Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/7c21c2-8a28-4243-b65d-a05725f9d780/1/X2b-zZp_tJjxPO66LvmpNBySaog.roa
File: X2b-zZp_tJjxPO66LvmpNBySaog.roa (raw, json)
Hash identifier: mIVoTeMf2vVCOnXfWeEEYZaKKK7ERTt1sVrDxdFCGLU=
Subject key identifier: 5F:66:FE:CD:9A:7F:B4:98:F1:3C:EE:BA:2E:F9:A9:34:1C:92:6A:88
Certificate issuer: /CN=d0799179e6398b8abf99c2d451d1f7ce5fca8672
Certificate serial: 0837A03A
Authority key identifier: D0:79:91:79:E6:39:8B:8A:BF:99:C2:D4:51:D1:F7:CE:5F:CA:86:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HmReeY5i4q_mcLUUdH3zl_KhnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/7c21c2-8a28-4243-b65d-a05725f9d780/1/X2b-zZp_tJjxPO66LvmpNBySaog.roa
Signing time: Sun 17 Apr 2022 13:53:28 +0000
ROA not before: Sun 17 Apr 2022 13:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207976
IP address blocks: 194.49.16.0/23 maxlen: 23
194.49.4.0/23 maxlen: 23
2a0f:540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137863226 (0x837a03a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0799179e6398b8abf99c2d451d1f7ce5fca8672
Validity
Not Before: Apr 17 13:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f66fecd9a7fb498f13ceeba2ef9a9341c926a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:aa:90:fd:a6:fc:6f:e3:53:60:08:68:39:e2:
f9:5e:93:e8:c2:f8:1d:46:93:04:c4:01:19:60:80:
1d:5b:73:5b:31:3a:a1:63:79:17:21:02:51:a7:f1:
c8:90:05:f5:a3:70:0a:51:eb:a9:57:1b:d4:ec:92:
fd:7b:41:01:34:2a:09:bf:c8:01:55:69:57:55:2d:
84:ce:3f:9b:c0:5e:12:51:5a:2e:b9:27:56:77:37:
35:0b:9d:7a:43:e3:87:8e:b6:4b:dc:58:45:7c:89:
ad:ac:9b:8a:82:6d:78:91:8e:26:eb:c9:fc:69:e4:
09:6b:bd:bd:7d:dc:dd:5d:76:d1:17:f5:b5:de:02:
58:11:e3:96:95:58:96:1c:9c:b4:0c:a5:ee:db:2a:
08:c1:88:c7:e2:fa:62:cc:5b:55:ab:0c:cf:fa:a8:
9e:d7:da:d1:0e:a6:74:6d:1d:88:5b:ae:57:b2:76:
8f:5f:56:06:45:ee:29:af:30:61:2d:6b:32:1a:b8:
65:7b:08:a3:b1:c5:69:44:5f:33:9b:39:da:af:8c:
56:a0:36:2a:fe:bf:45:de:08:07:43:6b:7d:db:63:
dd:d5:b4:32:30:0c:45:99:d6:c4:cb:9c:89:95:a0:
8a:c0:c1:81:f3:70:dd:61:b4:d9:29:02:bc:ba:bb:
74:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:66:FE:CD:9A:7F:B4:98:F1:3C:EE:BA:2E:F9:A9:34:1C:92:6A:88
X509v3 Authority Key Identifier:
keyid:D0:79:91:79:E6:39:8B:8A:BF:99:C2:D4:51:D1:F7:CE:5F:CA:86:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HmReeY5i4q_mcLUUdH3zl_KhnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7c21c2-8a28-4243-b65d-a05725f9d780/1/X2b-zZp_tJjxPO66LvmpNBySaog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7c21c2-8a28-4243-b65d-a05725f9d780/1/0HmReeY5i4q_mcLUUdH3zl_KhnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.4.0/23
194.49.16.0/23
IPv6:
2a0f:540::/29
Signature Algorithm: sha256WithRSAEncryption
8d:86:fd:04:5a:7c:6b:88:ae:e2:a2:47:21:7a:55:c1:76:6e:
2a:ec:ab:10:e9:6a:17:40:ce:ea:b6:da:47:9f:d7:50:39:f4:
44:d0:81:80:dc:77:7b:d7:76:eb:2c:55:99:53:9e:e4:73:ec:
ff:61:cb:0e:83:a5:22:c1:bb:cc:00:31:5b:72:b1:a5:a7:41:
66:a8:e2:fe:a5:44:fc:32:a5:99:12:14:c2:c3:57:3a:2e:05:
59:70:d6:16:99:18:d5:39:4f:a3:74:a5:71:7c:57:ae:ae:3e:
87:e4:a6:8f:ad:2c:3c:15:ea:93:c1:e5:16:32:75:58:60:17:
6f:7e:bb:8a:a9:c7:ed:3e:4e:bb:3b:08:8c:6d:80:ea:25:e2:
b2:b5:88:54:cf:75:5e:c2:9c:2d:27:c9:c2:cf:fe:cd:8d:4a:
9f:21:57:46:70:48:33:a9:0a:4a:7a:3f:46:de:5b:56:bd:38:
e7:80:02:b6:37:28:00:b7:6e:08:ab:da:32:14:3c:8e:57:1b:
63:7f:77:8d:68:d9:4c:68:67:3a:1f:4f:2c:ed:6c:83:ea:25:
84:a8:bc:d3:53:4c:e1:84:de:08:05:13:b1:b2:2c:84:56:a5:
9b:40:94:7d:9e:13:5d:77:65:93:b2:48:f7:23:8b:14:9c:9c:
36:d9:4c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:11 2024 by rpki-client on console-ams.rpki-client.org