Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/flkZHjWGgOpEa-Qp9bdp3AiZtPA.roa
File: flkZHjWGgOpEa-Qp9bdp3AiZtPA.roa (raw, json)
Hash identifier: /8aJVtQDSUrOFVaamty0leVAQzSBQRFlqsraTxeX39w=
Subject key identifier: 7E:59:19:1E:35:86:80:EA:44:6B:E4:29:F5:B7:69:DC:08:99:B4:F0
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 16E60330
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/flkZHjWGgOpEa-Qp9bdp3AiZtPA.roa
Signing time: Sat 01 Jan 2022 12:01:40 +0000
ROA not before: Sat 01 Jan 2022 12:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203371
IP address blocks: 141.101.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384172848 (0x16e60330)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 12:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e59191e358680ea446be429f5b769dc0899b4f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b4:5b:f0:89:65:78:22:7e:f6:d6:70:bb:69:
72:29:b7:23:32:21:c1:f0:fe:8b:91:5b:6b:17:7f:
2c:5f:c8:25:6e:96:24:84:d3:b5:41:9a:51:d1:d3:
74:51:46:ed:06:c2:b5:66:51:8d:6d:a8:ce:bf:30:
11:f9:74:ca:d8:38:cc:00:d2:97:3a:24:25:af:d4:
78:2e:6e:0c:8d:30:af:4c:94:fa:30:80:bc:b2:02:
c8:9b:a1:bd:cf:0c:84:51:47:70:ea:d7:24:f0:44:
9c:a2:c4:ce:fd:ef:1b:0c:52:2c:26:e2:54:7d:98:
e7:85:fe:39:d2:0d:d7:7d:09:89:eb:dd:98:14:41:
66:9d:73:29:71:b3:1c:ce:ca:af:7e:db:38:0b:04:
94:a5:b4:56:96:89:50:d3:09:8c:66:f9:8e:6d:0c:
c4:15:6f:a5:f7:7f:9d:88:58:15:c4:39:53:75:26:
a9:39:d5:7e:ae:f9:22:14:69:bb:23:52:38:cd:ef:
39:d1:eb:4d:ed:8a:9c:72:8e:ea:bb:7c:69:0e:fa:
ce:ee:d4:db:ed:af:57:47:33:18:f7:e8:a6:13:c6:
74:c6:62:ee:fa:13:e3:3f:bf:ac:9a:e8:d4:d8:c5:
c1:82:07:7a:eb:15:c7:39:f3:9c:71:41:d5:15:ea:
7b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:59:19:1E:35:86:80:EA:44:6B:E4:29:F5:B7:69:DC:08:99:B4:F0
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/flkZHjWGgOpEa-Qp9bdp3AiZtPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.224.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:36:49:0d:27:32:53:e1:0a:06:c6:de:1c:62:a4:1a:b3:98:
63:7f:00:94:a8:35:cd:28:07:1c:18:8e:ed:a0:ae:97:3b:96:
8a:85:05:8e:7b:dc:87:ba:6e:ea:14:8b:ff:34:d4:a7:b9:df:
2d:02:ee:d7:ac:2c:7f:d0:4d:e0:44:32:93:2c:91:16:b1:ea:
67:76:ff:ad:3e:2c:88:4d:c9:c8:a1:e9:ca:28:f5:6e:80:db:
76:85:ac:c1:bd:5b:02:71:b1:49:b7:1d:a6:57:75:7f:bb:ef:
fe:bd:50:88:16:ca:ae:fe:90:e1:fb:67:08:c5:6d:c2:0a:b9:
03:d3:f3:89:38:b9:f7:55:bf:30:9d:b5:15:47:16:44:42:f7:
ed:1a:86:30:d9:1d:42:34:ce:77:8c:c6:17:cb:36:09:f0:4f:
61:af:96:d0:4f:33:66:15:a7:d2:35:f3:d5:d5:0a:23:1b:11:
22:1e:69:86:ff:84:a8:72:d9:a4:93:69:5a:21:34:4b:fe:61:
27:5c:5f:53:da:33:74:36:82:2b:3d:02:4d:b5:f4:6e:96:49:
c8:92:14:03:cb:20:dc:43:69:3b:b6:43:b3:7a:36:ed:53:be:
0b:5d:3a:b7:9b:41:5b:1a:d8:cd:d3:de:ca:1d:51:8b:0e:c8:
6d:88:d1:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:33 2024 by rpki-client on console-ams.rpki-client.org