Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/5UmW_MAr-gb-g339C0lk73XcWnw.roa
File: 5UmW_MAr-gb-g339C0lk73XcWnw.roa (raw, json)
Hash identifier: NR6ug2oTQiQ8Y70nH3IEwGs+UpHL6t+/+RE/4DZ9U/U=
Subject key identifier: E5:49:96:FC:C0:2B:FA:06:FE:83:7D:FD:0B:49:64:EF:75:DC:5A:7C
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 018475E66432B9EA8D52FE90C4109DCD25A4
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/5UmW_MAr-gb-g339C0lk73XcWnw.roa
Signing time: Mon 14 Nov 2022 11:29:03 +0000
ROA not before: Mon 14 Nov 2022 11:29:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 85.203.44.0/24 maxlen: 24
85.203.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:e6:64:32:b9:ea:8d:52:fe:90:c4:10:9d:cd:25:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Nov 14 11:29:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e54996fcc02bfa06fe837dfd0b4964ef75dc5a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3f:28:15:61:20:25:87:67:ac:a9:6f:b5:38:
d7:9b:98:d8:71:25:59:ba:cc:16:4a:e1:b5:6c:3d:
1c:6c:62:ef:15:01:53:65:29:11:f6:06:8a:3e:4b:
d4:e5:93:de:e7:ca:01:b5:c6:6f:c8:e7:c6:51:10:
f3:a0:65:aa:52:ac:73:7e:8a:9f:60:97:c5:5a:40:
1e:e8:6c:76:53:72:60:99:35:b3:f7:27:8f:4d:23:
3a:68:ca:cc:ec:01:a9:95:10:14:bf:6d:ee:6a:db:
60:30:a1:b5:be:6e:1d:4d:91:4e:ce:97:97:66:70:
df:4d:3a:6f:a5:be:56:95:9b:e0:31:fe:5e:bd:e4:
94:7a:d8:65:14:90:63:b4:da:0a:fd:51:a8:c3:b6:
38:a9:fd:5e:b2:ce:44:a3:a9:db:8c:8b:95:91:d8:
32:12:b9:b4:23:6e:75:d9:9e:38:f6:af:90:83:99:
c7:cb:f5:e8:03:de:fa:52:aa:4b:5e:f0:16:3a:41:
42:03:e8:46:f9:f5:48:0b:be:b4:5b:1a:64:57:36:
5f:4b:b3:b5:9e:74:6a:b0:6b:42:31:fd:04:d6:4b:
14:45:c0:02:92:72:73:07:92:cc:b1:1e:5d:52:70:
41:49:3b:7d:64:37:53:02:2e:a2:cf:af:37:2a:ab:
6a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:49:96:FC:C0:2B:FA:06:FE:83:7D:FD:0B:49:64:EF:75:DC:5A:7C
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/5UmW_MAr-gb-g339C0lk73XcWnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.44.0/24
85.203.47.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a9:7b:c9:87:a8:3e:8f:cd:c8:1c:51:c5:1d:f5:88:2f:cc:
1c:82:8a:13:0b:36:50:9b:33:8a:a6:4b:d9:f2:92:19:86:c1:
ff:e9:28:d2:45:91:0c:d1:9f:b1:77:58:9b:40:2e:7b:6e:02:
4a:bb:9e:e1:27:fd:0a:72:fe:f6:cd:9f:67:7a:1c:39:18:27:
f0:e8:fb:32:a2:00:ea:30:af:f8:b1:cd:a1:cb:5e:3c:51:e6:
e2:8c:18:e6:57:18:cc:07:b1:ae:6e:47:b4:6c:85:b7:5c:30:
1b:bd:d9:a1:a8:39:0d:f8:0b:5d:b4:ea:0d:3e:b6:7d:77:27:
c1:48:29:2f:19:4a:4c:af:1c:df:d7:1d:36:9a:40:c2:3b:08:
7f:06:91:0b:fa:c3:bd:ba:54:39:51:96:1e:c5:24:42:fd:ba:
c9:ed:45:9e:8b:26:96:48:00:55:78:3c:d5:3c:0c:37:ef:9b:
c4:52:18:0d:f4:e3:8c:02:72:56:cb:1b:13:10:76:17:2a:44:
fd:f0:f6:14:db:71:3b:7a:3a:42:57:2b:2a:d6:62:bb:a3:ad:
f6:da:f3:7e:00:15:c0:b3:ab:6d:c0:e7:ef:99:21:f0:c1:2e:
6b:a3:54:f2:76:83:ce:96:8f:ce:7d:70:72:73:6b:d7:b1:d2:
20:1c:54:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org