Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/aVv2fWwlBkyjAFxsVwCYiDKBJJQ.roa
File: aVv2fWwlBkyjAFxsVwCYiDKBJJQ.roa (raw, json)
Hash identifier: JgiZyRuC4+fc9kj6LMOZUvLamIUjb8ads2l7YiRtcpk=
Subject key identifier: 69:5B:F6:7D:6C:25:06:4C:A3:00:5C:6C:57:00:98:88:32:81:24:94
Certificate issuer: /CN=d2a4452602c9df977c9d5dd8dc13b6661df40136
Certificate serial: 10C5D620
Authority key identifier: D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/aVv2fWwlBkyjAFxsVwCYiDKBJJQ.roa
Signing time: Sat 01 Jan 2022 06:01:58 +0000
ROA not before: Sat 01 Jan 2022 06:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21448
IP address blocks: 194.28.136.0/22 maxlen: 24
195.69.92.0/22 maxlen: 24
193.110.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281400864 (0x10c5d620)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a4452602c9df977c9d5dd8dc13b6661df40136
Validity
Not Before: Jan 1 06:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=695bf67d6c25064ca3005c6c5700988832812494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b7:12:82:9b:0d:ff:17:f6:0d:32:c9:5f:78:
c6:22:c5:96:38:d4:8b:df:82:c0:df:74:87:d3:ee:
46:f6:e2:31:ab:01:d4:ab:73:bc:a3:29:72:fe:92:
f7:34:43:df:50:13:d9:e3:d2:5f:97:85:a4:17:55:
9f:52:35:09:cd:c5:da:fb:44:2a:d8:ca:42:51:ec:
c1:81:5e:ef:e2:2e:85:22:b7:a0:4e:57:9e:c3:8e:
ca:8d:ea:4a:e3:ce:84:b8:67:8e:33:48:0e:44:89:
26:46:31:04:64:b5:d0:04:16:2e:2a:9c:68:cd:ec:
b6:2e:da:d5:f3:51:ec:1a:f7:e6:d0:59:d8:39:b7:
cb:e1:a0:d8:de:8c:ca:fe:61:6e:61:24:02:e9:c8:
d4:d3:7b:54:9c:91:ee:2e:3b:ec:e8:5c:90:cf:15:
96:00:8f:a5:ed:23:1e:42:d1:5d:c0:a5:67:48:b6:
99:4e:c1:29:e5:c5:39:40:51:e2:5e:6a:2f:d7:57:
a9:7b:f4:be:7e:52:a6:76:6f:57:b9:10:e0:d7:6f:
f9:e2:2c:1f:06:1d:c6:07:83:e5:8e:8f:0a:67:8f:
92:93:cd:99:bf:ae:cf:7b:a6:bb:b3:f7:0a:35:ec:
6c:b2:b3:97:5a:b9:c7:b7:d6:25:a0:09:4e:d8:31:
29:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5B:F6:7D:6C:25:06:4C:A3:00:5C:6C:57:00:98:88:32:81:24:94
X509v3 Authority Key Identifier:
keyid:D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/aVv2fWwlBkyjAFxsVwCYiDKBJJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.88.0/24
194.28.136.0/22
195.69.92.0/22
Signature Algorithm: sha256WithRSAEncryption
51:2b:41:9d:82:3e:c4:26:a3:86:ec:51:11:b0:f9:c1:1d:ff:
ea:28:58:1d:55:95:c2:49:e3:dd:12:ca:2f:f5:d7:15:82:02:
8b:c1:11:b8:95:99:98:2b:3f:a0:f6:4f:c4:48:97:e4:02:fc:
bd:d6:d4:19:aa:32:d5:30:a0:0c:e0:c7:e8:af:fb:3e:ec:2a:
2b:fb:04:d9:75:cc:19:64:75:fa:6a:23:fe:58:e7:90:26:4a:
87:3f:0a:f7:a9:7f:be:8d:cd:d3:f3:ab:77:1d:e7:cb:aa:d9:
30:8d:e9:14:cc:0b:16:5c:1f:b6:ca:0b:8d:b5:cb:cd:81:fb:
8a:db:2a:c7:11:fb:ed:8f:f9:73:11:63:5a:e1:cb:53:16:19:
d7:34:5f:9d:95:61:91:04:d2:b2:ae:53:09:b1:33:80:5f:8c:
92:6d:f2:80:eb:5f:c0:24:52:81:7a:4f:07:89:92:0f:d1:9b:
43:27:4f:8e:b8:cf:3d:c9:4c:56:bb:f9:4b:c2:fb:05:ab:dd:
97:9e:6e:14:be:f6:df:8f:ee:ab:47:12:9f:10:e5:17:18:23:
16:c3:cc:ce:00:af:78:b4:ee:54:73:6e:f7:1c:49:8d:f9:7f:
cf:3d:ee:41:9b:c0:3d:a4:93:c0:d8:29:3a:07:62:dc:56:6a:
b7:ed:7a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:49 2024 by rpki-client on console-fra.rpki-client.org