Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/5CXsrJ9lehOrTGCXl-PmQ4anz8U.roa
File: 5CXsrJ9lehOrTGCXl-PmQ4anz8U.roa (raw, json)
Hash identifier: Mnph2omAKZSZJq6Odh7QGJeEJR8ao/8vUeQPLEf1Iyk=
Subject key identifier: E4:25:EC:AC:9F:65:7A:13:AB:4C:60:97:97:E3:E6:43:86:A7:CF:C5
Certificate issuer: /CN=1c97b4823d3c9e121ec649821e00f0a79aeb9b8d
Certificate serial: 09FE1764
Authority key identifier: 1C:97:B4:82:3D:3C:9E:12:1E:C6:49:82:1E:00:F0:A7:9A:EB:9B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/5CXsrJ9lehOrTGCXl-PmQ4anz8U.roa
Signing time: Sat 01 Jan 2022 03:52:32 +0000
ROA not before: Sat 01 Jan 2022 03:52:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43608
IP address blocks: 78.24.104.0/21 maxlen: 21
185.61.57.0/24 maxlen: 24
185.61.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167647076 (0x9fe1764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c97b4823d3c9e121ec649821e00f0a79aeb9b8d
Validity
Not Before: Jan 1 03:52:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e425ecac9f657a13ab4c609797e3e64386a7cfc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0a:c2:af:a6:5a:17:53:51:98:52:99:b1:0c:
89:7e:d4:2c:7b:52:19:81:e5:43:1b:69:e3:f4:df:
be:2c:39:c1:eb:c8:14:79:53:65:6a:d2:c7:2d:60:
d7:85:cf:ec:12:21:21:82:38:e4:4b:07:85:66:21:
12:08:f3:84:93:40:45:f7:f3:be:83:f9:71:78:1b:
17:95:0e:94:8d:c1:0a:3c:54:0b:92:71:bb:86:94:
7f:cf:d0:b7:64:9c:07:f1:2f:48:d5:9a:4f:3a:8f:
ab:36:34:a2:38:01:39:3c:04:7b:6c:26:50:da:0a:
a4:54:fc:59:bf:80:f5:b9:b9:60:f6:c9:46:4a:47:
19:1f:38:4b:e3:40:c1:91:80:bf:cc:1f:1c:48:a9:
1e:ac:8f:5d:6b:b2:d1:3b:6f:39:db:4d:2e:b0:3e:
80:34:d0:15:54:72:46:6d:2e:bf:48:e4:62:67:6c:
12:75:1b:c5:96:50:24:24:a6:e6:86:2c:cf:ac:49:
e7:96:71:83:45:80:dd:b5:9f:30:34:c7:48:02:d9:
c4:9e:3f:56:c4:ef:a8:22:72:ee:c3:ed:c4:dd:76:
12:41:0e:39:55:66:40:f1:0d:71:3a:e8:72:d0:3b:
3d:0a:66:17:fb:f5:07:5d:33:4e:e0:5b:1f:5c:58:
cd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:25:EC:AC:9F:65:7A:13:AB:4C:60:97:97:E3:E6:43:86:A7:CF:C5
X509v3 Authority Key Identifier:
keyid:1C:97:B4:82:3D:3C:9E:12:1E:C6:49:82:1E:00:F0:A7:9A:EB:9B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJe0gj08nhIexkmCHgDwp5rrm40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/5CXsrJ9lehOrTGCXl-PmQ4anz8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/15641a-6614-45e4-a2a9-9b9cd89659e0/1/HJe0gj08nhIexkmCHgDwp5rrm40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.104.0/21
185.61.56.0/22
Signature Algorithm: sha256WithRSAEncryption
84:a7:dd:63:83:ea:55:9c:63:e2:0c:ab:5d:57:62:74:a4:c6:
23:c4:62:00:63:eb:0c:c1:a3:23:af:2f:da:b2:07:85:91:86:
e8:27:4c:0e:56:df:40:f3:eb:50:1c:34:a6:51:cd:f9:19:eb:
4e:a6:f6:06:63:c5:09:b4:de:f7:29:f2:02:37:30:f5:21:8b:
af:e7:8e:21:d8:93:9b:54:58:23:51:74:ce:e4:b8:00:cc:eb:
96:11:1c:51:15:b0:3d:e8:d2:d4:de:57:de:74:e0:5f:9e:f7:
ea:77:65:b6:0e:d9:a3:20:ed:cb:8a:5c:f7:04:08:31:4b:a0:
9c:5b:13:c1:2b:16:ed:df:12:03:f6:e6:b2:08:a3:89:cd:88:
42:d4:34:db:96:41:18:6b:8b:3d:a7:7d:ca:ab:80:d3:58:10:
b4:93:4d:12:7b:7d:8c:2b:b8:38:59:98:a0:2f:bf:02:34:06:
be:1f:37:ff:43:8c:67:c5:cd:1a:07:75:08:5f:8e:98:e2:19:
70:41:dd:be:13:f8:62:46:aa:85:fb:53:33:5d:22:3a:4e:24:
e3:88:00:0c:1a:18:f0:6c:98:d7:df:eb:91:f1:4d:79:bf:79:
6f:7b:2e:cb:84:2c:31:d9:17:02:62:43:34:82:1a:7d:6f:d2:
e6:5c:1c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:18 2024 by rpki-client on console-ams.rpki-client.org