Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/24a817-24a6-4ac0-9336-7d7814c7a5f7/1/54Y3DUfCk97LqKQ5WlENdRx9wkc.roa
File: 54Y3DUfCk97LqKQ5WlENdRx9wkc.roa (raw, json)
Hash identifier: camLSu202hS/vfESwg9PhgsPPlUmJT3YGTBVfV0ypWg=
Subject key identifier: E7:86:37:0D:47:C2:93:DE:CB:A8:A4:39:5A:51:0D:75:1C:7D:C2:47
Certificate issuer: /CN=48e99a3feec64d6bad098d1b2df0b536a0388ea3
Certificate serial: 36A39A3C
Authority key identifier: 48:E9:9A:3F:EE:C6:4D:6B:AD:09:8D:1B:2D:F0:B5:36:A0:38:8E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SOmaP-7GTWutCY0bLfC1NqA4jqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/24a817-24a6-4ac0-9336-7d7814c7a5f7/1/54Y3DUfCk97LqKQ5WlENdRx9wkc.roa
Signing time: Sat 01 Jan 2022 13:05:51 +0000
ROA not before: Sat 01 Jan 2022 13:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44943
IP address blocks: 178.22.48.0/21 maxlen: 21
185.34.240.0/24 maxlen: 24
185.34.241.0/24 maxlen: 24
2a00:b880::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916691516 (0x36a39a3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48e99a3feec64d6bad098d1b2df0b536a0388ea3
Validity
Not Before: Jan 1 13:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e786370d47c293decba8a4395a510d751c7dc247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:32:c0:ef:de:b6:25:d7:d4:b2:6e:be:b6:18:
59:13:b9:0f:b4:3d:43:00:90:92:84:97:9f:24:b7:
36:ad:b9:93:98:c5:f7:90:cc:cd:31:2e:3f:b7:36:
66:9b:51:92:16:1c:a3:51:47:82:e7:5e:5c:31:41:
78:f8:d8:1a:d0:14:b1:02:01:1c:51:70:54:36:ef:
1f:fa:d1:77:a3:43:5e:26:98:ec:5b:94:56:68:1f:
2b:8d:07:54:b8:a7:fe:b1:1c:32:17:95:b4:6c:15:
74:6e:7e:2d:c7:aa:a7:db:5b:d2:98:f4:d2:37:84:
90:45:72:bc:ae:56:c0:99:4e:e8:e1:6b:1c:fc:70:
3e:f2:be:05:4d:42:18:36:d2:66:e4:73:f8:19:f8:
49:a1:e1:63:9a:9e:e7:a5:b7:ba:65:aa:eb:c7:ab:
20:96:81:a2:83:e5:0f:aa:74:6d:7b:83:e3:7b:29:
21:6f:87:25:1c:eb:b5:3b:fb:74:c2:e0:e7:f9:e7:
05:31:1e:0b:22:0d:18:08:38:f9:23:d1:a5:56:94:
a4:24:46:b9:7e:53:82:1a:be:38:65:da:82:d9:17:
6e:29:72:cc:e3:f5:d2:5c:98:f1:af:a7:a8:44:a2:
cc:33:41:87:e7:69:9e:89:ef:29:36:61:0a:6c:40:
90:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:86:37:0D:47:C2:93:DE:CB:A8:A4:39:5A:51:0D:75:1C:7D:C2:47
X509v3 Authority Key Identifier:
keyid:48:E9:9A:3F:EE:C6:4D:6B:AD:09:8D:1B:2D:F0:B5:36:A0:38:8E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SOmaP-7GTWutCY0bLfC1NqA4jqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/24a817-24a6-4ac0-9336-7d7814c7a5f7/1/54Y3DUfCk97LqKQ5WlENdRx9wkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/24a817-24a6-4ac0-9336-7d7814c7a5f7/1/SOmaP-7GTWutCY0bLfC1NqA4jqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.48.0/21
185.34.240.0/23
IPv6:
2a00:b880::/32
Signature Algorithm: sha256WithRSAEncryption
51:0d:4a:35:3d:34:0a:93:b7:84:f9:bd:f2:d8:e4:6e:eb:83:
24:10:20:41:35:37:52:10:5a:8d:a1:53:b6:82:78:e2:e2:2d:
82:f1:a1:cd:2e:08:79:f5:5a:f9:cb:10:48:fd:6f:96:0e:d8:
98:12:d8:15:8d:a9:47:a2:b4:d2:84:4c:72:76:4e:78:a0:37:
90:58:d8:83:4d:5d:60:60:fd:5a:bb:b1:ee:7e:20:f2:d7:84:
4e:33:77:42:61:39:ab:5a:97:1f:56:c6:25:c9:40:8f:85:7a:
6b:9d:5c:1b:33:fb:a6:7c:58:47:3d:fe:9d:c9:4d:63:5a:d9:
91:45:14:67:f6:44:ab:e5:d7:b9:0a:36:c1:ed:7a:8f:10:54:
07:43:61:bf:66:e6:f4:73:02:8b:ef:85:46:e4:f5:c6:75:06:
f4:1c:da:da:cb:8d:38:ed:91:e7:54:77:a2:12:d5:7e:ed:90:
b7:cb:2b:dd:6d:63:c1:30:e8:96:ef:e0:19:04:42:4b:7e:da:
d2:34:21:67:37:ba:db:2a:6e:63:db:37:23:03:28:6c:75:9e:
f0:28:b9:27:1f:31:e0:22:96:fd:a3:0b:7e:b6:be:e6:d3:d0:
23:b1:c8:20:79:c7:0e:ec:9c:e3:7a:54:46:6d:68:8c:61:1d:
2b:4d:e6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:14 2024 by rpki-client on console-fra.rpki-client.org