Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/oodx6h0aBjM-1zu061h4jYm9t5Q.roa
File: oodx6h0aBjM-1zu061h4jYm9t5Q.roa (raw, json)
Hash identifier: qEDHr/Dnj/3tLHjHGPjMlr8ozUfrq/9uiVb/VKApjcM=
Subject key identifier: A2:87:71:EA:1D:1A:06:33:3E:D7:3B:B4:EB:58:78:8D:89:BD:B7:94
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 087BC973
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/oodx6h0aBjM-1zu061h4jYm9t5Q.roa
Signing time: Thu 09 Jun 2022 07:32:04 +0000
ROA not before: Thu 09 Jun 2022 07:32:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 147.189.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142330227 (0x87bc973)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Jun 9 07:32:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a28771ea1d1a06333ed73bb4eb58788d89bdb794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:22:dc:72:a8:99:d5:08:08:d1:1d:59:7e:0b:
c3:91:44:d2:9d:eb:93:4e:e0:6b:5f:12:92:56:53:
6c:f2:62:0a:69:1f:91:dc:bb:de:3b:1f:5b:07:ff:
c7:d1:5b:fa:90:1b:f4:85:3b:bf:8d:66:9c:29:0c:
6b:a8:c5:d0:da:70:e6:c9:9a:ba:09:c2:d8:b1:7b:
5e:10:52:d2:ff:03:38:29:b4:7c:74:5a:d0:5b:4a:
1e:fe:07:f6:b7:72:fd:d9:b8:3f:8a:36:b7:3b:2c:
bd:de:34:16:b0:b2:c8:1e:5f:1b:58:40:88:a2:7a:
ac:4e:3f:68:30:80:a3:02:ef:d1:7f:7b:bd:84:f7:
0a:91:62:ab:6d:50:05:e3:e9:60:6e:2c:92:29:bc:
70:47:62:1b:df:fb:2f:40:65:38:59:f3:89:3a:b7:
71:ea:39:cf:66:56:4f:40:55:1d:89:60:07:d0:79:
23:9e:6d:6d:b8:f2:56:6c:57:f0:62:28:0c:ce:23:
5f:a5:30:df:bc:f6:34:27:e5:54:ee:cc:20:93:de:
ef:e8:e1:dc:6f:df:ee:58:b8:c9:02:4b:4d:84:d2:
25:5e:79:c4:c1:84:d4:7e:b3:be:32:b3:62:2d:92:
36:0a:d3:b8:82:3d:53:4b:0f:18:66:6c:3c:30:f7:
77:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:87:71:EA:1D:1A:06:33:3E:D7:3B:B4:EB:58:78:8D:89:BD:B7:94
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/oodx6h0aBjM-1zu061h4jYm9t5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.162.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:d5:df:71:4e:51:5f:ac:7b:48:b6:57:6b:c1:25:60:90:47:
2c:15:82:83:f3:e2:1a:9c:66:2e:23:bb:23:54:77:2a:41:9b:
fd:ad:1d:ea:5d:00:f4:93:37:a4:5d:3d:a7:a2:df:00:e6:b1:
f1:84:d2:0b:69:22:24:c3:a8:c8:63:21:29:63:db:58:08:27:
b0:25:92:d5:06:8e:46:43:15:5b:38:f1:2d:79:a1:87:dd:eb:
f0:c8:8c:a9:13:a3:5c:6b:ca:23:31:4a:1c:98:5f:dc:23:79:
99:48:f9:fe:a5:67:2f:39:d5:59:fe:0d:fb:40:db:62:8e:29:
42:22:2f:a1:c6:6b:49:df:f0:c1:68:f8:39:62:34:33:cd:94:
c6:bb:67:22:c1:16:8e:fd:f0:21:56:f5:d8:5b:fe:07:f3:97:
a5:3c:6e:b9:b9:49:b2:4a:cb:bf:19:a6:20:39:3a:c1:dd:dd:
17:3e:07:1e:4f:43:06:b6:d1:38:5e:04:5b:d3:b9:1f:2e:3a:
b1:1c:30:ae:dc:88:9c:f1:70:8c:59:2b:a5:da:9a:90:17:03:
2a:44:82:04:e8:88:b8:d6:f5:fb:b2:be:b3:d1:04:53:bb:58:
98:c9:24:30:0d:4e:6a:ad:d4:7e:bb:38:47:63:c9:5b:b0:c2:
8a:ed:dc:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org