9e8eq2AWA1h7KSXXsW0aR6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/07bf5b-0340-434e-a444-f0761e29e6c4/1/Zux4mXbTtYQBbKwZ80u-3pZs0jA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.44.0/22
Signature Algorithm: sha256WithRSAEncryption
66:a3:d5:68:d3:1b:b4:87:dc:81:b6:3d:56:cc:72:fe:06:43:
97:e2:a4:3f:af:20:8f:8f:83:2a:dc:60:ca:b8:fe:1b:42:bc:
e2:c7:a1:a7:29:52:95:ce:80:c5:47:fa:2f:f0:6f:27:fc:85:
de:95:9a:0f:c0:7d:3b:9d:a3:0d:e0:49:82:f6:f6:d4:b9:d9:
71:d4:e9:4e:0f:b4:cc:4a:e2:2a:00:6e:0d:a2:3a:52:65:67:
ec:db:39:b8:20:7c:14:71:3c:80:f1:33:91:53:5f:71:28:93:
74:98:b6:39:91:a6:50:31:fe:1c:eb:90:0f:36:d0:b5:04:7d:
eb:fe:07:c0:f8:c0:36:2f:cd:97:9a:71:db:48:4e:37:50:11:
0c:0d:58:55:7a:5e:97:16:fd:3e:76:da:26:fa:0d:e4:c6:6e:
dd:d2:90:2a:25:3a:cb:78:ea:cd:8e:45:02:65:e4:bd:11:85:
ba:60:2c:2a:e1:fe:ce:2d:08:f1:64:3f:80:6e:c4:23:f3:33:
3b:41:50:ae:e0:9e:38:98:89:15:f4:e4:72:02:e7:61:e2:67:
9f:b3:31:6a:62:e4:39:23:5b:6f:c5:20:d9:4d:cf:2b:93:1f:
d2:3e:18:9e:58:a4:05:87:c9:10:7e:92:19:ab:0f:d0:f8:66:
40:ba:c8:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org