Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/cOwuc3SmFt83dVPvJ9rkmYyCERA.roa
File: cOwuc3SmFt83dVPvJ9rkmYyCERA.roa (raw, json)
Hash identifier: LcQyzyZKJKeg9CRLHRKq2bWzE3LHCYTSSWtCqKqR3QU=
Subject key identifier: 70:EC:2E:73:74:A6:16:DF:37:75:53:EF:27:DA:E4:99:8C:82:11:10
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 2CAC5BBB
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/cOwuc3SmFt83dVPvJ9rkmYyCERA.roa
Signing time: Sat 01 Jan 2022 04:59:39 +0000
ROA not before: Sat 01 Jan 2022 04:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197142
IP address blocks: 213.189.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 749493179 (0x2cac5bbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 1 04:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70ec2e7374a616df377553ef27dae4998c821110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:85:36:ba:1c:29:eb:bd:83:03:16:5e:44:d4:
61:ce:12:47:53:1f:9e:19:21:87:ba:87:7f:74:35:
37:78:ec:b6:20:90:1f:72:ed:8f:5f:5c:e7:e8:a9:
05:e4:35:fd:64:d6:f4:23:b6:ec:5b:6c:83:63:f9:
f8:82:12:1d:fb:eb:6a:4c:8f:8d:40:f8:71:e6:d9:
92:4a:2a:62:eb:80:f5:ca:8b:2f:49:dc:37:87:6b:
b4:07:fb:df:5f:1b:a1:98:0d:2e:fd:0e:5b:75:c2:
83:4d:2e:e8:d4:c2:d3:9d:0e:7f:86:9c:a8:18:2a:
b1:fa:35:ab:ee:bf:5d:1f:7f:17:01:e8:87:fc:1b:
9f:95:28:0c:ed:a0:6c:34:91:43:f3:e3:bb:d9:27:
19:ef:db:24:f6:de:ef:99:e7:a3:5f:70:09:f4:06:
d4:0d:1d:51:78:e3:14:27:ef:e0:77:64:ee:07:73:
5a:d3:cf:59:40:40:1f:88:02:98:a9:8a:6f:1a:e9:
57:54:c5:71:3d:ed:11:eb:93:ec:9a:ad:83:18:63:
57:f6:2b:92:9b:f8:5d:55:8e:10:f9:90:5e:1a:ff:
69:31:04:8b:68:63:7c:d3:d2:8b:72:17:5d:07:13:
46:94:9e:ee:7e:d4:f3:73:bb:69:59:26:57:75:a5:
6a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EC:2E:73:74:A6:16:DF:37:75:53:EF:27:DA:E4:99:8C:82:11:10
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/cOwuc3SmFt83dVPvJ9rkmYyCERA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.189.42.0/24
Signature Algorithm: sha256WithRSAEncryption
96:b7:11:f5:d1:36:b1:51:72:2f:23:b6:8f:d4:35:dd:fc:fe:
d4:fc:6e:8b:00:f1:70:c6:29:db:cb:ba:71:8a:4b:fa:86:ea:
67:50:06:33:47:48:66:e2:19:e7:cd:c1:e6:14:7d:16:02:7f:
ba:98:80:be:04:d1:00:06:9e:7c:27:8b:b7:d8:19:ef:41:ee:
fa:81:e0:cf:7f:64:a6:08:ff:43:95:7b:4c:54:f4:3c:81:86:
2d:b0:35:fb:b4:63:f1:a6:23:01:4e:02:58:21:8f:9e:bc:7c:
f6:d6:23:6f:a6:21:ea:bd:25:72:28:d3:bc:a8:8b:4b:9b:37:
19:23:3d:28:f4:b7:63:50:ca:ea:03:fa:7e:10:93:48:e6:6b:
9d:3e:a3:61:4b:f1:83:fb:b7:ed:dd:3f:e0:0b:2c:06:2e:80:
5b:31:0e:f8:ec:ff:f8:e9:09:e2:6b:e1:61:95:81:84:f7:89:
5e:ac:9d:0e:a0:8b:de:96:79:a4:5b:e5:4f:93:b0:98:4f:36:
88:36:7d:8d:45:ce:eb:23:a6:c8:fd:d6:ce:1a:7e:4b:75:de:
38:c6:d9:da:ab:df:91:3f:6e:98:d9:db:07:8b:c5:71:e3:3d:
05:d8:c0:64:d1:f7:d5:10:36:42:f3:0a:cf:aa:dd:40:dc:dd:
a0:1e:88:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org