Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/dtg6w2UNEsdlTnUsfeRn6fzP3RI.roa
File: dtg6w2UNEsdlTnUsfeRn6fzP3RI.roa (raw, json)
Hash identifier: WzrtgLinUjR9olOnXDtXSKtwiQS4AsmaEe3Hl1ZiVso=
Subject key identifier: 76:D8:3A:C3:65:0D:12:C7:65:4E:75:2C:7D:E4:67:E9:FC:CF:DD:12
Certificate issuer: /CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Certificate serial: 0D8BB4EE
Authority key identifier: E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/dtg6w2UNEsdlTnUsfeRn6fzP3RI.roa
Signing time: Sat 01 Jan 2022 04:58:29 +0000
ROA not before: Sat 01 Jan 2022 04:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60946
IP address blocks: 159.146.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227259630 (0xd8bb4ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e10d5c29a3439703d89b5abf03a75d861771bef4
Validity
Not Before: Jan 1 04:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76d83ac3650d12c7654e752c7de467e9fccfdd12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:30:80:ff:1b:1a:14:c4:0d:0d:8d:cb:14:ed:
7a:0d:c5:c3:c2:68:de:31:29:03:de:b6:a5:68:24:
5a:d0:8c:1c:2f:1d:dc:d6:23:e6:04:3b:18:e4:fd:
e1:e9:af:7b:04:f9:de:2a:b1:98:e2:a0:69:f8:84:
bf:84:17:7a:af:7e:c4:c0:b1:97:11:cf:cb:5b:4b:
da:8a:aa:da:30:d6:b7:fd:08:b9:57:cb:9a:e2:1a:
47:85:71:e3:62:12:1f:e3:15:61:4a:a0:28:80:d9:
f8:9e:e6:cc:bf:c9:2e:85:b7:7b:85:06:c2:4f:6e:
2b:24:c1:82:88:ae:cb:ac:fd:9b:d1:e7:2b:f4:be:
41:13:a5:38:47:68:b3:07:70:cb:5f:62:ac:0e:96:
52:46:56:17:52:97:67:23:34:16:1d:5f:f5:40:9b:
5a:4a:44:46:9c:6a:c4:d0:9f:6b:c8:cf:7e:1b:5a:
18:d9:13:2f:3a:76:fe:9c:3c:06:9a:ae:5f:a6:98:
11:2a:45:42:3e:9a:3d:ef:0f:dd:79:8b:a6:cd:da:
de:7e:5d:c8:1f:02:60:8c:c0:2d:79:da:7a:e4:71:
b3:1f:91:44:b0:d4:ce:52:1c:16:fa:b6:6a:14:4f:
7c:c5:74:78:92:fd:01:cc:32:77:9d:c3:d4:77:a9:
2e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D8:3A:C3:65:0D:12:C7:65:4E:75:2C:7D:E4:67:E9:FC:CF:DD:12
X509v3 Authority Key Identifier:
keyid:E1:0D:5C:29:A3:43:97:03:D8:9B:5A:BF:03:A7:5D:86:17:71:BE:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/dtg6w2UNEsdlTnUsfeRn6fzP3RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3edb47-fd6e-4c59-a7ab-e42a58064a63/1/4Q1cKaNDlwPYm1q_A6ddhhdxvvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.146.124.0/24
Signature Algorithm: sha256WithRSAEncryption
48:62:a9:d4:b7:3f:e1:de:2f:ee:74:ca:96:82:f6:87:27:49:
b7:65:44:87:d0:5f:5a:f1:18:92:70:65:c8:ed:2f:1d:15:53:
06:ab:a6:95:02:e7:5d:11:39:e4:ec:79:60:52:e8:b2:99:e0:
19:53:a0:c7:81:90:bc:12:ea:17:24:c4:7d:51:79:88:d9:a6:
57:4f:a9:d2:72:c5:71:09:45:e2:63:06:ea:36:d6:07:a1:8d:
3f:69:43:45:81:40:83:bb:f9:c5:74:d9:13:b3:42:42:45:a3:
9a:f3:dc:24:b6:64:66:ef:c4:e2:2d:37:ee:bc:4f:48:80:e4:
e2:af:87:04:b7:79:10:9d:e0:5c:f7:64:38:3d:71:4d:e0:9b:
ec:51:f6:95:3d:f0:00:62:a9:40:00:44:a5:2f:8f:81:19:eb:
1f:54:0e:7f:81:0e:d4:0e:37:cb:75:d6:cc:6e:ac:20:3c:ca:
16:17:71:14:db:8a:3d:ec:2a:eb:ee:e6:e6:fd:31:3a:66:60:
f9:36:78:6b:16:d9:54:5b:cf:f5:12:78:d9:d2:90:4a:0d:a9:
dc:af:d6:c8:a1:ec:3e:9a:00:a8:89:ce:2a:f6:25:23:72:fb:
a0:4b:ea:7e:cb:c0:d6:de:94:52:fc:c4:d9:fc:55:9c:9b:04:
1c:48:aa:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:41 2025 by rpki-client