Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/dEfUp3Iw5QLAlSNBiAJ4IqtGchE.roa
File: dEfUp3Iw5QLAlSNBiAJ4IqtGchE.roa (raw, json)
Hash identifier: yX7kWF5yS90UC5DbnHlJkfeRRXKi4bpMCFfllNaZ09k=
Subject key identifier: 74:47:D4:A7:72:30:E5:02:C0:95:23:41:88:02:78:22:AB:46:72:11
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 0144F68E
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/dEfUp3Iw5QLAlSNBiAJ4IqtGchE.roa
Signing time: Mon 03 Jan 2022 19:17:40 +0000
ROA not before: Mon 03 Jan 2022 19:17:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13768
IP address blocks: 104.249.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21296782 (0x144f68e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Jan 3 19:17:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7447d4a77230e502c095234188027822ab467211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:db:00:57:2a:bd:5a:19:84:75:c6:78:a8:11:
c8:4d:46:6e:95:97:31:e7:5c:04:e8:d7:32:a0:76:
8c:69:41:39:3b:a8:59:15:32:80:9c:7c:95:ca:a6:
f6:1b:61:e0:c2:b0:d1:9b:e1:fa:d5:65:8d:22:7d:
82:9c:89:56:b3:7b:28:78:98:e4:3f:f0:60:3c:57:
f9:86:5e:bc:45:ea:46:bb:22:8b:25:e6:ff:19:e7:
04:cd:91:c9:d1:50:91:99:a0:3f:f7:c0:94:70:f0:
31:1e:e4:f6:56:71:85:60:10:70:e9:a5:5e:76:fe:
fd:b2:b6:29:bd:b3:68:a0:8d:7e:a2:2d:fd:9f:b2:
8b:87:a4:da:74:20:9b:7f:bf:2f:a5:ab:99:cb:91:
96:d6:02:7a:25:44:87:f4:26:33:f2:e3:e7:87:4f:
94:68:0d:f4:9e:6d:76:d0:d3:4a:cc:c3:eb:d2:57:
96:08:7d:c8:ac:83:ee:ab:f8:22:a8:72:c9:55:d6:
2a:f2:40:6e:d6:b6:95:27:54:28:33:cd:78:d8:3d:
39:61:71:20:ea:96:5b:35:37:ea:7c:c7:4c:a8:87:
e0:c7:77:04:e0:9c:f8:12:77:7c:bc:c6:e1:5a:be:
e7:4f:2c:fa:64:25:5d:e2:e6:b4:59:5a:94:52:90:
18:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:47:D4:A7:72:30:E5:02:C0:95:23:41:88:02:78:22:AB:46:72:11
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/dEfUp3Iw5QLAlSNBiAJ4IqtGchE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.249.24.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:23:58:19:b0:69:be:e0:9d:5e:d2:07:58:00:27:d5:5f:05:
fc:a2:e3:ee:8f:b2:6b:ac:62:72:b5:e4:ca:3a:da:91:2e:65:
2b:1c:9c:c2:67:15:8e:ce:d9:56:eb:91:bb:82:df:a4:3e:bd:
14:f8:a0:55:d6:ea:a1:3a:4c:aa:b0:be:f2:e5:bc:cf:d8:41:
75:11:02:57:26:82:ae:8c:0c:5a:1f:a6:d6:4e:66:56:69:57:
71:24:ad:4a:08:65:d8:13:28:b1:25:d1:7c:ff:7c:71:dc:bf:
2c:80:12:86:79:8f:40:68:5e:8b:69:3c:09:79:87:ca:02:94:
07:ba:a4:23:f9:99:40:87:4b:31:18:33:2a:ef:79:b2:a0:cb:
1d:48:9c:06:22:e8:5a:6b:a3:95:d9:c3:1c:4b:20:5f:82:33:
08:a5:85:40:6f:d9:f1:57:0e:99:d3:76:ef:bc:5a:47:5f:2c:
d0:ec:75:be:32:ac:73:fe:58:99:75:c7:c1:7a:39:2e:10:47:
41:09:bf:63:97:be:1b:15:5a:ea:55:c3:04:98:10:07:45:db:
8d:18:b0:0a:39:9b:e0:c0:0f:c4:cb:c0:db:94:0b:a2:6d:a2:
28:51:2a:f0:bc:30:46:fa:12:5c:2b:97:d5:f4:66:ea:3a:7d:
cd:23:8a:ac
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAUT2jjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDU4MWU2NzNkODBmNzQ3NDkzNmIyMTMzN2VhZmNjMWJkYzM4NWU5MB4XDTIyMDEw
MzE5MTc0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzQ0N2Q0YTc3MjMw
ZTUwMmMwOTUyMzQxODgwMjc4MjJhYjQ2NzIxMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKbbAFcqvVoZhHXGeKgRyE1GbpWXMedcBOjXMqB2jGlBOTuo
WRUygJx8lcqm9hth4MKw0Zvh+tVljSJ9gpyJVrN7KHiY5D/wYDxX+YZevEXqRrsi
iyXm/xnnBM2RydFQkZmgP/fAlHDwMR7k9lZxhWAQcOmlXnb+/bK2Kb2zaKCNfqIt
/Z+yi4ek2nQgm3+/L6WrmcuRltYCeiVEh/QmM/Lj54dPlGgN9J5tdtDTSszD69JX
lgh9yKyD7qv4IqhyyVXWKvJAbta2lSdUKDPNeNg9OWFxIOqWWzU36nzHTKiH4Md3
BOCc+BJ3fLzG4Vq+508s+mQlXeLmtFlalFKQGGsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR0R9SncjDlAsCVI0GIAngiq0ZyETAfBgNVHSMEGDAWgBRgWB5nPYD3R0k2
shM36vzBvcOF6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lGZ2VaejJBOTBkSk5ySVROLXI4d2IzRGhlay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvZmRkNjMzLWM2NTgtNDljNS05ZThmLWZiMDc5NTVmM2FhYS8x
L2RFZlVwM0l3NVFMQWxTTkJpQUo0SXF0R2NoRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
ZmRkNjMzLWM2NTgtNDljNS05ZThmLWZiMDc5NTVmM2FhYS8xL1lGZ2VaejJBOTBk
Sk5ySVROLXI4d2IzRGhlay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGj5GDANBgkqhkiG9w0BAQsFAAOC
AQEAfyNYGbBpvuCdXtIHWAAn1V8F/KLj7o+ya6xicrXkyjrakS5lKxycwmcVjs7Z
VuuRu4LfpD69FPigVdbqoTpMqrC+8uW8z9hBdRECVyaCrowMWh+m1k5mVmlXcSSt
Sghl2BMosSXRfP98cdy/LIAShnmPQGhei2k8CXmHygKUB7qkI/mZQIdLMRgzKu95
sqDLHUicBiLoWmujldnDHEsgX4IzCKWFQG/Z8VcOmdN277xaR18s0Ox1vjKsc/5Y
mXXHwXo5LhBHQQm/Y5e+GxVa6lXDBJgQB0XbjRiwCjmb4MAPxMvA25QLom2iKFEq
8LwwRvoSXCuX1fRm6jp9zSOKrA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:45 2024 by rpki-client on console-ams.rpki-client.org