Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/wXMIoRs8Q2H31t0c_8nmy0BVJHM.roa
File: wXMIoRs8Q2H31t0c_8nmy0BVJHM.roa (raw, json)
Hash identifier: E7pC4SEOUSj1Y5sFmtnsLsBOvRPWVNc1LlZ1ZFGzV20=
Subject key identifier: C1:73:08:A1:1B:3C:43:61:F7:D6:DD:1C:FF:C9:E6:CB:40:55:24:73
Certificate issuer: /CN=4bf3fb8ff8ddafda89db39705f78f6418efd1fed
Certificate serial: 1DA4178A
Authority key identifier: 4B:F3:FB:8F:F8:DD:AF:DA:89:DB:39:70:5F:78:F6:41:8E:FD:1F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_P7j_jdr9qJ2zlwX3j2QY79H-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/wXMIoRs8Q2H31t0c_8nmy0BVJHM.roa
Signing time: Sat 01 Jan 2022 05:52:10 +0000
ROA not before: Sat 01 Jan 2022 05:52:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57976
IP address blocks: 137.221.64.0/18 maxlen: 24
37.244.0.0/18 maxlen: 24
185.60.112.0/22 maxlen: 24
5.42.160.0/19 maxlen: 24
2a04:e800::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 497293194 (0x1da4178a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bf3fb8ff8ddafda89db39705f78f6418efd1fed
Validity
Not Before: Jan 1 05:52:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c17308a11b3c4361f7d6dd1cffc9e6cb40552473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:75:65:19:70:db:6a:3b:a2:43:dc:7a:5c:21:
60:60:5a:f4:42:e2:97:af:e5:5d:48:aa:1d:37:5c:
a6:c0:18:04:cf:c1:73:45:d7:d6:2d:c4:99:83:de:
77:7a:8f:df:10:d8:e4:cb:87:3b:8d:e6:6e:2d:ef:
8c:f5:a9:75:df:4d:5b:ff:bd:5c:7e:2c:41:bc:34:
40:55:cd:ea:e7:f1:53:76:03:cc:f6:b1:5b:1e:40:
80:15:25:b2:e5:b3:04:98:87:84:62:88:27:fe:09:
4d:ff:1e:fb:4c:be:33:83:b0:a9:f0:6a:19:34:36:
cf:e8:04:f6:ec:8a:d0:a2:8c:fe:93:57:ac:6f:6e:
73:b4:4c:ee:5f:31:cc:73:dc:d0:5a:f4:7b:23:6c:
d0:4c:eb:c2:c6:7e:8a:69:45:a5:66:f6:6a:1e:1a:
8b:1b:f5:bc:50:5f:6b:89:38:6b:78:7f:93:89:0a:
89:58:1f:08:aa:eb:d4:ea:ea:73:df:ba:8a:3d:e0:
eb:b5:9d:f4:c9:9a:a4:2e:43:63:6d:46:be:96:77:
c6:30:aa:6d:e9:14:cb:c5:98:a4:1e:e6:d9:c9:a7:
5a:c0:c1:d9:82:43:a6:31:7b:f8:0f:ef:c1:bc:db:
45:3d:68:59:1d:30:0d:a0:98:60:03:d4:d1:50:7c:
75:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:73:08:A1:1B:3C:43:61:F7:D6:DD:1C:FF:C9:E6:CB:40:55:24:73
X509v3 Authority Key Identifier:
keyid:4B:F3:FB:8F:F8:DD:AF:DA:89:DB:39:70:5F:78:F6:41:8E:FD:1F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_P7j_jdr9qJ2zlwX3j2QY79H-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/wXMIoRs8Q2H31t0c_8nmy0BVJHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7b8513-f189-4330-b6f0-d0d258e4b435/1/S_P7j_jdr9qJ2zlwX3j2QY79H-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.160.0/19
37.244.0.0/18
137.221.64.0/18
185.60.112.0/22
IPv6:
2a04:e800::/29
Signature Algorithm: sha256WithRSAEncryption
25:e5:77:73:e3:b6:68:2b:01:28:58:29:af:5e:a1:86:a8:58:
10:9c:0b:c3:74:26:58:5e:5d:c8:2b:d9:02:b4:85:25:fb:18:
4d:13:77:f0:39:0a:45:24:f7:1c:bb:75:7c:81:90:bc:43:d2:
d9:a9:36:e1:43:6f:50:bf:0f:d3:d8:a5:39:97:b5:12:9b:9b:
8c:70:ab:03:0b:50:8e:29:b6:99:aa:e4:45:11:30:ef:88:06:
71:90:74:7d:6d:13:a0:93:4f:84:b2:ac:87:25:3b:c8:57:9f:
89:37:ac:b9:48:b9:23:54:af:8d:ca:27:68:72:6c:4d:2e:33:
7b:89:56:ab:dc:4a:25:53:79:34:02:f8:65:94:46:8f:63:df:
82:5f:ab:51:5d:be:35:b9:b0:a9:dc:24:f1:63:da:3c:b5:6e:
c1:e4:64:08:fb:ce:15:80:46:6a:df:b0:fc:4f:38:d4:0b:66:
ab:db:07:79:f1:ce:26:1b:f6:a7:0d:ae:43:04:a2:b6:00:4e:
df:47:6d:29:92:ea:03:1b:b4:cb:74:8f:ac:58:4f:d1:63:89:
24:ea:81:a7:d6:40:77:f2:e5:fe:40:9f:f8:ef:23:11:08:10:
d6:c3:a6:18:97:b5:30:41:e8:89:8f:81:5c:36:78:fa:02:5a:
35:76:34:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:45 2024 by rpki-client on console-fra.rpki-client.org