Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/pSkI-ZHAu-68ZUDLBdDNLK3TrG8.roa
File: pSkI-ZHAu-68ZUDLBdDNLK3TrG8.roa (raw, json)
Hash identifier: rhiTC63wcamqBYAL+se2MfeMzYCRHAioBHdnUGrNsuA=
Subject key identifier: A5:29:08:F9:91:C0:BB:EE:BC:65:40:CB:05:D0:CD:2C:AD:D3:AC:6F
Certificate issuer: /CN=61b866e323382caea961e7d2423e53cab5099131
Certificate serial: 0184BD70B726680F4D4E6A31ACDEBC19E104
Authority key identifier: 61:B8:66:E3:23:38:2C:AE:A9:61:E7:D2:42:3E:53:CA:B5:09:91:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ybhm4yM4LK6pYefSQj5TyrUJkTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/pSkI-ZHAu-68ZUDLBdDNLK3TrG8.roa
Signing time: Mon 28 Nov 2022 08:53:11 +0000
ROA not before: Mon 28 Nov 2022 08:53:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200741
IP address blocks: 185.33.14.0/24 maxlen: 24
185.33.13.0/24 maxlen: 24
185.33.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bd:70:b7:26:68:0f:4d:4e:6a:31:ac:de:bc:19:e1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b866e323382caea961e7d2423e53cab5099131
Validity
Not Before: Nov 28 08:53:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a52908f991c0bbeebc6540cb05d0cd2cadd3ac6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:c2:71:e1:50:24:a4:84:f8:7f:74:8f:07:
77:47:7e:f8:a5:f4:ce:90:7e:fc:15:a3:02:4d:20:
da:d4:18:ff:8b:0f:a5:9e:5e:5b:03:b9:ec:1e:26:
23:3c:90:b1:70:7f:a1:9e:3e:da:eb:2c:ae:94:27:
71:06:fa:e3:8d:37:e4:51:ce:3e:bb:0f:bb:69:fa:
7c:44:2f:da:88:c4:90:05:6a:a0:4b:1a:2a:98:cf:
aa:1c:8d:aa:29:18:fb:62:70:89:54:43:d3:c7:90:
4e:e1:fe:6a:0f:2d:15:9b:5d:e9:c2:b5:2f:2d:89:
e8:bb:70:36:33:8f:10:2c:ea:10:e3:06:f0:eb:c2:
01:93:a8:d0:ad:10:23:94:4e:ef:45:b6:45:35:cf:
6a:0a:1b:ba:c2:27:e7:8b:dc:aa:51:c5:86:c3:5c:
29:50:12:cc:0b:44:2e:38:17:c5:88:ab:98:8f:c5:
8b:2d:5a:4a:dc:d7:40:dc:b1:50:23:8a:4a:dc:68:
32:de:63:7f:a7:fc:7b:34:7c:14:19:97:bd:85:ce:
65:e5:ed:f3:55:84:86:03:c4:5e:72:4a:85:e3:35:
65:4c:6a:aa:c7:0a:41:8b:a0:02:a2:0a:e0:d4:35:
05:46:92:ec:a2:92:96:a0:3c:d8:2d:9d:e0:52:56:
5e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:29:08:F9:91:C0:BB:EE:BC:65:40:CB:05:D0:CD:2C:AD:D3:AC:6F
X509v3 Authority Key Identifier:
keyid:61:B8:66:E3:23:38:2C:AE:A9:61:E7:D2:42:3E:53:CA:B5:09:91:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ybhm4yM4LK6pYefSQj5TyrUJkTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/pSkI-ZHAu-68ZUDLBdDNLK3TrG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/4ef4a9-6d96-4989-9c81-d92e68dfffe4/1/Ybhm4yM4LK6pYefSQj5TyrUJkTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.13.0-185.33.15.255
Signature Algorithm: sha256WithRSAEncryption
3a:f3:b8:0c:95:88:6a:28:29:5a:42:b9:6a:68:75:28:8b:1e:
c8:81:36:2b:85:76:3f:0b:34:b0:8c:19:00:18:4a:9d:d0:4b:
05:2e:6c:44:47:fb:62:f4:72:58:3d:b0:e1:2c:ba:de:e9:d7:
53:45:64:67:f3:32:fd:30:90:24:85:0b:57:4c:0e:f1:c3:a8:
6d:50:30:ee:b3:14:26:ae:4f:22:c8:97:a7:4d:eb:8c:be:f5:
35:dc:54:78:13:8e:3a:94:5c:7e:78:09:c4:f0:8b:ef:3e:91:
66:26:1d:32:8c:01:23:06:7c:74:4e:fa:eb:8c:3b:67:97:c9:
fd:40:46:d9:72:f9:7f:55:40:ef:06:c5:ec:46:da:84:f7:e5:
d5:be:77:d1:30:98:3a:00:5b:f3:6c:8b:60:36:01:4c:44:a6:
01:0b:44:37:19:de:d9:5f:60:51:29:75:df:eb:77:62:29:99:
20:10:87:2e:57:af:07:83:7e:11:e9:87:e6:ba:73:6d:d1:0c:
cb:d1:d8:13:50:fb:9d:50:ab:64:51:49:6c:c7:19:4c:86:8b:
7a:86:01:08:73:96:99:1a:59:72:41:e8:b2:14:5e:15:e4:79:
9c:4b:7b:24:54:a2:16:33:90:f0:60:43:3d:ac:48:f2:20:5b:
19:c9:3c:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org