Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/Flnz6Lrddvph0mWTPsKQyUmdMaQ.roa
File: Flnz6Lrddvph0mWTPsKQyUmdMaQ.roa (raw, json)
Hash identifier: WsceWRN0v2n26LAEdpVpOiSYLfXLT/0bTySsFMckbU0=
Subject key identifier: 16:59:F3:E8:BA:DD:76:FA:61:D2:65:93:3E:C2:90:C9:49:9D:31:A4
Certificate issuer: /CN=479762e88d8f67fad4aa059a1b8b46fa4cc7a893
Certificate serial: 01B00F55
Authority key identifier: 47:97:62:E8:8D:8F:67:FA:D4:AA:05:9A:1B:8B:46:FA:4C:C7:A8:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R5di6I2PZ_rUqgWaG4tG-kzHqJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/Flnz6Lrddvph0mWTPsKQyUmdMaQ.roa
Signing time: Sat 01 Jan 2022 05:02:00 +0000
ROA not before: Sat 01 Jan 2022 05:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211325
IP address blocks: 92.61.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28315477 (0x1b00f55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=479762e88d8f67fad4aa059a1b8b46fa4cc7a893
Validity
Not Before: Jan 1 05:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1659f3e8badd76fa61d265933ec290c9499d31a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b0:92:65:1e:e3:72:df:f9:a3:d3:44:21:1f:
70:5f:50:00:2a:22:96:20:de:54:47:3a:6b:34:3c:
58:54:2c:3c:eb:d2:93:6c:77:30:85:52:5b:8c:1a:
31:b7:0a:bb:49:98:7a:dc:45:dd:71:bc:04:ba:2b:
18:02:d4:90:47:eb:52:70:48:8b:bf:63:34:6f:f1:
92:1b:ae:c8:9f:94:75:3c:eb:e7:b9:40:bb:e6:00:
2c:f2:56:96:14:a8:0e:3d:e7:77:1b:a4:03:74:fd:
a0:01:af:a7:e5:27:1b:c5:54:1b:a3:41:65:1b:eb:
b5:eb:d0:93:77:2d:b0:eb:4e:48:23:1e:4e:54:45:
c2:06:63:84:5e:87:3e:62:58:20:e6:51:69:cb:b2:
dc:01:53:3c:4a:85:f2:de:09:48:1d:5f:26:ea:e7:
2f:3c:6f:a3:d4:bb:33:ab:94:1e:20:26:d1:77:81:
65:05:6d:55:43:22:45:24:34:75:ac:b4:7f:0b:16:
8f:9b:60:10:6a:57:03:20:da:a7:d2:80:9c:4b:f4:
66:9f:17:d4:09:d4:48:1b:4c:7e:39:ae:97:d3:3f:
ab:21:5a:31:8a:f6:41:4d:85:bf:32:3d:27:69:f5:
a9:c3:e8:19:91:e9:ea:39:06:68:12:c9:9e:35:51:
20:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:59:F3:E8:BA:DD:76:FA:61:D2:65:93:3E:C2:90:C9:49:9D:31:A4
X509v3 Authority Key Identifier:
keyid:47:97:62:E8:8D:8F:67:FA:D4:AA:05:9A:1B:8B:46:FA:4C:C7:A8:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R5di6I2PZ_rUqgWaG4tG-kzHqJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/Flnz6Lrddvph0mWTPsKQyUmdMaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/2c5af2-0937-4f40-88e0-1104841d374e/1/R5di6I2PZ_rUqgWaG4tG-kzHqJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.180.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:ec:83:d5:1e:e5:33:74:57:20:ee:52:bf:bb:0b:d9:ed:2d:
95:68:61:d5:3a:9e:11:9f:18:03:05:cd:7b:73:ae:4a:81:0f:
e9:8e:bd:6d:b6:b2:ad:71:bb:77:fa:f9:f8:e6:18:8e:0e:80:
32:0c:76:8f:2c:f2:08:05:0a:4d:85:27:f5:17:87:f4:c2:d3:
c5:d0:37:47:82:9a:16:d6:77:4e:35:f6:4f:09:91:20:7c:5d:
b4:bf:94:75:59:08:e3:5d:78:f7:10:62:aa:0d:d2:50:0f:be:
ac:85:66:7c:01:61:8d:c8:5a:ef:d1:3e:52:a3:6c:4f:e9:28:
18:dc:4c:da:d8:ee:70:d7:27:ae:f3:ca:c7:5c:60:41:9f:48:
a4:bd:b6:68:8a:12:85:3e:4a:10:8e:3d:02:3f:9b:6c:b3:31:
32:f6:1d:df:af:a6:f3:6a:95:ba:9b:e1:2e:7c:4e:ac:34:f5:
1f:46:b0:7b:66:34:76:56:30:8e:25:fb:88:d5:2a:83:51:cb:
68:c5:0f:84:95:b5:d8:8c:a2:99:d7:39:65:1b:44:c3:5e:3b:
4f:e1:4c:a3:dc:e8:51:78:41:88:70:72:9d:d6:5f:de:95:d6:
42:f7:80:c7:60:08:ee:d5:93:2e:a7:42:1c:d2:30:da:2a:db:
b3:6f:73:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:29 2024 by rpki-client on console-fra.rpki-client.org