Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/rwpkfdY_tll2o8LEh5Bu8mZiYIM.roa
File: rwpkfdY_tll2o8LEh5Bu8mZiYIM.roa (raw, json)
Hash identifier: azqxwoO3ja0B910NGDvmJnSaIJAJ3XflYeEwqWSq18U=
Subject key identifier: AF:0A:64:7D:D6:3F:B6:59:76:A3:C2:C4:87:90:6E:F2:66:62:60:83
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 06EF1DFB
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/rwpkfdY_tll2o8LEh5Bu8mZiYIM.roa
Signing time: Sat 01 Jan 2022 11:01:32 +0000
ROA not before: Sat 01 Jan 2022 11:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 147.189.162.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116334075 (0x6ef1dfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Jan 1 11:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af0a647dd63fb65976a3c2c487906ef266626083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:10:f2:dd:79:01:01:cb:b3:d0:75:28:a2:91:
18:64:24:06:24:2b:11:18:f1:bd:9c:9f:24:4c:ea:
18:e5:34:70:f2:d8:29:25:a0:f1:8b:eb:2d:5b:f1:
40:1e:6c:68:b2:b3:f9:86:01:5a:7f:45:29:72:7c:
32:9f:84:b4:13:ea:9a:9b:6a:c7:35:9c:84:69:13:
40:26:0b:81:a1:0b:51:40:b5:02:a7:f2:ba:8f:d8:
a3:c7:46:80:dc:4e:0d:de:73:9d:db:d7:54:6a:3e:
7d:2f:b2:e5:93:2f:c3:5b:78:76:9c:d9:8e:e4:f0:
58:c9:bf:71:a4:e5:88:4c:23:6b:06:f9:10:02:02:
1e:61:22:7a:bb:de:78:26:44:47:5c:56:39:84:0e:
05:d4:44:01:3c:f2:6b:7a:f9:80:47:b4:fb:01:d8:
72:2d:9f:e2:b9:e5:73:c8:3f:66:ea:34:ba:04:91:
75:8c:e9:03:37:15:01:a5:05:52:21:d1:cf:16:83:
74:1b:c8:fc:7a:88:48:c5:2b:01:c1:b0:84:8b:26:
6f:4a:8f:c0:62:9a:e5:67:b4:7e:08:32:d2:f3:59:
3e:a8:75:38:c8:36:21:56:60:bc:55:da:2f:bb:62:
40:dd:b7:39:fa:d4:f6:a1:b1:18:53:21:c1:5b:ee:
5f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0A:64:7D:D6:3F:B6:59:76:A3:C2:C4:87:90:6E:F2:66:62:60:83
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/rwpkfdY_tll2o8LEh5Bu8mZiYIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.189.162.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:6f:59:70:2c:7f:cd:c6:f4:2f:c1:04:48:15:ed:a1:39:fd:
91:52:be:8f:47:59:a9:86:e2:22:fa:48:3e:ef:52:eb:21:50:
f2:cc:ad:01:4d:d7:8f:8a:11:48:62:92:96:60:d8:bc:a9:9b:
9c:5a:80:d9:a0:5b:5c:53:03:9f:2c:00:b5:b7:13:18:eb:ff:
da:07:95:5e:e8:a3:49:f8:dd:09:4b:95:52:f6:c0:47:17:a1:
7d:6d:b2:82:e2:29:b0:4b:0a:df:16:da:a7:b4:ac:95:64:42:
d0:b8:a7:c2:71:62:62:a6:05:56:33:93:86:60:ef:c7:a8:8c:
9f:b4:02:8e:7b:5c:2f:66:ee:57:17:37:92:b7:91:d9:cc:3a:
1f:8a:d4:96:ce:73:1c:b4:b6:10:82:a8:4c:df:13:c2:20:ee:
0f:17:dd:eb:23:c1:30:5b:0b:ff:25:07:92:21:cd:7e:50:6a:
fc:05:59:3d:db:ea:83:ea:89:46:8e:f1:8f:df:95:12:46:0f:
11:42:06:a1:d6:55:e9:fd:10:53:0e:60:59:2c:74:83:26:14:
bc:cc:3a:14:8c:5b:ec:2f:17:6b:26:29:6c:92:7a:e5:37:d3:
a3:1b:89:3a:d9:eb:37:7d:36:cf:ec:da:49:35:a9:8b:4d:d4:
39:13:28:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:06 2024 by rpki-client on console-ams.rpki-client.org