Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/c9ebb2-851d-4578-a879-c29bf25d266e/1/Dq2-p78vdF2l8y8BYOp1vYMBsaI.roa
File: Dq2-p78vdF2l8y8BYOp1vYMBsaI.roa (raw, json)
Hash identifier: BRVZlYrpAg7xPQYzrm3neQykUOz9Ea8yWqWiybRAgp0=
Subject key identifier: 0E:AD:BE:A7:BF:2F:74:5D:A5:F3:2F:01:60:EA:75:BD:83:01:B1:A2
Certificate issuer: /CN=8888818c4ecf1d5deb4ea93667470a7a114d9a07
Certificate serial: 06A39A3B
Authority key identifier: 88:88:81:8C:4E:CF:1D:5D:EB:4E:A9:36:67:47:0A:7A:11:4D:9A:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIiBjE7PHV3rTqk2Z0cKehFNmgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/c9ebb2-851d-4578-a879-c29bf25d266e/1/Dq2-p78vdF2l8y8BYOp1vYMBsaI.roa
Signing time: Sat 01 Jan 2022 04:59:27 +0000
ROA not before: Sat 01 Jan 2022 04:59:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 559
IP address blocks: 192.33.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111385147 (0x6a39a3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8888818c4ecf1d5deb4ea93667470a7a114d9a07
Validity
Not Before: Jan 1 04:59:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0eadbea7bf2f745da5f32f0160ea75bd8301b1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:9c:e2:74:0f:1f:d3:cc:00:14:07:61:7b:
5d:69:7a:78:cb:5a:0d:18:0c:26:83:ca:7e:69:22:
75:70:82:35:79:b0:e8:68:95:f7:e9:45:d2:8c:67:
ca:32:32:29:4c:d5:24:91:0c:5a:eb:26:24:d0:8a:
f4:96:2f:fc:ff:5d:dd:ec:da:14:e0:3d:c6:3d:e3:
3f:d8:b2:5b:f4:2d:13:6d:8d:52:0f:a9:3a:13:74:
67:eb:4b:15:b7:bc:3c:e3:e0:90:98:44:d5:14:cc:
8c:94:11:27:7d:33:d5:1d:9b:fc:06:1c:ca:bf:34:
5f:2a:e3:22:11:f3:14:ce:0a:54:b2:78:a5:11:a0:
bb:a7:98:fb:4d:23:4e:76:09:50:58:6f:a6:85:a3:
d1:a9:a7:6c:f0:4f:57:c2:f9:cc:d5:32:21:47:df:
c1:16:bc:80:9c:d7:24:15:52:71:1a:6c:53:de:32:
0c:14:80:96:eb:36:45:9e:5b:27:bc:30:91:a1:00:
fe:92:a0:3c:ac:97:a4:33:53:b3:24:9a:c5:14:96:
2d:27:7e:78:cc:23:75:dc:bc:25:69:8e:aa:9b:d1:
86:ad:f0:72:a2:e4:fc:d3:c9:ab:88:8b:a6:2e:dd:
7e:98:b5:2a:93:30:8c:4a:18:18:d4:ea:da:e0:66:
9a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AD:BE:A7:BF:2F:74:5D:A5:F3:2F:01:60:EA:75:BD:83:01:B1:A2
X509v3 Authority Key Identifier:
keyid:88:88:81:8C:4E:CF:1D:5D:EB:4E:A9:36:67:47:0A:7A:11:4D:9A:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIiBjE7PHV3rTqk2Z0cKehFNmgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c9ebb2-851d-4578-a879-c29bf25d266e/1/Dq2-p78vdF2l8y8BYOp1vYMBsaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c9ebb2-851d-4578-a879-c29bf25d266e/1/iIiBjE7PHV3rTqk2Z0cKehFNmgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.33.221.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:21:62:e6:b0:06:e3:7b:17:ed:61:23:0c:3d:3c:cd:6a:fe:
60:67:30:f5:7d:93:1b:71:f4:a3:8d:28:51:9a:d5:89:37:8e:
40:d6:1a:1f:d0:cf:ab:d7:35:b5:00:b1:40:57:ac:f7:2e:4a:
e7:b4:98:98:43:1a:c2:94:82:93:2f:00:c1:2e:30:ce:3a:2f:
d3:44:68:db:4f:fe:f5:85:c7:bf:3d:00:99:3d:43:d4:7c:fc:
e5:94:a9:26:c3:15:4a:b7:6b:8b:90:b9:75:41:45:0a:13:9e:
79:4e:92:97:13:3d:5e:92:ed:5b:84:c9:50:24:1a:55:d6:fb:
bb:2f:90:88:e5:71:0c:e9:e9:79:27:9c:4b:f8:76:2d:16:e4:
e0:77:59:86:dd:ba:34:63:cf:38:f0:cb:7d:39:7a:11:ef:98:
12:b3:23:18:9d:7f:b4:d8:69:c2:a3:c7:95:60:3f:09:13:e0:
54:dc:c9:a0:93:75:89:53:3a:de:1a:cf:5c:a6:47:65:d8:99:
06:ba:bd:8e:9a:10:b3:c7:0e:9e:5a:55:cb:63:ec:ef:3a:c5:
e6:91:89:5b:9b:ac:96:25:84:83:b4:cf:59:23:a0:d3:0a:aa:
ea:b3:c2:75:4e:52:df:40:b7:91:fa:80:00:f3:09:b7:41:41:
cb:ed:aa:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:25 2024 by rpki-client on console-ams.rpki-client.org