Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/d28341-11fa-43f7-8729-4cd81e9f8cba/1/V4oZTZI3dvng2Ba5sEc5AX6Nlpg.roa
File: V4oZTZI3dvng2Ba5sEc5AX6Nlpg.roa (raw, json)
Hash identifier: RTHyTSxP+lJORUDTut+AxPT0DMsBpu6CURIT3EihOpQ=
Subject key identifier: 57:8A:19:4D:92:37:76:F9:E0:D8:16:B9:B0:47:39:01:7E:8D:96:98
Certificate issuer: /CN=4a407ca3a6af469a31bb52030fcd911c91e66c1b
Certificate serial: 02EABE64
Authority key identifier: 4A:40:7C:A3:A6:AF:46:9A:31:BB:52:03:0F:CD:91:1C:91:E6:6C:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SkB8o6avRpoxu1IDD82RHJHmbBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/d28341-11fa-43f7-8729-4cd81e9f8cba/1/V4oZTZI3dvng2Ba5sEc5AX6Nlpg.roa
Signing time: Sat 01 Jan 2022 16:02:11 +0000
ROA not before: Sat 01 Jan 2022 16:02:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8803
IP address blocks: 194.124.217.0/24 maxlen: 24
193.8.176.0/24 maxlen: 24
193.8.179.0/24 maxlen: 24
193.8.177.0/24 maxlen: 24
193.8.178.0/24 maxlen: 24
193.8.180.0/24 maxlen: 24
193.8.181.0/24 maxlen: 24
193.5.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48938596 (0x2eabe64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a407ca3a6af469a31bb52030fcd911c91e66c1b
Validity
Not Before: Jan 1 16:02:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=578a194d923776f9e0d816b9b04739017e8d9698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:20:7f:6d:79:01:f4:a2:13:b8:09:5f:83:b7:
d3:94:1f:22:31:3c:c3:11:47:ad:40:0a:5d:82:8e:
3e:7e:58:72:85:b8:a9:74:3c:12:bf:f2:cc:8a:8b:
ac:67:d8:5c:e0:6f:ef:d3:95:59:2b:07:f1:f1:40:
59:b4:5b:b3:fe:cb:56:44:48:1a:05:d6:f4:ff:d4:
77:c2:20:4f:25:ae:43:3e:b0:2c:f9:1f:f9:94:40:
38:d1:7b:95:66:43:75:2f:7f:96:7c:9b:7a:dd:80:
27:d0:9e:02:e5:71:cf:ea:84:2b:fc:3d:5c:ce:bc:
9f:6c:4d:ef:14:57:66:84:ef:de:d3:44:c9:83:80:
ac:97:57:60:f7:0f:21:ef:00:5f:da:58:d3:83:85:
ba:1c:24:e1:3a:b6:66:e7:87:e1:ca:3d:a1:ba:86:
2c:4f:f1:cc:eb:0c:d3:d4:5c:3d:5f:ed:59:1f:0f:
76:3a:70:64:ac:3c:b4:05:65:96:28:11:64:13:2f:
66:41:3c:f8:82:27:53:d2:05:22:e2:9a:30:8a:4e:
fc:d8:b2:3e:8d:09:f2:34:d5:e6:79:0b:02:4e:96:
d9:17:85:55:37:0f:47:5c:41:dc:ea:32:be:cd:1d:
ef:cf:47:3c:cc:6f:39:00:84:bc:0c:0f:c3:0d:7d:
22:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:8A:19:4D:92:37:76:F9:E0:D8:16:B9:B0:47:39:01:7E:8D:96:98
X509v3 Authority Key Identifier:
keyid:4A:40:7C:A3:A6:AF:46:9A:31:BB:52:03:0F:CD:91:1C:91:E6:6C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SkB8o6avRpoxu1IDD82RHJHmbBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/d28341-11fa-43f7-8729-4cd81e9f8cba/1/V4oZTZI3dvng2Ba5sEc5AX6Nlpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/d28341-11fa-43f7-8729-4cd81e9f8cba/1/SkB8o6avRpoxu1IDD82RHJHmbBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.172.0/22
193.8.176.0-193.8.181.255
194.124.217.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:9b:e1:59:e0:52:ec:d3:7f:4a:b6:07:d5:e0:5e:2d:97:8d:
3e:c5:1c:63:a2:bf:75:8a:53:59:a9:84:27:44:11:40:4c:6d:
05:c7:34:0a:a7:fe:37:4f:3d:8a:24:b2:c8:b6:96:02:45:a9:
6c:03:94:e5:69:df:14:a1:89:8f:fd:b6:a0:15:f0:d6:81:d0:
dc:9e:18:df:cd:67:a8:b9:30:88:c5:36:93:1f:b3:66:f1:75:
d1:1c:eb:1b:77:67:b9:8a:3f:b1:98:7d:9f:0b:b6:f9:0b:ac:
a1:d5:17:5e:c6:25:ea:7b:09:08:a2:fb:29:c0:07:4e:6e:a2:
82:da:05:0b:1d:67:44:25:57:94:39:2f:4e:4e:cd:55:59:7d:
f9:93:ba:17:89:1f:f9:38:f6:13:ab:9d:56:89:5d:45:cf:dc:
5d:47:d1:75:25:a5:bf:95:17:78:9f:d1:10:47:38:3c:c0:f1:
ec:63:91:de:c6:93:01:78:c5:29:70:6b:a9:6a:54:ff:9b:69:
dd:4d:c6:aa:a6:66:63:80:42:48:68:33:5c:f7:7c:dc:6e:e6:
09:e8:f0:47:75:c6:0c:dc:c1:23:d4:d5:2e:35:04:5c:28:2d:
27:f3:da:a7:7f:b7:5d:b8:a9:9c:87:72:25:13:9d:ac:93:a2:
27:0c:6c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:29 2024 by rpki-client on console-fra.rpki-client.org