Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/WeJz4QjsKNtcSN1J7_UJHiEvYxU.roa
File: WeJz4QjsKNtcSN1J7_UJHiEvYxU.roa (raw, json)
Hash identifier: zfJnWZ8jAfjFsee04qk/jXLiKZELnb5nUTvh6N/75u8=
Subject key identifier: 59:E2:73:E1:08:EC:28:DB:5C:48:DD:49:EF:F5:09:1E:21:2F:63:15
Certificate issuer: /CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Certificate serial: 0B40814D
Authority key identifier: 12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/WeJz4QjsKNtcSN1J7_UJHiEvYxU.roa
Signing time: Sat 01 Jan 2022 12:04:10 +0000
ROA not before: Sat 01 Jan 2022 12:04:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6095
IP address blocks: 160.62.3.0/24 maxlen: 24
160.62.22.0/24 maxlen: 24
160.62.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188776781 (0xb40814d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Validity
Not Before: Jan 1 12:04:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59e273e108ec28db5c48dd49eff5091e212f6315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:56:fd:81:68:6e:7f:f8:99:f0:98:bb:5d:b5:
dd:c9:b7:d0:89:1f:1f:14:e5:22:8e:b0:e0:14:ac:
b1:65:31:31:e7:7f:8f:10:d0:3e:99:74:d5:30:36:
7c:7b:3e:02:ab:d5:b6:d9:08:b1:1b:6b:8a:38:81:
89:01:66:3b:27:d5:7c:c0:ba:e5:20:12:48:05:27:
8f:38:c6:89:da:a9:48:0a:1b:05:74:ae:ef:78:b3:
b5:cc:0e:e7:f4:c1:06:49:82:2c:2f:0b:9e:ec:23:
0e:47:60:9d:df:37:08:6d:b5:24:e9:4e:ab:0b:bc:
a7:a8:fd:33:1e:0b:ad:f4:b1:ab:7b:66:af:9c:00:
c4:5c:6b:b8:99:9e:61:e2:4a:2f:7e:09:38:41:6c:
c0:45:2c:79:f3:60:e6:4e:c7:90:4e:d1:01:2b:00:
58:80:e0:3a:5a:8a:c0:2a:a2:3f:3b:47:e9:4b:7e:
55:3e:0c:ac:cc:39:18:ca:dd:26:89:56:1b:3d:44:
c6:d9:95:44:30:a8:dc:88:8a:b0:9b:92:7a:d1:8a:
3e:68:a9:58:83:94:fd:b9:e3:61:f8:23:8d:c3:5b:
bf:55:d7:5a:d2:af:50:c7:40:32:b2:48:1b:19:bb:
b0:43:b0:9f:d4:72:b6:36:eb:71:25:cc:c9:67:4a:
56:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E2:73:E1:08:EC:28:DB:5C:48:DD:49:EF:F5:09:1E:21:2F:63:15
X509v3 Authority Key Identifier:
keyid:12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/WeJz4QjsKNtcSN1J7_UJHiEvYxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.62.3.0/24
160.62.21.0-160.62.22.255
Signature Algorithm: sha256WithRSAEncryption
19:1f:86:d0:86:e1:87:fc:06:86:ba:34:d0:2a:a1:09:30:60:
72:07:ae:1c:67:19:64:ab:b7:da:fd:79:ad:53:ae:41:0d:ca:
6f:34:dc:c4:94:b7:55:44:6a:fa:9e:ce:20:75:7d:19:05:46:
05:f7:fd:3a:86:ef:39:c9:74:55:38:56:81:e1:5b:db:bd:74:
c0:e6:37:19:64:dd:f3:94:08:cf:7d:40:2a:dd:dc:28:02:34:
d8:17:73:08:57:ae:7b:f2:fa:25:9a:7d:41:92:25:19:41:bb:
22:ae:7e:65:0f:23:02:fb:cd:1c:ac:93:2f:e1:43:86:b2:73:
dc:b3:c6:32:42:e9:b5:82:1a:01:d7:b4:19:62:1b:d0:81:f0:
7c:aa:cd:c1:29:5c:ac:fd:f4:02:fa:fd:cc:47:21:27:9d:38:
96:e4:ab:80:b5:2a:2d:81:18:47:21:de:95:8d:d0:1b:fa:5d:
aa:87:c5:63:00:c6:f6:a1:57:92:5e:f9:10:44:77:5a:cb:4e:
e1:8e:73:1a:f1:1e:84:c4:eb:cf:6a:a5:7e:c0:73:0a:dd:98:
0e:35:46:54:dd:b3:1e:79:2c:7c:59:fb:0a:81:da:6f:c0:05:
d2:cb:9c:49:36:e8:ef:99:29:ff:b3:a7:2f:7d:11:6e:9a:81:
ec:6b:df:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org