Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/G685lk9h7R2Fj2oG0vyfZ74OhFk.roa
File: G685lk9h7R2Fj2oG0vyfZ74OhFk.roa (raw, json)
Hash identifier: Zxn8qmO6HLLFvmP4Prnm2KJYtQ3XSRQcby20NhvjF0s=
Subject key identifier: 1B:AF:39:96:4F:61:ED:1D:85:8F:6A:06:D2:FC:9F:67:BE:0E:84:59
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 0183A6F9B3DE7FCF1AC8EF9375610398163E
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/G685lk9h7R2Fj2oG0vyfZ74OhFk.roa
Signing time: Wed 05 Oct 2022 07:08:45 +0000
ROA not before: Wed 05 Oct 2022 07:08:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272161
IP address blocks: 192.40.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:f9:b3:de:7f:cf:1a:c8:ef:93:75:61:03:98:16:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Oct 5 07:08:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1baf39964f61ed1d858f6a06d2fc9f67be0e8459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:50:7e:1e:bf:dd:c0:33:c4:b9:09:09:99:dd:
1e:d3:51:d5:89:91:d7:6e:64:44:6c:b1:f6:51:b1:
f9:23:6f:17:19:76:70:92:9d:e5:87:ee:02:c2:63:
f1:0c:2d:4a:f5:fa:29:bb:b4:78:0d:cb:84:03:51:
71:76:c4:6c:9c:a9:19:69:24:bb:30:d5:a2:ae:5c:
05:6f:3e:90:df:c6:da:03:6d:e7:03:9c:19:bb:19:
7a:96:ba:ef:0f:ee:cd:be:8a:9f:06:60:68:75:e8:
62:82:76:ac:90:79:2a:c4:52:be:a2:e7:0c:ff:58:
9b:d6:d3:4a:7e:44:ca:b4:68:bd:8e:d2:4c:27:d7:
7b:39:ee:bb:45:60:a9:4e:7b:d3:1a:4e:f7:fa:50:
0e:bb:d1:24:57:0f:c6:22:dc:9f:2a:56:39:6e:86:
14:68:c6:b4:e3:03:cc:06:25:ca:89:f7:40:43:4a:
d0:b2:3e:01:25:f1:25:4c:b7:34:12:09:1d:cd:c0:
87:ab:cd:84:a8:62:ce:5f:5d:43:d5:01:c4:cc:24:
1a:64:37:31:2e:fc:6e:75:61:a4:54:ea:5d:63:a9:
d0:77:4b:4f:59:6c:2c:ff:ce:83:17:36:bc:93:5c:
01:a6:6e:58:2c:de:09:96:f7:1d:19:3a:c8:5b:20:
21:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AF:39:96:4F:61:ED:1D:85:8F:6A:06:D2:FC:9F:67:BE:0E:84:59
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/G685lk9h7R2Fj2oG0vyfZ74OhFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.40.69.0/24
Signature Algorithm: sha256WithRSAEncryption
87:05:f0:c9:17:b7:93:0e:a5:64:77:b9:68:e1:88:eb:cd:ff:
a5:27:55:2b:af:3b:2c:cf:c0:d7:dd:2c:5f:af:61:6c:15:18:
13:f1:18:cc:86:ba:31:2b:04:f4:90:06:05:0a:0c:7a:b8:a8:
43:5e:d9:09:00:e4:88:ab:2e:80:09:ca:83:9d:d8:1f:63:01:
14:31:c4:16:eb:42:e1:54:d3:00:45:fb:d6:7d:07:e7:6f:96:
bd:bb:9c:3f:94:8b:f7:f5:54:c6:f4:63:f8:73:bf:9d:dd:17:
6a:c4:c3:74:0c:86:97:63:05:7d:76:c5:9a:40:61:40:cd:3a:
64:a0:11:9a:de:fc:45:62:d3:fd:3b:72:ec:85:6b:88:04:04:
92:39:40:3d:44:46:7f:39:e3:38:af:fa:7a:8f:3a:71:a1:60:
d6:35:0b:42:dc:ca:4c:cd:cc:83:a3:3c:19:b2:93:c7:9c:58:
6c:36:5f:37:14:e5:a5:42:9a:be:4e:33:52:d6:ed:06:b8:5b:
6e:d5:dc:6c:d6:7e:b7:0f:ba:62:78:21:b3:70:0b:45:e8:4e:
ce:32:62:15:d7:90:04:b6:8f:50:35:30:fb:04:2d:08:71:ac:
42:46:3d:a8:2f:d7:2c:c9:c9:ea:51:52:24:44:13:c3:c6:a4:
7f:f3:37:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOm+bPef88ayO+TdWEDmBY+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwOTk4ZDNjOWQ4YmRjOWMxZGZmOGUzMTk0MjQ0MTJiNmNk
YzFkZDMwHhcNMjIxMDA1MDcwODQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYmFmMzk5NjRmNjFlZDFkODU4ZjZhMDZkMmZjOWY2N2JlMGU4NDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolB+Hr/dwDPEuQkJmd0e01HViZHX
bmREbLH2UbH5I28XGXZwkp3lh+4CwmPxDC1K9fopu7R4DcuEA1FxdsRsnKkZaSS7
MNWirlwFbz6Q38baA23nA5wZuxl6lrrvD+7NvoqfBmBodehignaskHkqxFK+oucM
/1ib1tNKfkTKtGi9jtJMJ9d7Oe67RWCpTnvTGk73+lAOu9EkVw/GItyfKlY5boYU
aMa04wPMBiXKifdAQ0rQsj4BJfElTLc0EgkdzcCHq82EqGLOX11D1QHEzCQaZDcx
LvxudWGkVOpdY6nQd0tPWWws/86DFza8k1wBpm5YLN4JlvcdGTrIWyAhwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBuvOZZPYe0dhY9qBtL8n2e+DoRZMB8GA1UdIwQY
MBaAFGCZjTydi9ycHf+OMZQkQSts3B3TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUptTlBKMkwzSndkXzQ0eGxDUkJLMnpjSGRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83NzlhZTktN2QyMi00MjUyLThjNWIt
MGVhNGQ1MzFiNzkzLzEvRzY4NWxrOWg3UjJGajJvRzB2eWZaNzRPaEZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83NzlhZTktN2QyMi00MjUyLThjNWItMGVhNGQ1MzFiNzkz
LzEvWUptTlBKMkwzSndkXzQ0eGxDUkJLMnpjSGRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwChFMA0G
CSqGSIb3DQEBCwUAA4IBAQCHBfDJF7eTDqVkd7lo4Yjrzf+lJ1Urrzssz8DX3Sxf
r2FsFRgT8RjMhroxKwT0kAYFCgx6uKhDXtkJAOSIqy6ACcqDndgfYwEUMcQW60Lh
VNMARfvWfQfnb5a9u5w/lIv39VTG9GP4c7+d3RdqxMN0DIaXYwV9dsWaQGFAzTpk
oBGa3vxFYtP9O3LshWuIBASSOUA9REZ/OeM4r/p6jzpxoWDWNQtC3MpMzcyDozwZ
spPHnFhsNl83FOWlQpq+TjNS1u0GuFtu1dxs1n63D7pieCGzcAtF6E7OMmIV15AE
to9QNTD7BC0IcaxCRj2oL9csycnqUVIkRBPDxqR/8zep
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org