Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/s4osSvf2fSqsejK-GkKkeGtCogw.roa
File: s4osSvf2fSqsejK-GkKkeGtCogw.roa (raw, json)
Hash identifier: nlfNqHmOMe5uHSF+NhDyP2JLptmZITFC5RLYFDRFMAE=
Subject key identifier: B3:8A:2C:4A:F7:F6:7D:2A:AC:7A:32:BE:1A:42:A4:78:6B:42:A2:0C
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 18C724BB
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/s4osSvf2fSqsejK-GkKkeGtCogw.roa
Signing time: Tue 28 Jun 2022 15:03:02 +0000
ROA not before: Tue 28 Jun 2022 15:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60067
IP address blocks: 141.101.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415704251 (0x18c724bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jun 28 15:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b38a2c4af7f67d2aac7a32be1a42a4786b42a20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d7:75:be:40:2b:e9:5b:48:5c:7a:ca:de:ad:
3d:ab:ce:d6:9a:ce:d9:38:3c:be:77:99:58:fa:c4:
8f:c7:85:b7:02:aa:55:13:5e:44:0e:1b:66:66:a9:
d9:be:52:3c:9b:e3:4f:c0:7c:72:31:62:2f:68:6b:
97:b0:74:f1:8c:fc:ae:92:cc:05:16:96:01:5e:ad:
1d:21:49:43:c4:d0:cb:b5:fd:ef:65:45:10:97:bf:
4e:75:be:df:ba:d0:49:ea:b3:2d:eb:cb:4c:9a:c4:
d1:66:9c:05:c8:48:91:f4:bf:bf:ad:1b:b7:70:ed:
9c:35:41:3d:c6:32:71:8f:f4:8a:2e:4b:9e:4f:59:
83:b0:51:b5:6d:e9:42:ce:7f:93:73:5a:7e:96:ba:
7b:04:f1:eb:69:e0:c6:cf:3c:1d:6f:1c:3a:5b:1b:
4c:f0:a8:60:b2:4f:c7:a3:98:ef:28:f6:61:45:70:
02:0f:58:27:ee:b3:33:49:16:c1:f9:6f:89:ec:b9:
0f:66:72:0b:ec:a7:b9:73:a1:76:a8:f3:c1:60:7c:
8b:10:b0:4f:34:b8:cb:12:40:af:91:bf:3e:c0:0a:
87:76:79:ca:cf:fd:3e:1c:ff:95:c6:de:a6:26:90:
6e:19:fb:04:6b:4c:0e:1c:c0:ff:cb:48:67:39:41:
2d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:8A:2C:4A:F7:F6:7D:2A:AC:7A:32:BE:1A:42:A4:78:6B:42:A2:0C
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/s4osSvf2fSqsejK-GkKkeGtCogw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.200.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:e5:b5:c7:42:8f:b8:e2:92:68:e3:c9:b1:39:84:d7:c5:bf:
ea:5a:4c:9e:ec:b1:b4:a9:61:f7:21:78:f3:92:ce:29:96:cb:
5e:7d:82:3b:5f:c9:fc:f7:16:9e:f5:bf:3c:b5:8f:98:a4:59:
07:7e:fd:5a:aa:8f:bc:0f:12:05:42:cc:6d:cb:69:d1:43:10:
a2:1f:21:32:b0:68:6a:e6:8b:a8:2d:6b:33:d2:d8:38:93:cc:
85:2b:33:7b:86:48:ee:e9:d7:71:75:9a:93:d2:17:a9:4f:79:
d2:5b:5c:61:fd:9a:00:aa:51:d7:8c:06:21:8c:71:4b:86:47:
b5:6e:49:ce:6b:f3:f5:c8:16:7f:00:9e:b8:b3:37:9d:9b:c1:
ee:55:b6:d4:92:60:43:f9:8f:52:fa:e2:92:4e:4d:58:40:d6:
92:3e:68:87:13:d8:d5:fd:fc:49:1b:aa:0e:71:4c:b3:c6:fd:
e4:49:a8:96:ea:ed:8f:7e:34:c9:56:fb:c2:63:51:1c:ef:b4:
aa:a7:08:64:45:f3:84:99:40:0e:35:30:96:36:e4:c6:18:9c:
f2:6c:46:6e:a6:e6:25:06:2f:29:00:ca:11:67:c0:eb:82:eb:
60:f0:2c:e7:ce:50:98:55:5a:42:0c:bb:5d:56:e3:bc:14:93:
b0:4e:f2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org