Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/RxSl5TTOJLL6ym5mpAWXv2Jl9WA.roa
File: RxSl5TTOJLL6ym5mpAWXv2Jl9WA.roa (raw, json)
Hash identifier: i+L5UDU9CjumGgwKECm0zMqfvwvZk47oZ7EiNU7g5K8=
Subject key identifier: 47:14:A5:E5:34:CE:24:B2:FA:CA:6E:66:A4:05:97:BF:62:65:F5:60
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 07EA72E5
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/RxSl5TTOJLL6ym5mpAWXv2Jl9WA.roa
Signing time: Tue 05 Apr 2022 16:29:54 +0000
ROA not before: Tue 05 Apr 2022 16:29:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 192.40.69.0/24 maxlen: 24
147.189.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132805349 (0x7ea72e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Apr 5 16:29:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4714a5e534ce24b2faca6e66a40597bf6265f560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:03:91:1d:be:9e:a8:ba:3f:4c:77:b3:05:18:
0b:93:8a:31:00:ea:c9:62:33:2a:61:3c:10:7e:fa:
f7:1f:58:80:ff:a6:0f:b2:2e:d0:69:05:a0:51:30:
84:83:dc:a2:d3:5d:39:fb:d0:9a:32:85:e1:7e:cd:
3f:85:10:28:bb:ae:69:49:cd:99:c4:ce:cd:6d:8e:
1e:f5:89:82:f6:15:10:6f:4e:76:b4:15:f4:42:2d:
4f:81:d7:ea:a5:a3:66:8e:6a:53:5d:a9:0f:2b:12:
48:34:ce:b5:b6:ba:73:5c:90:9f:fe:fe:75:34:ef:
e5:c8:18:05:eb:e6:61:45:97:4e:b9:aa:cb:3d:5e:
8e:4b:22:76:af:b4:c0:13:cd:d3:49:42:7f:87:f6:
d8:d1:19:44:ae:f2:56:cf:1e:e2:ff:dd:4c:57:e2:
fa:7c:32:79:c7:a8:bd:53:ca:8a:38:a1:2f:38:44:
41:49:2a:de:0b:74:46:33:51:dd:b9:5b:ae:3d:03:
86:00:03:f9:61:9a:4e:6a:fa:78:17:11:fd:0a:d1:
75:d6:74:45:ac:10:74:fa:9c:59:a4:89:93:05:c5:
f8:03:15:fc:f5:04:b7:e3:b7:98:70:e1:69:fb:2a:
d4:03:a0:50:61:b7:68:ab:28:12:8f:4a:07:2e:31:
82:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:14:A5:E5:34:CE:24:B2:FA:CA:6E:66:A4:05:97:BF:62:65:F5:60
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/RxSl5TTOJLL6ym5mpAWXv2Jl9WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.162.0/24
192.40.69.0/24
Signature Algorithm: sha256WithRSAEncryption
08:1b:cb:07:83:73:c3:30:73:7e:d9:53:50:57:77:74:67:e4:
9b:1d:08:e1:2c:96:0c:be:fe:e1:ed:79:27:e3:7d:af:3d:42:
5d:1d:0d:46:c9:91:f8:a9:c8:58:e8:15:3a:2b:f0:29:7a:4e:
5a:24:07:3e:b9:fd:8e:32:77:ea:38:7c:61:b7:d3:0c:24:f8:
bf:f6:d8:70:af:af:89:e6:ad:b0:67:ca:2c:a9:b0:df:f5:bc:
39:c0:60:7a:eb:78:25:41:51:7b:49:88:d8:db:cb:03:02:ef:
2b:e8:2d:b7:4a:4e:ad:5c:47:ed:a8:57:56:a8:fb:f4:28:2c:
3f:49:a2:8d:12:ec:a9:6f:9d:7f:3b:fb:81:36:08:22:bb:f1:
15:ad:b7:fa:68:b2:a8:f7:74:25:99:74:e5:27:cf:bd:f9:be:
70:dd:8d:19:59:05:cc:68:90:5e:75:6f:3d:71:4d:8d:e1:07:
7d:69:2f:a3:55:98:8d:d2:b8:ad:c2:e9:55:2a:37:f0:4b:fb:
55:f5:63:6e:ea:fd:65:d0:c0:71:83:ef:b0:ed:5d:7d:21:f7:
9c:41:37:72:0c:22:b9:de:d8:8c:f4:f7:4c:79:5b:31:bc:87:
89:25:09:ae:ff:37:3d:08:a7:1d:2e:df:64:48:5d:71:ac:06:
89:64:a9:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org