Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/OsUdHWIXfSH6McQkfzkTSQyIl48.roa
File: OsUdHWIXfSH6McQkfzkTSQyIl48.roa (raw, json)
Hash identifier: NGkjPAW5Pulq/JUe+jcZk3lGC6PwHczalxyQQIKyQcE=
Subject key identifier: 3A:C5:1D:1D:62:17:7D:21:FA:31:C4:24:7F:39:13:49:0C:88:97:8F
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A8F3DCB
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/OsUdHWIXfSH6McQkfzkTSQyIl48.roa
Signing time: Sat 01 Jan 2022 16:07:18 +0000
ROA not before: Sat 01 Jan 2022 16:07:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205331
IP address blocks: 151.237.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177159627 (0xa8f3dcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ac51d1d62177d21fa31c4247f3913490c88978f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b8:94:1d:c9:32:ad:e3:64:23:68:ac:c0:79:
1d:04:8e:60:30:43:22:e2:e1:b6:44:a5:f0:3c:ea:
0a:d6:98:cf:31:9f:09:f6:0c:83:6e:c3:69:8a:df:
9a:2e:8d:ac:66:63:db:a1:6f:9f:77:a5:d4:ee:5f:
25:c3:a2:19:04:84:19:a0:e9:41:91:88:8a:74:5d:
11:ad:2a:4c:ff:d5:7c:90:e2:6b:a7:67:35:ed:48:
52:f2:e3:71:8b:1e:41:cd:04:d0:c6:6f:2e:5e:79:
0f:14:29:d8:a2:00:d0:8d:5a:d9:b3:96:bb:99:56:
7d:84:d1:c9:7f:f9:44:99:d6:5d:c3:cf:83:76:b9:
3b:e4:be:38:a4:c0:e8:51:30:1d:34:b1:6a:d3:f0:
2b:4b:40:08:9c:6d:61:87:73:4a:54:fd:44:60:b4:
d0:46:5e:79:a8:30:06:bc:ed:1e:7c:4f:9a:57:29:
a2:1a:30:50:8d:e6:11:c2:60:ad:e2:4c:23:bf:0a:
13:dd:d1:cc:ec:59:e5:2f:ee:ec:e3:f1:18:b8:71:
90:3d:ab:65:83:cb:6f:a1:a5:e8:d2:10:0c:60:f5:
e0:e8:1c:c7:63:eb:1e:29:48:69:10:71:89:5a:58:
c9:13:3a:b0:46:46:62:61:60:6a:53:69:de:0e:a5:
f1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:C5:1D:1D:62:17:7D:21:FA:31:C4:24:7F:39:13:49:0C:88:97:8F
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/OsUdHWIXfSH6McQkfzkTSQyIl48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.67.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:3c:92:26:36:38:fa:5e:b4:84:86:9d:79:df:3d:3f:ee:ee:
c2:8e:bd:db:d8:0b:eb:80:49:7f:12:f1:e8:d0:a2:d1:0a:4f:
33:3b:11:99:38:39:70:51:66:ca:0e:bb:f5:d8:49:18:45:bc:
79:73:1a:b4:ce:fb:06:71:ce:25:7e:99:35:a9:c0:4d:53:13:
10:76:39:37:77:11:8f:61:40:bc:12:f6:56:90:fb:f7:12:a5:
a3:72:2b:85:cb:f5:fb:67:5b:e7:e8:fc:f3:0e:88:10:10:01:
fc:d3:47:53:2e:e4:2c:ca:ef:cb:a2:4a:3a:ee:d4:68:61:d5:
3b:62:96:df:a4:4f:5f:b8:81:cf:41:2d:de:51:5a:6d:30:46:
9f:a3:8d:3a:82:2d:68:43:c2:61:cf:42:6c:6e:35:50:70:32:
9c:d1:d5:ec:5c:15:c2:d3:ed:80:c3:2a:6d:77:1a:27:db:02:
7c:97:ca:47:f0:49:50:25:08:82:6e:a8:67:48:a6:da:f0:17:
2b:42:1e:25:ab:30:fd:0e:43:a2:0f:57:22:ca:29:33:75:32:
fe:d1:00:db:83:39:9e:b2:10:d0:43:96:8e:dc:cd:d7:d6:e9:
a0:45:71:cd:76:49:c6:7a:51:8e:53:db:d2:e2:8a:4e:45:57:
12:26:06:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org