Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/4330fe-dbfc-481f-8fd9-1e4fcb1c60cb/1/Kp4M3gLFmmwM83mGwDT90P0SF-0.roa
File: Kp4M3gLFmmwM83mGwDT90P0SF-0.roa (raw, json)
Hash identifier: vDeUHJ9LF1NrUd+62c5atYIqc+iJQzlHE0Sg0pq+rRY=
Subject key identifier: 2A:9E:0C:DE:02:C5:9A:6C:0C:F3:79:86:C0:34:FD:D0:FD:12:17:ED
Certificate issuer: /CN=056ad2f4ffc5872e35a429e53ef179925ff4215e
Certificate serial: 19C54A44
Authority key identifier: 05:6A:D2:F4:FF:C5:87:2E:35:A4:29:E5:3E:F1:79:92:5F:F4:21:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWrS9P_Fhy41pCnlPvF5kl_0IV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/4330fe-dbfc-481f-8fd9-1e4fcb1c60cb/1/Kp4M3gLFmmwM83mGwDT90P0SF-0.roa
Signing time: Sun 29 May 2022 21:02:13 +0000
ROA not before: Sun 29 May 2022 21:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5605
IP address blocks: 193.101.58.0/24 maxlen: 24
193.102.227.0/24 maxlen: 24
195.244.226.0/24 maxlen: 24
195.244.225.0/24 maxlen: 24
195.244.224.0/24 maxlen: 24
195.244.228.0/24 maxlen: 24
195.244.227.0/24 maxlen: 24
195.244.233.0/24 maxlen: 24
195.244.232.0/24 maxlen: 24
195.244.229.0/24 maxlen: 24
195.244.231.0/24 maxlen: 24
195.244.230.0/24 maxlen: 24
195.244.240.0/24 maxlen: 24
195.244.236.0/24 maxlen: 24
195.244.238.0/24 maxlen: 24
195.244.237.0/24 maxlen: 24
195.244.235.0/24 maxlen: 24
195.244.234.0/24 maxlen: 24
195.244.242.0/24 maxlen: 24
195.244.241.0/24 maxlen: 24
195.244.246.0/24 maxlen: 24
195.244.243.0/24 maxlen: 24
195.244.245.0/24 maxlen: 24
195.244.244.0/24 maxlen: 24
193.98.110.0/24 maxlen: 24
195.244.253.0/24 maxlen: 24
195.244.250.0/24 maxlen: 24
195.244.252.0/24 maxlen: 24
195.244.251.0/24 maxlen: 24
195.244.247.0/24 maxlen: 24
195.244.249.0/24 maxlen: 24
195.244.248.0/24 maxlen: 24
195.244.254.0/24 maxlen: 24
195.244.255.0/24 maxlen: 24
2a00:fa8::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432360004 (0x19c54a44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=056ad2f4ffc5872e35a429e53ef179925ff4215e
Validity
Not Before: May 29 21:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a9e0cde02c59a6c0cf37986c034fdd0fd1217ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:28:ec:e5:1a:90:ca:73:b5:4a:f8:c7:9f:53:
23:01:fa:c0:4d:89:ab:f0:d4:8d:0d:52:8a:f5:85:
cd:67:bb:d9:ca:7a:c1:84:45:f2:d9:1e:bd:34:48:
fb:0a:07:14:0a:6d:e8:a4:7d:60:dc:69:fc:65:8d:
5b:c2:44:38:e4:80:4c:d4:a2:5f:82:3b:84:b0:85:
94:02:34:4c:5f:aa:22:72:6d:61:e9:90:50:ed:12:
6e:25:bd:55:8b:5e:c6:5b:0c:d3:b1:c4:72:bc:77:
78:5e:36:e3:1a:a6:25:1b:46:4b:93:21:28:e9:11:
00:1e:5e:65:6b:5c:36:2a:56:10:b7:ac:b4:7e:2f:
e3:bd:5e:3a:cc:4b:5f:40:fa:48:19:97:17:4f:e8:
3b:cc:3c:e9:2e:18:e4:bc:0c:f0:44:73:37:7d:df:
43:78:c9:00:29:55:86:f4:08:c2:b6:fc:49:5f:dc:
7e:87:11:b1:56:00:a8:58:45:ea:a6:65:d4:50:da:
74:39:75:b5:a2:40:e4:12:4a:33:3a:61:ba:8c:d8:
b0:53:b0:70:72:0c:2e:6e:8a:d3:4c:81:ba:41:d7:
82:98:a4:f3:70:93:d4:c5:f3:c0:8e:07:af:22:78:
b4:16:08:b0:6e:83:53:c0:39:a9:38:cd:95:16:31:
ce:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:9E:0C:DE:02:C5:9A:6C:0C:F3:79:86:C0:34:FD:D0:FD:12:17:ED
X509v3 Authority Key Identifier:
keyid:05:6A:D2:F4:FF:C5:87:2E:35:A4:29:E5:3E:F1:79:92:5F:F4:21:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWrS9P_Fhy41pCnlPvF5kl_0IV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/4330fe-dbfc-481f-8fd9-1e4fcb1c60cb/1/Kp4M3gLFmmwM83mGwDT90P0SF-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/4330fe-dbfc-481f-8fd9-1e4fcb1c60cb/1/BWrS9P_Fhy41pCnlPvF5kl_0IV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.98.110.0/24
193.101.58.0/24
193.102.227.0/24
195.244.224.0-195.244.238.255
195.244.240.0/20
IPv6:
2a00:fa8::/32
Signature Algorithm: sha256WithRSAEncryption
07:6d:ee:67:d1:07:f6:ba:a3:ad:7b:d0:53:91:ae:b0:2e:1d:
ed:9c:c8:c6:8e:1e:35:dc:4d:03:8b:5a:e3:3a:9b:4b:86:58:
ec:49:bd:dc:90:34:e9:13:85:4e:64:c1:c3:70:ce:ef:a0:76:
c9:d1:2a:f8:02:cd:b8:8b:b4:40:1d:60:09:b5:fb:e1:13:ee:
31:36:3d:f5:f8:ca:cb:17:f6:07:25:0d:01:d1:53:23:8c:dc:
98:5f:59:17:09:40:38:c1:ed:9c:3a:cc:23:38:14:ac:44:d7:
b9:3a:b3:c3:ac:db:aa:dd:fd:30:1e:17:cc:08:3c:50:ee:1a:
63:52:b7:95:ed:d3:c6:ee:f2:fd:db:f2:37:0d:a7:17:d1:9d:
a3:64:7c:f3:ae:ab:71:3e:a3:f9:76:85:e6:76:19:ff:08:66:
92:8d:a2:d8:e7:93:8b:20:8b:d2:41:de:13:b5:e8:41:44:d3:
ff:dd:2d:f5:83:ce:70:98:3f:90:60:77:aa:b3:19:b3:22:6c:
f3:71:86:d5:f7:90:db:ec:15:44:ce:8e:cb:35:a8:c7:d7:e2:
b9:bd:32:b3:14:40:79:ee:98:8b:8f:2d:eb:a2:74:50:6c:1a:
d0:84:46:ee:3c:24:cd:97:05:47:a2:3b:ad:df:cd:b1:14:db:
c7:f7:c1:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:44 2024 by rpki-client on console-ams.rpki-client.org