Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/oTNd_HOG1wucsuxI6bY8LHUUiIU.roa
File: oTNd_HOG1wucsuxI6bY8LHUUiIU.roa (raw, json)
Hash identifier: AJGQ4PnfnxdMu/FrPWFQdkZr3SgqMeejnTtNRYf8Hl0=
Subject key identifier: A1:33:5D:FC:73:86:D7:0B:9C:B2:EC:48:E9:B6:3C:2C:75:14:88:85
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A84BBD9
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/oTNd_HOG1wucsuxI6bY8LHUUiIU.roa
Signing time: Sat 01 Jan 2022 16:07:13 +0000
ROA not before: Sat 01 Jan 2022 16:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60168
IP address blocks: 151.237.136.0/23 maxlen: 23
5.32.130.0/24 maxlen: 24
5.32.131.0/24 maxlen: 24
5.32.129.0/24 maxlen: 24
5.32.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176471001 (0xa84bbd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1335dfc7386d70b9cb2ec48e9b63c2c75148885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:aa:ab:4d:75:d5:ba:7d:12:c5:83:ec:06:ac:
d5:02:a0:cb:21:6f:84:7c:f6:56:fa:fb:17:56:35:
7c:3e:47:c5:c3:84:9a:5f:0b:3e:a1:8f:66:2d:1c:
55:1c:f4:e8:2d:a3:5d:d5:38:35:4c:2b:71:4a:57:
27:5c:46:2d:54:e0:dd:40:78:5e:a2:78:59:5a:cb:
90:6b:2a:ed:e5:d1:d5:9f:77:bc:d4:c5:e5:d2:e7:
af:5f:4e:90:4d:99:f0:a6:99:a6:41:59:8e:31:5a:
c3:d9:2f:eb:48:c8:85:56:19:f3:26:18:63:b3:3c:
68:3d:f4:1a:e7:20:4e:4d:26:de:62:de:aa:94:52:
ad:f8:7e:79:c0:5a:e9:dc:46:17:12:e4:15:6d:34:
41:f1:a3:57:5f:76:e0:ca:7e:be:e4:28:c5:58:b3:
db:f7:6b:8c:31:b8:9b:71:87:b5:11:af:c6:2c:7b:
51:6f:a0:67:a9:3e:4d:e4:31:75:94:b0:74:47:4d:
86:af:ed:e9:ec:2d:84:86:be:0b:f9:b8:54:d6:c7:
a4:cb:a1:67:73:3f:25:9d:bb:b0:3a:82:ac:eb:94:
9a:66:3e:15:aa:61:0c:54:fc:e1:3c:e9:10:e9:69:
40:f0:d6:46:88:c3:ce:7e:f9:31:90:32:f4:5f:fd:
76:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:33:5D:FC:73:86:D7:0B:9C:B2:EC:48:E9:B6:3C:2C:75:14:88:85
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/oTNd_HOG1wucsuxI6bY8LHUUiIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.32.128.0/22
151.237.136.0/23
Signature Algorithm: sha256WithRSAEncryption
d0:d3:94:b7:51:af:99:f5:98:47:95:d8:e7:57:b3:59:b1:ee:
c1:9c:08:08:fc:f6:60:01:8b:30:89:9f:ce:de:2b:67:0f:5d:
a5:85:93:91:d8:49:29:73:f1:62:54:63:8f:ae:3a:7b:7d:d5:
18:f4:31:8d:bc:d0:35:d6:31:23:1d:c5:86:a6:16:07:9c:76:
ca:b4:b3:d6:4e:a9:53:68:e1:88:77:2e:ab:14:e9:84:e3:86:
3a:40:e6:e3:9c:ce:b0:48:c2:c4:76:eb:57:ea:16:31:c4:03:
d2:d6:4b:03:dd:2e:91:23:0a:a6:26:b8:4a:42:48:81:c8:61:
d8:a8:2d:15:b7:44:65:2c:ae:6f:30:99:92:ba:08:4f:21:26:
9d:e0:f8:84:e7:a3:cf:5b:87:ab:e9:a6:d9:29:17:7f:78:f0:
c2:ad:b1:dd:e9:68:17:04:bb:58:c8:09:53:84:ff:99:da:ce:
b3:37:a5:1d:16:4c:79:7e:61:1b:11:90:42:23:0f:63:72:a6:
fa:10:c7:87:c3:9e:b4:95:a2:4b:8b:6c:4c:ba:f9:ea:07:95:
76:d3:b8:29:37:c4:e2:97:e8:65:d7:24:27:09:5d:ca:bb:01:
2d:a5:ba:87:5f:ba:c4:3e:72:02:67:fd:f2:8b:67:b4:52:9c:
e0:96:76:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org