Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/CpjpWLLoQH8ie47CFJ_VsLKMfZA.roa
File: CpjpWLLoQH8ie47CFJ_VsLKMfZA.roa (raw, json)
Hash identifier: 79Y/GNFTDNOaJ1uZtSQxxo0+yuc7P+1/+AKqmErl2Fg=
Subject key identifier: 0A:98:E9:58:B2:E8:40:7F:22:7B:8E:C2:14:9F:D5:B0:B2:8C:7D:90
Certificate issuer: /CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Certificate serial: 406527
Authority key identifier: 61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/CpjpWLLoQH8ie47CFJ_VsLKMfZA.roa
Signing time: Tue 22 Mar 2022 01:40:42 +0000
ROA not before: Tue 22 Mar 2022 01:40:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35280
IP address blocks: 159.60.120.0/21 maxlen: 24
159.60.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4220199 (0x406527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Validity
Not Before: Mar 22 01:40:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a98e958b2e8407f227b8ec2149fd5b0b28c7d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:04:e2:1a:12:05:6d:45:5d:bb:57:4c:5a:d9:
68:61:82:72:d2:c1:27:79:7f:9e:ce:2e:9e:7b:93:
4d:02:13:0f:8a:2d:31:1b:18:d9:45:cd:01:30:5f:
ac:e2:ee:2c:8e:e8:d2:e3:9f:06:4f:0d:ad:c9:be:
40:9d:5b:fe:92:a3:9d:4a:f8:10:16:be:fe:8b:ff:
00:09:e9:07:6a:da:e0:7f:a4:1a:ca:d2:60:c8:8b:
93:f3:7d:74:e1:81:99:1f:b4:cf:49:ef:db:f2:08:
bb:8f:24:9a:c1:f9:9d:a1:bb:91:a4:bd:49:f5:a9:
4f:1b:f6:56:86:b5:cc:c5:27:bd:d5:ef:0e:77:5c:
9b:4f:08:08:d8:ce:6f:2b:ee:3d:b7:b9:3c:93:69:
60:51:24:82:f0:0b:c5:f6:dc:7b:b1:b0:72:b6:36:
15:c0:b1:e8:37:77:bd:65:af:1e:52:03:9d:dd:7c:
71:41:7c:91:85:6a:27:f2:f3:bd:c9:f1:9c:59:bd:
e8:97:13:36:bd:6e:45:63:cc:ba:ad:76:87:4e:0e:
ff:bf:e5:48:1e:8f:ec:47:61:c0:65:e2:5d:b2:1a:
a3:88:dc:1c:d0:1f:4e:d9:1a:e5:4c:8b:6f:8b:41:
64:a0:27:d7:07:d6:99:71:50:79:06:81:bc:bc:a3:
6f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:98:E9:58:B2:E8:40:7F:22:7B:8E:C2:14:9F:D5:B0:B2:8C:7D:90
X509v3 Authority Key Identifier:
keyid:61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/CpjpWLLoQH8ie47CFJ_VsLKMfZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.60.120.0-159.60.191.255
Signature Algorithm: sha256WithRSAEncryption
51:32:13:ac:f0:a5:11:35:5b:a5:77:8d:7f:a8:49:02:4d:dc:
7e:0c:bd:77:e6:b6:1a:b7:a3:17:d7:40:cc:83:c6:aa:42:2a:
ee:92:09:35:5e:af:82:34:88:98:97:eb:97:8d:45:bb:5f:bf:
8e:03:48:e1:1a:82:70:34:61:6b:59:0f:6c:92:37:3b:d1:f3:
