Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1qZgUYIOSLRmYXUb7-cCYmA_FwE.roa
File: 1qZgUYIOSLRmYXUb7-cCYmA_FwE.roa (raw, json)
Hash identifier: yOTO7tk0kBy+pWzSX8eu5emLAdQ/6Hp5Z6u4LU3w4Ng=
Subject key identifier: D6:A6:60:51:82:0E:48:B4:66:61:75:1B:EF:E7:02:62:60:3F:17:01
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03C3073C
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1qZgUYIOSLRmYXUb7-cCYmA_FwE.roa
Signing time: Wed 18 May 2022 14:09:17 +0000
ROA not before: Wed 18 May 2022 14:09:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 141.98.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63113020 (0x3c3073c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: May 18 14:09:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6a66051820e48b46661751befe70262603f1701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d3:f4:40:ae:3c:4c:e5:d2:c1:58:79:a3:08:
8e:2c:20:b6:29:85:5a:60:5d:70:d8:85:73:6e:73:
21:07:63:00:6b:0e:02:88:cb:af:29:57:b1:04:61:
51:ee:7d:a0:b5:29:b3:b7:35:b6:a3:e9:15:69:77:
46:59:39:ea:8f:46:7e:ad:96:4e:47:12:77:47:20:
48:ac:06:27:94:d6:57:67:6b:29:cc:c9:bb:e3:1f:
84:41:d1:5d:37:73:35:16:2b:5f:4a:d4:71:db:3e:
b6:4c:b2:21:1c:2c:46:86:c8:20:0e:4c:dc:ec:b2:
00:1b:fc:7e:f0:31:16:63:7c:48:95:a0:0e:89:90:
71:c9:8d:64:4c:2e:fc:53:ff:89:81:05:7a:13:de:
27:04:1b:6c:77:77:b3:1a:cf:ea:ce:e4:6f:69:e7:
51:f3:cf:9a:8f:a6:47:d1:04:40:45:03:1f:47:b6:
8f:71:b7:04:75:69:2a:b7:e6:04:bb:d6:72:a2:60:
e9:dd:dd:5c:0d:98:fc:51:3b:75:a1:2d:0a:e6:c6:
5e:6b:e3:78:98:9e:f2:0b:64:3b:da:a4:70:9e:53:
fc:b4:de:fb:9a:fc:68:05:5d:20:29:14:8a:09:7e:
d6:3d:df:1a:d2:6a:69:6b:7a:ae:95:24:dd:40:28:
4e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A6:60:51:82:0E:48:B4:66:61:75:1B:EF:E7:02:62:60:3F:17:01
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1qZgUYIOSLRmYXUb7-cCYmA_FwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.52.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:71:94:3e:0f:ef:a6:dd:b3:b8:ef:9b:6d:0c:57:9a:8d:4f:
e9:25:43:34:8b:78:27:3a:b2:15:9e:1c:00:a7:6b:cf:ad:16:
ff:93:d9:47:99:aa:b4:4f:11:ab:88:f6:d5:7b:f7:bd:c8:ea:
06:76:4c:bf:74:dc:3a:df:14:b1:fa:e0:e7:ee:a4:24:69:bb:
8d:3d:c6:25:16:d7:62:d4:df:87:cc:a7:18:0b:65:83:6c:ba:
29:4a:6a:11:70:73:89:48:04:65:be:70:2e:40:d3:f5:7c:5a:
89:86:b3:de:92:75:02:9e:8b:55:9c:dc:c5:95:f4:ec:19:61:
1e:8b:6c:09:07:0f:39:7e:b6:c7:be:6d:29:71:a4:13:6f:57:
fb:b9:8c:af:8e:b9:f7:f0:68:6c:08:49:46:ca:e8:68:06:a1:
1f:7a:4d:14:05:20:84:a6:fb:9f:f5:5e:08:2a:30:31:f8:bb:
69:36:69:6c:13:8b:cc:ce:a4:bc:d3:84:2d:a8:96:85:c7:53:
67:9c:f6:95:d2:85:77:55:88:40:8c:d4:9c:d2:42:cc:15:cf:
e5:3a:30:7f:2b:c3:8e:bc:9f:ec:c3:71:89:77:95:8e:e6:ec:
b6:1a:31:bf:ca:d7:14:d4:14:dc:3e:2b:f5:73:e5:3e:98:fd:
01:be:8c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org