Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/Es4I-Wb_BZMp91mk8iAYawXcsT8.roa
File: Es4I-Wb_BZMp91mk8iAYawXcsT8.roa (raw, json)
Hash identifier: qVVmVCye4kNMR14hwWaVYmBYkcCpv6R7XKbzANjssN4=
Subject key identifier: 12:CE:08:F9:66:FF:05:93:29:F7:59:A4:F2:20:18:6B:05:DC:B1:3F
Certificate issuer: /CN=0b5a5390b8d68021803e7be9fcf5e8e1393ac043
Certificate serial: 152D0AB5
Authority key identifier: 0B:5A:53:90:B8:D6:80:21:80:3E:7B:E9:FC:F5:E8:E1:39:3A:C0:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/Es4I-Wb_BZMp91mk8iAYawXcsT8.roa
Signing time: Wed 04 May 2022 08:05:10 +0000
ROA not before: Wed 04 May 2022 08:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43066
IP address blocks: 93.184.130.0/24 maxlen: 24
93.184.131.0/24 maxlen: 24
93.184.128.0/20 maxlen: 20
93.184.128.0/24 maxlen: 24
93.184.129.0/24 maxlen: 24
93.184.132.0/23 maxlen: 23
93.184.132.0/24 maxlen: 24
93.184.137.0/24 maxlen: 24
93.184.138.0/24 maxlen: 24
93.184.135.0/24 maxlen: 24
93.184.136.0/24 maxlen: 24
93.184.134.0/24 maxlen: 24
93.184.139.0/24 maxlen: 24
93.184.133.0/24 maxlen: 24
93.184.142.0/24 maxlen: 24
93.184.143.0/24 maxlen: 24
93.184.141.0/24 maxlen: 24
93.184.140.0/24 maxlen: 24
2a05:d880::/48 maxlen: 48
2a05:d880::/30 maxlen: 30
2a05:d880:4::/48 maxlen: 48
2a05:d880:2::/48 maxlen: 48
2a05:d880:3::/48 maxlen: 48
2a05:d880:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355273397 (0x152d0ab5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5a5390b8d68021803e7be9fcf5e8e1393ac043
Validity
Not Before: May 4 08:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12ce08f966ff059329f759a4f220186b05dcb13f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d8:56:39:46:3d:94:2d:14:31:c2:79:0f:1e:
c1:2f:bd:4a:97:b7:bb:8f:c7:b4:45:32:28:d2:d5:
68:be:47:7a:7b:1d:18:fe:aa:be:9e:2f:21:fd:1e:
5d:41:80:7e:45:8a:7f:5b:d6:33:c1:e9:69:aa:75:
35:32:16:72:26:66:36:1a:db:82:cc:fc:0b:ce:ce:
a9:8b:cc:a2:f2:ca:51:54:36:ef:9f:00:02:39:b0:
eb:20:67:ca:06:0a:03:8f:61:97:b6:6f:9f:67:0e:
35:c9:80:7b:a5:70:72:45:be:78:99:37:b4:ff:b2:
8a:91:65:82:c3:ae:f2:58:37:18:22:c2:2b:0d:cb:
a8:f4:2e:1e:31:68:d1:84:25:38:e6:9d:2d:39:ff:
2e:0d:fd:ec:42:a3:66:f5:21:53:08:cd:d8:1a:e3:
12:ec:c1:ee:ed:cf:3d:6c:05:47:48:bd:69:18:56:
a0:ff:97:9e:e9:56:18:83:e1:41:cd:88:15:33:c9:
59:78:29:7f:b7:ae:f5:00:60:94:b8:2e:2d:da:82:
45:fe:5f:61:e7:59:d0:96:0f:d1:68:78:88:0c:60:
df:e5:c0:e4:a0:34:f2:25:74:8d:01:93:08:32:7e:
72:7f:48:22:8d:52:67:7e:6e:f6:f4:c7:3a:51:98:
51:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:CE:08:F9:66:FF:05:93:29:F7:59:A4:F2:20:18:6B:05:DC:B1:3F
X509v3 Authority Key Identifier:
keyid:0B:5A:53:90:B8:D6:80:21:80:3E:7B:E9:FC:F5:E8:E1:39:3A:C0:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/Es4I-Wb_BZMp91mk8iAYawXcsT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/61cc6e-21f4-4e9c-a381-e7cd18855e2c/1/C1pTkLjWgCGAPnvp_PXo4Tk6wEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.184.128.0/20
IPv6:
2a05:d880::/30
Signature Algorithm: sha256WithRSAEncryption
38:2a:95:f4:3c:28:94:47:64:03:4b:1b:38:4e:74:a9:b3:11:
86:a1:26:39:03:c7:bd:15:58:26:9f:f2:4e:dc:83:2e:09:b6:
0d:a8:ea:19:32:b2:02:ab:a5:30:7a:63:3c:43:48:db:fe:71:
1c:f8:cc:09:4e:e1:8e:ab:6d:a4:4d:dc:3b:a8:ca:be:94:94:
3c:12:a7:3a:a8:ad:f4:02:4d:ce:29:96:ea:44:8d:3d:b4:81:
97:91:62:2e:76:2b:c4:8d:51:a3:92:5f:93:c5:d4:e7:4f:9b:
f8:13:7f:86:1f:9d:d9:3d:84:3a:65:48:1f:59:ba:5e:e6:4e:
3b:83:b9:73:dd:90:4c:b7:ac:c3:8a:c8:31:57:38:a6:a7:c5:
21:1f:64:8b:7e:1c:49:51:b9:75:be:ad:77:44:3e:cf:6c:0b:
53:55:7d:d3:24:b8:03:77:f0:8a:6d:a5:7f:2d:e5:ce:e4:0f:
af:2c:bd:13:74:48:a6:af:86:da:82:7d:9d:c2:29:95:fd:aa:
38:d6:f3:68:c6:c6:c4:83:44:5d:dc:a3:10:91:fe:d4:6e:dc:
09:04:32:3f:d6:f8:dc:9c:89:46:bf:3f:d5:33:17:e7:03:29:
8f:9e:9d:93:35:37:01:a9:91:de:c5:d9:ec:8c:32:1a:38:08:
ca:9b:c5:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:09 2024 by rpki-client on console-ams.rpki-client.org