bc:e8:db:e9:7c:a4:03:1f:3c:83:d5:c9:3f:4c:32:90:33:2d:
57:bb:41:b6:d1:45:c1:bb:e1:87:d3:16:3e:56:76:28:10:27:
65:91:07:dd:cd:b2:c1:b5:72:1a:64:46:f0:ae:14:de:34:43:
e8:85:22:c8:cd:d8:4e:46:57:b5:a3:c2:97:b5:cd:1d:49:56:
8e:f5:1a:ba:69:2b:e0:34:80:b7:85:09:04:b7:80:8f:6a:8b:
a4:67:71:c6:19:69:55:5b:d0:a6:e1:08:fe:51:8e:9b:6c:d0:
5c:a2:69:c7:01:ae:08:fa:47:e8:a8:ea:ec:42:89:59:04:a6:
39:ab:93:cf:ca:a8:ba:43:ac:62:a8:88:b5:c2:32:b3:cf:e7:
82:b8:5d:90:ed:d4:8b:dc:80:6b:3d:a7:5e:bb:84:a6:20:77:
4e:2e:3f:d8:75:9d:5f:da:ca:31:fa:68:91:23:05:4c:82:8d:
68:36:5e:72
-----BEGIN CERTIFICATE-----
MIIE9jCCA96gAwIBAgIDQGUnMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDYx
YjNlMWNhYjhjYmY1YjNjNmUwZmJiZTE0OTFmNDhkYTYwY2FlNmMwHhcNMjIwMzIy
MDE0MDQyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwYTk4ZTk1OGIyZTg0
MDdmMjI3YjhlYzIxNDlmZDViMGIyOGM3ZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAoATiGhIFbUVdu1dMWtloYYJy0sEneX+ezi6ee5NNAhMPii0x
GxjZRc0BMF+s4u4sjujS458GTw2tyb5AnVv+kqOdSvgQFr7+i/8ACekHatrgf6Qa
ytJgyIuT83104YGZH7TPSe/b8gi7jySawfmdobuRpL1J9alPG/ZWhrXMxSe91e8O
d1ybTwgI2M5vK+49t7k8k2lgUSSC8AvF9tx7sbBytjYVwLHoN3e9Za8eUgOd3Xxx
QXyRhWon8vO9yfGcWb3olxM2vW5FY8y6rXaHTg7/v+VIHo/sR2HAZeJdshqjiNwc
0B9O2RrlTItvi0FkoCfXB9aZcVB5BoG8vKNvvQIDAQABo4ICETCCAg0wHQYDVR0O
BBYEFAqY6Viy6EB/InuOwhSf1bCyjH2QMB8GA1UdIwQYMBaAFGGz4cq4y/WzxuD7
vhSR9I2mDK5sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WWJQaHlyakw5YlBHNFB1LUZKSDBqYVlNcm13LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC80Yi85ZGVmODYtYjFhYy00MGU2LTgzYmQtOTQ3Y2M1NGViZTAyLzEv
Q3BqcFdMTG9RSDhpZTQ3Q0ZKX1ZzTEtNZlpBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi85
ZGVmODYtYjFhYy00MGU2LTgzYmQtOTQ3Y2M1NGViZTAyLzEvWWJQaHlyakw5YlBH
NFB1LUZKSDBqYVlNcm13LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcG
CCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAOfPHgDBAafPIAwDQYJKoZIhvcN
AQELBQADggEBAFEyE6zwpRE1W6V3jX+oSQJN3H4MvXfmthq3oxfXQMyDxqpCKu6S
CTVer4I0iJiX65eNRbtfv44DSOEagnA0YWtZD2ySNzvR87zo2+l8pAMfPIPVyT9M
MpAzLVe7QbbRRcG74YfTFj5WdigQJ2WRB93NssG1chpkRvCuFN40Q+iFIsjN2E5G
V7Wjwpe1zR1JVo71GrppK+A0gLeFCQS3gI9qi6RnccYZaVVb0KbhCP5Rjpts0Fyi
accBrgj6R+io6uxCiVkEpjmrk8/KqLpDrGKoiLXCMrPP54K4XZDt1IvcgGs9p167
hKYgd04uP9h1nV/ayjH6aJEjBUyCjWg2XnI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:15 2024 by rpki-client on console-ams.rpki-client.org