Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/mToU_2m2NuqdSsoSTu25WMIbBoM.roa
File: mToU_2m2NuqdSsoSTu25WMIbBoM.roa (raw, json)
Hash identifier: kFfBWeEt6XqhebFc7pf41yK8EBhG0vt1sU6xF3H3X0I=
Subject key identifier: 99:3A:14:FF:69:B6:36:EA:9D:4A:CA:12:4E:ED:B9:58:C2:1B:06:83
Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Certificate serial: 09F53174
Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/mToU_2m2NuqdSsoSTu25WMIbBoM.roa
Signing time: Sat 01 Jan 2022 15:57:20 +0000
ROA not before: Sat 01 Jan 2022 15:57:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 159.242.232.0/23 maxlen: 23
159.242.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167063924 (0x9f53174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Validity
Not Before: Jan 1 15:57:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=993a14ff69b636ea9d4aca124eedb958c21b0683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:02:3c:bd:cf:e5:5a:88:ff:9c:88:36:6c:f1:
60:2c:50:f0:d4:f1:d3:cd:ae:c5:75:a3:bb:4d:fe:
22:78:ca:fb:eb:d4:4b:f7:eb:85:e2:d0:57:17:9e:
8d:50:82:60:da:d8:da:dd:c8:00:3b:5f:6c:b6:4a:
56:6d:37:46:13:a5:dd:16:0e:8d:18:2e:f4:e6:6b:
b9:ed:ad:15:e5:ff:ff:b3:54:c2:c2:de:50:1d:b7:
06:be:dd:89:ba:d6:fb:6e:5e:ae:99:81:cf:d4:d8:
12:3b:83:e8:a6:35:1c:7c:91:8d:b9:16:80:1c:fe:
00:f6:0f:ea:bb:9f:34:a2:dd:8a:55:2f:c9:a4:fe:
c9:00:55:7e:c3:cc:cf:05:62:12:b9:66:64:40:59:
af:8f:aa:02:04:4c:9c:72:d4:11:bb:6b:d9:71:38:
a4:f4:41:b2:f3:be:ca:d4:b3:5d:fc:16:5a:cb:97:
a0:8c:42:c2:9c:6d:06:b2:62:14:03:f7:40:42:7c:
03:dc:ec:2d:2e:df:5c:c4:6e:e7:47:9d:4c:0a:84:
84:0a:30:e0:28:44:b8:78:60:15:ac:ae:56:eb:71:
78:b9:08:5a:c8:2e:d1:ce:37:0b:56:75:31:2f:83:
50:6f:d1:62:f9:96:66:1d:38:8d:bd:9a:3c:10:ca:
ad:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3A:14:FF:69:B6:36:EA:9D:4A:CA:12:4E:ED:B9:58:C2:1B:06:83
X509v3 Authority Key Identifier:
keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/mToU_2m2NuqdSsoSTu25WMIbBoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.242.228.0/24
159.242.232.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:da:79:d3:7e:9e:a8:d4:14:4c:53:b7:3a:00:ae:7a:5e:2d:
92:9e:fc:d2:53:06:6c:9c:0d:fc:5b:76:7b:b6:56:86:48:fd:
7d:b8:9c:55:a5:c2:de:4f:93:62:f1:35:b0:a7:50:03:50:8b:
8a:2a:d0:3c:4c:4d:71:e8:00:5e:6d:b5:65:b0:bf:41:3e:b1:
b7:1c:d0:bb:7b:d2:6b:6f:a1:7b:e6:19:47:c2:a0:c9:6e:87:
c3:31:6f:cc:80:c2:b4:18:b3:e1:dc:22:d0:bb:74:57:ec:ed:
33:7c:6a:cc:f1:60:56:e3:2c:60:f3:19:a4:30:72:9f:70:40:
9d:66:3d:55:cc:87:bf:75:ff:80:35:87:a0:17:34:99:b9:be:
5a:6d:e7:52:ce:41:73:64:c4:36:46:58:b0:40:6e:d2:e4:e9:
af:73:b0:31:94:67:8e:b1:d1:41:f5:ae:fe:4d:3c:8f:0d:28:
19:c9:b8:64:66:01:1a:d8:d4:4a:5d:9a:2e:b3:2d:2b:8a:47:
78:97:ba:b4:c7:52:af:e0:a9:69:6f:1e:15:bd:49:8e:66:97:
68:ba:25:3b:6e:62:21:f3:04:87:24:11:1b:f2:d4:3e:7a:c2:
f0:72:19:2f:52:20:bd:e4:7a:c8:1f:87:cb:bb:78:3e:63:06:
7b:79:cd:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:51 2024 by rpki-client on console-fra.rpki-client.org