Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/xeyRR4sGwiAJPnYr-4rg00i5ePc.roa
File: xeyRR4sGwiAJPnYr-4rg00i5ePc.roa (raw, json)
Hash identifier: bLOjACNAJq2V8J9+AA1UtVJlz40ygM0mqSRxt4Z2cDA=
Subject key identifier: C5:EC:91:47:8B:06:C2:20:09:3E:76:2B:FB:8A:E0:D3:48:B9:78:F7
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19F35731
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/xeyRR4sGwiAJPnYr-4rg00i5ePc.roa
Signing time: Sat 01 Jan 2022 15:56:58 +0000
ROA not before: Sat 01 Jan 2022 15:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396356
IP address blocks: 136.144.35.0/24 maxlen: 24
136.144.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 435377969 (0x19f35731)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5ec91478b06c220093e762bfb8ae0d348b978f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1f:11:5a:6d:04:5e:70:3e:fc:83:eb:fd:6c:
72:e7:07:0b:f0:d1:6a:7f:2b:d0:2c:95:86:eb:aa:
c8:49:c7:f9:75:61:3f:1b:1a:fc:c9:6a:fc:14:ac:
00:11:65:f1:8c:96:4a:ac:12:f1:b5:67:14:3d:f8:
d7:73:02:0a:97:47:d9:36:45:cc:93:31:5f:05:80:
a4:d6:55:76:75:b9:a3:3a:2a:27:e4:b6:30:64:f6:
2c:1c:e9:8d:39:7e:fc:d5:59:31:75:ef:c9:60:27:
e2:71:a3:e7:e9:28:fe:16:b0:b4:95:38:ff:0a:34:
2f:b4:49:3a:5d:6f:8a:ea:e2:b9:12:0a:ab:c3:f4:
ba:97:74:41:40:69:4d:96:a9:c1:5e:b1:0b:5f:25:
90:37:e9:fd:77:7f:d4:57:40:1b:2f:e6:a5:e3:69:
22:87:25:86:34:c4:db:21:a4:1c:e6:1e:d5:64:ad:
23:75:14:a7:ec:7f:18:8f:7c:ba:4b:9f:00:34:6f:
06:6d:c1:40:e7:a5:2e:a9:e0:ae:9e:75:1f:ca:75:
c3:3f:5c:2b:71:21:1b:f9:7e:c2:a4:3e:f7:7d:7d:
8f:ee:2b:c5:81:a4:8b:f8:c3:f5:bf:6d:1f:5a:b0:
a9:34:1b:5e:ed:80:56:1c:47:5a:d4:9c:a9:51:71:
f5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:EC:91:47:8B:06:C2:20:09:3E:76:2B:FB:8A:E0:D3:48:B9:78:F7
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/xeyRR4sGwiAJPnYr-4rg00i5ePc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
136.144.35.0/24
136.144.43.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:c2:b6:fd:a5:27:9a:6b:c8:28:15:be:80:08:54:e8:f9:ed:
47:fa:39:f9:8a:10:b8:f6:1d:80:45:53:1b:06:e8:9c:01:f6:
3c:47:97:5f:c5:4e:be:a4:0b:c0:89:8d:78:5e:f1:0b:93:f9:
81:99:d0:cc:a2:b5:32:5e:01:17:33:1f:12:e7:af:5f:11:09:
64:63:b8:99:9d:cd:b2:6e:7e:f6:aa:61:0b:85:45:7e:fd:2c:
99:ec:34:26:42:1a:d5:56:bf:3e:35:8b:b6:31:78:20:76:9f:
39:33:74:f9:5a:79:f9:91:11:96:bd:2b:2b:78:2a:e6:9d:76:
10:40:33:fc:51:d4:03:da:04:ce:50:6a:2b:9e:f4:a7:81:0e:
cf:13:9b:d8:9b:ec:e5:1f:ec:be:71:1e:df:96:b9:b8:e8:ff:
4e:81:cc:52:82:5a:02:5b:7f:25:03:da:3c:06:9a:0f:4b:45:
8c:38:27:01:34:7e:ca:3b:75:f2:f0:dc:0e:c9:7a:79:4b:f4:
e6:5d:6f:5e:13:ee:62:29:fe:e8:23:6b:17:fa:da:14:49:84:
0f:55:e7:57:4a:52:4f:90:a5:04:e8:45:73:66:cb:58:88:23:
c3:7e:a6:eb:05:6e:1e:d7:78:ac:b2:5e:78:72:d0:ed:10:c4:
ed:0e:07:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org