Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/a1d20e-50a2-44dc-b1e8-a67dca8a088c/1/w3ZU4zrR2j6ZSxUx7zwigH4W4pc.roa
File: w3ZU4zrR2j6ZSxUx7zwigH4W4pc.roa (raw, json)
Hash identifier: sjikTVIs5ehvwWdLFe4PPuWd95e0naXM8sTyvuUM6JQ=
Subject key identifier: C3:76:54:E3:3A:D1:DA:3E:99:4B:15:31:EF:3C:22:80:7E:16:E2:97
Certificate issuer: /CN=73dd2894568aebd05ad6432d53cf70e2cd788e6e
Certificate serial: 33411F02
Authority key identifier: 73:DD:28:94:56:8A:EB:D0:5A:D6:43:2D:53:CF:70:E2:CD:78:8E:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c90olFaK69Ba1kMtU89w4s14jm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/a1d20e-50a2-44dc-b1e8-a67dca8a088c/1/w3ZU4zrR2j6ZSxUx7zwigH4W4pc.roa
Signing time: Sat 01 Jan 2022 07:02:20 +0000
ROA not before: Sat 01 Jan 2022 07:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49984
IP address blocks: 5.199.232.0/21 maxlen: 21
185.42.128.0/22 maxlen: 22
178.210.128.0/19 maxlen: 19
2a01:a240::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 859905794 (0x33411f02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73dd2894568aebd05ad6432d53cf70e2cd788e6e
Validity
Not Before: Jan 1 07:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c37654e33ad1da3e994b1531ef3c22807e16e297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:48:5d:9c:ae:a7:3b:7e:86:03:6a:b8:f9:de:
8a:e1:ef:d4:e4:b8:74:44:01:37:d1:05:67:e3:c7:
86:e7:d2:70:06:08:8f:56:b9:72:95:77:a9:73:23:
15:43:9f:fa:fb:e8:9f:0d:45:5a:d4:aa:dc:44:16:
79:4b:8e:2c:70:2e:ce:c1:81:39:4e:84:a4:c1:c3:
32:f7:d1:23:49:be:83:5e:4e:f3:d3:b8:fe:6b:bd:
27:05:68:b0:6c:e9:41:dc:44:e5:fa:77:25:c6:f7:
7f:d8:db:77:99:6e:be:33:a6:45:46:84:12:68:00:
09:66:7b:a7:f1:c4:7c:92:84:79:f9:0d:e5:38:2f:
d2:a6:9f:65:8f:aa:29:67:7d:12:0f:7b:dc:bf:d5:
4e:ca:5a:9e:2e:d9:a3:02:a1:8c:2d:38:20:f6:ac:
1b:7d:58:5a:c3:24:1d:17:e1:b5:22:fc:72:e8:4c:
23:45:63:12:8b:f7:54:c5:61:08:83:56:26:56:1c:
71:bd:7a:69:9e:7b:e0:94:76:26:3a:6d:63:2d:35:
e2:56:2a:57:a9:ec:2b:4a:26:48:d9:b3:a0:cb:46:
f9:45:77:74:81:11:0d:52:5c:8c:de:16:cb:b5:f3:
df:7b:08:dd:3f:4e:7a:1d:7b:4c:2f:ad:c3:18:f9:
1b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:76:54:E3:3A:D1:DA:3E:99:4B:15:31:EF:3C:22:80:7E:16:E2:97
X509v3 Authority Key Identifier:
keyid:73:DD:28:94:56:8A:EB:D0:5A:D6:43:2D:53:CF:70:E2:CD:78:8E:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c90olFaK69Ba1kMtU89w4s14jm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a1d20e-50a2-44dc-b1e8-a67dca8a088c/1/w3ZU4zrR2j6ZSxUx7zwigH4W4pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a1d20e-50a2-44dc-b1e8-a67dca8a088c/1/c90olFaK69Ba1kMtU89w4s14jm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.199.232.0/21
178.210.128.0/19
185.42.128.0/22
IPv6:
2a01:a240::/32
Signature Algorithm: sha256WithRSAEncryption
82:cf:ed:50:71:ab:5e:23:83:89:40:c4:2e:6c:0f:31:59:40:
23:2c:a4:05:ae:d4:93:49:62:3f:ea:e9:cb:65:e9:07:f9:df:
c8:0d:7e:1f:08:bf:79:38:a0:d3:82:2c:f5:74:27:9c:cc:82:
20:57:2f:28:9b:fe:25:b3:40:eb:48:a6:af:8b:86:6c:89:69:
c9:fe:a0:e7:83:76:44:78:58:de:d7:fb:3b:bd:21:36:2b:b4:
b3:fb:99:4f:20:d9:00:c1:11:f3:03:4f:eb:36:71:d0:e6:25:
3c:35:8e:52:61:06:72:1b:91:a9:54:e6:7c:81:67:43:e4:fc:
77:cb:9c:95:d9:9c:57:64:6f:a2:c5:af:b9:99:90:66:fc:a0:
6b:09:65:a5:02:38:5a:61:2f:ae:24:8c:c5:c4:07:38:43:10:
e7:7f:06:12:89:15:b4:b1:8c:1c:87:48:7d:e3:5a:2c:82:dd:
e3:c8:42:9e:44:e4:5e:19:f7:e6:93:fa:89:b3:1b:29:2a:6a:
83:48:f9:75:d5:25:f4:6c:06:11:08:26:9f:02:51:8e:ea:9b:
09:63:37:13:8e:54:e4:e4:00:1e:91:0f:99:81:40:a3:37:65:
ef:33:63:ac:12:dd:65:71:02:37:bf:16:a5:39:77:6c:92:c0:
c2:16:61:0c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:45 2024 by rpki-client on console-ams.rpki-client.org