Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/o2gg2g-QmFaWiPXowg3v-endzzU.roa
File: o2gg2g-QmFaWiPXowg3v-endzzU.roa (raw, json)
Hash identifier: 7XFtSm4W3wjF+P5j+2sVINEZtlINPn5z5cAXvMKrOu8=
Subject key identifier: A3:68:20:DA:0F:90:98:56:96:88:F5:E8:C2:0D:EF:F9:E9:DD:CF:35
Certificate issuer: /CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Certificate serial: 0A55983E
Authority key identifier: FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/o2gg2g-QmFaWiPXowg3v-endzzU.roa
Signing time: Sat 01 Jan 2022 12:58:09 +0000
ROA not before: Sat 01 Jan 2022 12:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206600
IP address blocks: 212.70.164.0/24 maxlen: 24
195.244.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173381694 (0xa55983e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff698eeb2e49fcb5f9c65a99857af29ce06641d9
Validity
Not Before: Jan 1 12:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a36820da0f9098569688f5e8c20deff9e9ddcf35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d9:f3:ee:63:a8:29:89:bf:4a:eb:69:e0:6c:
f0:16:3b:e7:38:54:0a:65:3d:67:34:64:bb:4f:75:
fc:5b:4e:85:53:e6:1b:5e:ae:3d:af:a3:e5:6a:50:
e8:83:63:b6:5e:81:a9:19:c0:d0:43:b0:fd:61:63:
e7:49:56:96:64:c2:12:55:36:ab:71:ec:15:b9:ed:
8e:19:9f:d7:ae:33:02:79:e8:59:b5:d3:b0:6b:f0:
56:7e:f6:dc:cd:ec:79:5b:a2:a8:12:e2:7f:3b:e1:
61:de:e6:92:fa:4c:1b:e6:3d:9b:67:4a:08:cf:f0:
df:85:6f:28:99:58:4e:cb:cd:a1:02:3b:3b:9e:39:
45:47:6d:45:de:1f:fe:d0:17:b2:54:bf:88:5c:69:
60:d9:ad:a9:61:2b:5a:8a:c5:f2:4f:34:4b:3b:13:
d4:8f:08:4f:da:df:a4:3f:ad:fa:d9:e0:ad:c1:f8:
5a:7e:75:12:3f:14:5b:34:fb:67:ab:45:32:96:64:
58:29:07:68:d5:b6:4a:fe:4a:d7:36:83:d5:dc:44:
26:85:99:2e:1c:b2:dd:35:76:77:42:77:dc:3a:5d:
55:fb:05:f6:c6:25:05:7d:f1:b6:95:06:26:15:ef:
55:3d:c6:8f:14:33:55:6b:db:37:bc:b9:c9:39:36:
e1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:68:20:DA:0F:90:98:56:96:88:F5:E8:C2:0D:EF:F9:E9:DD:CF:35
X509v3 Authority Key Identifier:
keyid:FF:69:8E:EB:2E:49:FC:B5:F9:C6:5A:99:85:7A:F2:9C:E0:66:41:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2mO6y5J_LX5xlqZhXrynOBmQdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/o2gg2g-QmFaWiPXowg3v-endzzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b4d75d-953a-4036-9839-57cd68d9cb4e/1/_2mO6y5J_LX5xlqZhXrynOBmQdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.159.0/24
212.70.164.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f6:3c:a8:20:87:cf:59:5c:62:a8:0c:5d:de:75:2c:3c:08:
50:4a:0d:86:33:ae:56:76:a7:80:21:01:41:28:93:63:9f:f4:
d8:20:a8:0a:e0:06:06:be:74:6d:92:7f:14:d9:0e:69:2d:d4:
fd:10:29:e9:5d:db:1e:4c:25:06:75:e8:9b:08:1f:d0:d8:b1:
b0:a1:2d:c9:4f:53:f6:02:e5:fe:bb:b9:7d:ad:ea:00:4f:d6:
d1:88:ca:c4:e2:b2:4b:26:39:ce:28:00:d0:c1:33:de:ed:ff:
15:c8:73:ec:d3:e1:73:cb:d8:cb:e7:4a:14:a9:c8:35:cf:e4:
a2:39:f5:2b:b4:c5:3c:a2:fa:ab:d4:89:a9:a4:03:53:6c:fb:
6b:68:c6:93:4f:2d:9d:57:8c:29:59:20:bc:93:9d:d1:01:b6:
5e:5c:f0:d8:db:32:d3:a4:9a:ea:2b:2d:d6:00:f3:fa:89:02:
59:16:4c:db:58:73:a5:ea:1d:b6:2f:c3:46:12:30:bd:f2:58:
0c:79:8d:20:22:63:08:8a:31:dc:cf:36:2c:5e:f1:83:00:ad:
a6:94:ca:c4:17:7a:f0:3c:18:bb:59:a3:de:d7:07:15:f3:3c:
53:f0:82:52:a3:91:4f:df:82:74:e0:88:f4:33:b1:90:88:ff:
43:c1:b5:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:39 2024 by rpki-client on console-ams.rpki-client.org