Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/u5Q3t018swQ4fUFEuXBtQokd72Y.roa
File: u5Q3t018swQ4fUFEuXBtQokd72Y.roa (raw, json)
Hash identifier: 9JWnefeRWbTMOUEUkSWx8AnjBgzlbeB9tDXbyYDIDlI=
Subject key identifier: BB:94:37:B7:4D:7C:B3:04:38:7D:41:44:B9:70:6D:42:89:1D:EF:66
Certificate issuer: /CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Certificate serial: 0184AE7E0D95B24F9CC20031A74325CD9CBF
Authority key identifier: 60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/u5Q3t018swQ4fUFEuXBtQokd72Y.roa
Signing time: Fri 25 Nov 2022 11:13:27 +0000
ROA not before: Fri 25 Nov 2022 11:13:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 212.11.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:7e:0d:95:b2:4f:9c:c2:00:31:a7:43:25:cd:9c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60998d3c9d8bdc9c1dff8e319424412b6cdc1dd3
Validity
Not Before: Nov 25 11:13:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb9437b74d7cb304387d4144b9706d42891def66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:55:ee:d9:bf:cc:d9:db:af:ed:38:d4:58:4c:
f9:7c:46:1e:83:1d:8a:14:03:79:46:a2:c1:3e:51:
1f:09:23:a5:09:f9:27:4d:73:37:40:1c:cc:3b:17:
20:f0:07:61:85:77:1d:ce:01:ea:ed:c2:86:14:e6:
02:0f:86:f4:a3:17:b5:0d:aa:05:c7:dd:6b:ff:a7:
28:a1:1b:5c:78:d5:ff:bd:77:bf:20:74:38:31:28:
7e:a1:f4:ae:74:6d:f5:ab:22:66:01:4f:fd:38:c3:
a5:7e:23:62:e8:8b:f1:26:27:cb:2f:d2:70:a9:a0:
19:e3:91:9a:68:89:80:28:c0:a8:66:bb:2c:cd:93:
74:8b:40:a4:d2:c0:15:7a:c6:19:0d:10:09:65:03:
4f:db:ea:aa:d0:e4:fc:d2:47:e8:4d:f8:76:0b:37:
69:5d:4c:fd:0e:d8:cd:91:84:02:3c:a0:ee:a9:5a:
cd:20:eb:c7:1b:81:5e:aa:f3:ea:7f:0d:57:6a:13:
b1:56:42:b8:79:fb:5d:07:9c:8e:49:62:ea:a1:6b:
13:95:27:e3:ba:cc:77:02:96:b6:d5:24:42:77:b2:
65:ef:33:8b:6e:84:07:aa:93:bb:10:d0:df:38:af:
aa:06:39:22:09:b5:70:77:cf:1b:8d:f7:63:df:9f:
ba:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:94:37:B7:4D:7C:B3:04:38:7D:41:44:B9:70:6D:42:89:1D:EF:66
X509v3 Authority Key Identifier:
keyid:60:99:8D:3C:9D:8B:DC:9C:1D:FF:8E:31:94:24:41:2B:6C:DC:1D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/u5Q3t018swQ4fUFEuXBtQokd72Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/779ae9-7d22-4252-8c5b-0ea4d531b793/1/YJmNPJ2L3Jwd_44xlCRBK2zcHdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.11.64.0/24
Signature Algorithm: sha256WithRSAEncryption
30:4b:d8:28:87:85:7f:88:1b:51:3a:07:c1:e0:b8:e0:5a:b1:
9c:f6:da:c6:7f:6e:01:5a:e3:e4:8c:2b:34:ab:65:55:52:c0:
bd:a4:69:93:7e:40:b5:7d:b2:ba:d5:7c:ba:1f:01:13:87:1d:
3b:82:4f:5a:52:26:5d:33:f0:b8:11:af:b1:b7:ce:f1:a2:8a:
23:79:17:26:b8:b5:e3:c2:7e:75:f8:58:9c:68:13:c9:72:d8:
81:c6:e0:e5:aa:7c:84:23:59:42:ea:82:97:40:e4:d0:5a:25:
d3:c8:73:ef:4d:dd:12:a7:07:a4:ad:64:73:13:9c:5b:0e:e9:
c5:b7:58:47:d0:2d:2a:31:3f:d1:1d:b0:bf:54:c4:7c:b2:77:
44:bd:41:4d:cd:d7:94:98:0e:f8:fe:07:ba:36:b3:04:97:61:
91:be:78:0b:61:2e:7b:f2:61:f6:82:3f:aa:29:f6:40:31:94:
82:8b:94:10:39:06:76:e1:60:35:97:77:ba:b1:72:a1:d2:35:
d2:ba:f1:56:c8:5c:73:e8:f4:ea:b6:90:a8:00:a3:45:a5:a7:
92:35:29:7a:ad:a4:62:e4:ad:0d:58:76:f9:2c:82:f2:7c:cf:
c6:45:80:b6:79:a1:3f:c7:2e:33:ec:bb:e4:1a:55:11:55:fb:
6f:20:47:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:06 2024 by rpki-client on console-ams.rpki-client.org