Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/Um_s8oNWuSgUKH0OdCkQcxrsd6U.roa
File: Um_s8oNWuSgUKH0OdCkQcxrsd6U.roa (raw, json)
Hash identifier: X71Y2kMRxOfX5dPdaunffL1R7pjHA3JBlaQBM1q7MIU=
Subject key identifier: 52:6F:EC:F2:83:56:B9:28:14:28:7D:0E:74:29:10:73:1A:EC:77:A5
Certificate issuer: /CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Certificate serial: 1A75F08E
Authority key identifier: 83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/Um_s8oNWuSgUKH0OdCkQcxrsd6U.roa
Signing time: Sat 01 Jan 2022 05:57:27 +0000
ROA not before: Sat 01 Jan 2022 05:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.67.4.0/22 maxlen: 22
92.119.168.0/22 maxlen: 22
213.173.60.0/22 maxlen: 22
2.58.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443936910 (0x1a75f08e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83991afcd455eb1b174fcf89f8e10eaf7f70b355
Validity
Not Before: Jan 1 05:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=526fecf28356b92814287d0e742910731aec77a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:17:09:73:7c:5a:54:b7:4a:ed:e3:ba:0a:aa:
17:14:6c:b5:4f:35:2d:10:7c:67:51:5c:2e:35:98:
d2:98:af:9b:68:32:1a:8d:90:27:8d:65:e8:97:ed:
88:e5:7f:6f:58:78:43:a5:b1:47:48:1a:a1:2a:ec:
4c:bf:9d:3f:02:58:f5:14:8b:10:40:76:1c:31:3c:
18:fe:99:81:c3:5d:2b:e8:d9:a9:02:80:00:09:c4:
e9:b0:94:36:38:3d:7a:93:1b:30:5b:cd:00:5b:1c:
d4:99:75:04:43:3b:23:87:7f:37:b9:e0:84:1a:b6:
81:41:48:b4:73:d9:ec:5e:83:80:90:9f:58:9e:7c:
8f:bc:4a:28:90:5e:cb:ad:03:50:51:eb:a2:74:77:
6d:39:57:b3:6c:03:3d:c2:4e:99:0e:2f:7d:44:ce:
30:55:97:da:a0:63:66:e3:8b:c7:64:48:9f:14:7a:
ee:39:df:38:4f:2d:4f:cb:24:32:a7:68:01:03:27:
eb:62:21:b1:e8:0d:1a:6a:ed:42:61:ae:fd:ef:35:
70:db:d4:13:4f:47:65:cc:b5:af:ef:17:d8:fb:0c:
42:48:68:dd:2b:68:b0:34:a4:f7:ee:20:f7:57:31:
e5:1c:5f:04:f4:b6:1d:60:92:fe:f8:34:1b:8d:db:
ed:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6F:EC:F2:83:56:B9:28:14:28:7D:0E:74:29:10:73:1A:EC:77:A5
X509v3 Authority Key Identifier:
keyid:83:99:1A:FC:D4:55:EB:1B:17:4F:CF:89:F8:E1:0E:AF:7F:70:B3:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5ka_NRV6xsXT8-J-OEOr39ws1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/Um_s8oNWuSgUKH0OdCkQcxrsd6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/69ed29-af4e-4524-adfb-e15437380099/1/g5ka_NRV6xsXT8-J-OEOr39ws1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.76.0/22
45.67.4.0/22
92.119.168.0/22
213.173.60.0/22
Signature Algorithm: sha256WithRSAEncryption
69:9a:bc:5c:58:cc:4b:1b:d3:a8:e9:d6:8b:c0:88:2b:9b:84:
f8:83:5e:53:18:a4:88:e5:09:ab:3b:de:4d:b6:df:1f:99:20:
c6:3d:05:9d:65:15:cb:69:6b:60:da:94:fe:02:b4:ca:46:82:
87:52:0c:0d:b2:0a:95:eb:bd:1a:63:8a:24:f0:45:70:fc:3e:
22:60:81:4e:ed:6b:69:ce:dc:da:eb:f6:4a:31:15:cb:c8:05:
ac:e6:49:86:e1:0d:d5:2b:98:4d:e2:63:73:c7:a7:76:c8:c6:
2c:84:26:50:cc:7f:c7:03:bd:d9:09:e4:26:8f:92:88:6a:dc:
05:8f:0f:b9:e8:5a:97:ab:be:c5:84:d0:80:34:d1:a6:64:c5:
d4:1d:4c:fd:a6:55:0e:8e:dd:60:de:0e:8d:67:38:f6:66:82:
89:50:e4:aa:bf:a5:b3:b4:5c:c7:d0:27:3b:3a:42:62:25:d4:
5f:81:bd:cc:3a:3e:21:12:9e:36:ad:73:01:74:2c:dc:ac:e5:
50:8f:36:eb:93:ea:4b:9c:a5:dd:92:d9:75:1a:44:9a:8f:c4:
18:7a:5f:4d:40:64:fc:1f:75:5f:36:51:cd:ed:5e:b9:e6:cb:
46:8e:4b:e3:fa:47:cc:b4:a4:73:50:42:9d:00:a2:e6:4b:a0:
50:a6:73:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:07 2024 by rpki-client on console-fra.rpki-client.org