Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/5rgX_qkHbygZHHQZMdgEwwMqgl8.roa
File: 5rgX_qkHbygZHHQZMdgEwwMqgl8.roa (raw, json)
Hash identifier: /5Bfts5uVYpxD5R/HM1T/Tw6nD0OBt8t65SlLNCzmqU=
Subject key identifier: E6:B8:17:FE:A9:07:6F:28:19:1C:74:19:31:D8:04:C3:03:2A:82:5F
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 071369D8
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/5rgX_qkHbygZHHQZMdgEwwMqgl8.roa
Signing time: Sat 01 Jan 2022 05:02:08 +0000
ROA not before: Sat 01 Jan 2022 05:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205241
IP address blocks: 185.219.56.0/22 maxlen: 24
2a0b:e140::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118712792 (0x71369d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Jan 1 05:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6b817fea9076f28191c741931d804c3032a825f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:20:ec:cf:66:74:c8:d4:30:d1:0a:f9:43:9d:
ce:1a:f3:6a:00:56:9d:6e:30:92:46:d9:cf:cf:96:
6a:45:38:b2:92:19:36:9e:ab:8e:6c:c6:4f:de:20:
8a:21:01:81:34:8f:2d:ed:f9:c2:cf:b1:6a:c3:a0:
a9:3f:26:fc:79:e3:3b:9a:8e:93:3a:6f:d2:3d:03:
c7:9e:19:02:a2:a0:30:df:b6:72:39:53:a2:69:ad:
8d:38:3b:61:0a:20:51:a7:cc:ee:5e:dd:aa:46:45:
0c:af:93:a5:7a:1c:ad:e8:6b:69:57:59:84:1f:13:
ea:97:a2:4e:38:11:b4:2e:69:a5:f4:51:22:58:f3:
fd:97:b6:62:bd:53:3d:0a:dd:d9:17:84:f8:8e:83:
cf:7d:2c:3c:5f:07:32:db:2b:f6:84:7b:22:18:f2:
88:4e:2a:16:af:a3:9b:13:13:22:ca:f6:a3:bc:2e:
1d:1a:e2:32:fb:1d:f0:91:ce:de:46:fc:f6:be:9d:
c6:5f:10:48:ac:40:50:b5:2e:b1:f4:1f:f7:ab:b8:
a0:bb:09:23:c3:7f:7e:0d:55:4e:6f:e1:59:75:95:
01:2b:e7:bf:49:1d:1d:23:fa:1e:41:47:30:40:f7:
59:23:8f:b6:ef:99:5f:1d:dd:9d:8e:f8:e1:87:4a:
94:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B8:17:FE:A9:07:6F:28:19:1C:74:19:31:D8:04:C3:03:2A:82:5F
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/5rgX_qkHbygZHHQZMdgEwwMqgl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.56.0/22
IPv6:
2a0b:e140::/29
Signature Algorithm: sha256WithRSAEncryption
18:aa:18:28:d4:1c:7e:ec:ba:4a:e2:81:97:58:3b:28:40:5c:
9e:14:93:89:be:e7:10:ec:fa:e8:7c:5a:74:60:bd:29:86:72:
6d:ef:d7:a2:09:ad:51:30:52:b2:ca:67:f7:a6:17:a2:38:41:
f8:4f:0b:dd:bb:83:05:3f:d4:6f:03:90:6b:91:9c:3b:30:83:
23:c4:d9:d1:c6:d4:91:c5:42:1b:1d:6b:c4:67:14:2a:9c:ce:
75:65:b4:4a:0a:3c:b7:bb:9e:6d:fe:30:c4:ff:7d:d1:b1:c4:
57:31:9b:1f:ac:8d:be:ab:4a:04:da:a5:85:90:19:bf:19:e6:
08:fd:c6:73:51:48:34:d7:cf:3c:83:5e:b0:09:2b:c9:34:b2:
49:8d:2f:66:50:5d:65:9f:68:28:06:81:3c:f1:fe:06:51:a3:
92:93:79:f7:46:fd:8b:4f:66:a3:c3:fb:cf:67:a1:9d:65:b8:
bc:58:ca:d0:ad:e4:f0:37:be:d0:94:65:4a:85:fe:ca:1b:82:
f5:ca:69:e2:f3:ee:9b:19:c6:f5:c6:24:49:ad:35:cd:56:08:
a4:10:fb:9c:d1:8c:71:74:75:40:e2:2e:04:01:b4:93:62:ce:
01:48:b4:f2:97:c4:b1:98:f7:ee:f7:17:57:b8:66:85:f5:75:
86:ab:55:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:12 2024 by rpki-client on console-ams.rpki-client.org