Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/xcNuH8KK26u9yk5OHEFIFFuv7Zw.roa
File: xcNuH8KK26u9yk5OHEFIFFuv7Zw.roa (raw, json)
Hash identifier: L9Bk/9mJWAE3kB0i1Np4zsPZXXiHwxhc27yFf5xFbbE=
Subject key identifier: C5:C3:6E:1F:C2:8A:DB:AB:BD:CA:4E:4E:1C:41:48:14:5B:AF:ED:9C
Certificate issuer: /CN=5bf63362fedee1c89135d5434d37b7375ed5a108
Certificate serial: 030249E5
Authority key identifier: 5B:F6:33:62:FE:DE:E1:C8:91:35:D5:43:4D:37:B7:37:5E:D5:A1:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W_YzYv7e4ciRNdVDTTe3N17VoQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/xcNuH8KK26u9yk5OHEFIFFuv7Zw.roa
Signing time: Sat 01 Jan 2022 02:57:28 +0000
ROA not before: Sat 01 Jan 2022 02:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31518
IP address blocks: 194.113.141.0/24 maxlen: 24
185.255.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50481637 (0x30249e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bf63362fedee1c89135d5434d37b7375ed5a108
Validity
Not Before: Jan 1 02:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5c36e1fc28adbabbdca4e4e1c4148145bafed9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:91:68:2d:f8:3d:49:d0:f9:8c:1b:b7:9d:3f:
43:56:a4:36:38:4a:49:a9:78:62:d6:02:bd:57:03:
49:0e:40:bb:8b:bf:02:a8:b3:37:bc:92:c0:ba:9a:
c5:6c:5d:15:24:73:bf:47:82:f1:fc:98:c9:6d:5a:
66:31:ce:9d:e6:6b:d0:39:aa:d2:e7:ff:44:fc:03:
aa:23:87:e5:6b:f1:db:1c:76:33:1e:02:68:15:9a:
d8:85:4c:2e:83:ec:d3:3a:6e:12:e3:e7:78:62:d9:
55:12:0f:17:9b:f7:34:a7:45:51:45:db:e4:ca:bf:
b2:c1:f2:c4:3c:15:1e:c5:3c:6b:85:44:de:76:14:
09:b0:1b:e5:f3:e2:df:60:69:52:ce:31:ea:49:2f:
75:47:c8:80:f8:eb:31:7c:e3:2b:db:50:b3:28:1f:
b7:cf:0e:e6:db:ca:7e:6a:09:c3:08:f2:91:6d:bd:
90:7a:13:de:21:65:a2:91:4c:fe:7e:f8:5b:e1:88:
10:3e:6f:18:c1:cb:8f:20:28:79:90:5c:bd:cb:15:
31:ed:6f:53:67:a5:31:7b:33:8d:4f:96:2f:b9:64:
f7:b2:f4:ce:32:2e:49:c5:96:4e:15:06:84:4e:01:
8f:46:0b:81:70:77:75:fd:18:c3:63:fe:66:78:3d:
b1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C3:6E:1F:C2:8A:DB:AB:BD:CA:4E:4E:1C:41:48:14:5B:AF:ED:9C
X509v3 Authority Key Identifier:
keyid:5B:F6:33:62:FE:DE:E1:C8:91:35:D5:43:4D:37:B7:37:5E:D5:A1:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W_YzYv7e4ciRNdVDTTe3N17VoQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/xcNuH8KK26u9yk5OHEFIFFuv7Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/W_YzYv7e4ciRNdVDTTe3N17VoQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.188.0/22
194.113.141.0/24
Signature Algorithm: sha256WithRSAEncryption
79:c0:b5:77:62:ac:ad:c3:39:c1:30:43:01:93:9a:70:d9:6b:
d0:c2:ba:57:8c:37:7a:26:07:27:a4:4b:20:d3:ce:4a:0b:5e:
f5:3e:ea:ab:f8:5f:a4:03:b8:81:8b:66:bf:99:b0:06:42:56:
51:4a:d7:1e:a4:34:e2:12:d3:76:ad:f7:7a:72:f6:9b:6c:3b:
f6:23:ed:98:e3:3d:b6:54:fe:54:fb:34:0d:4e:fb:fc:7e:0d:
3b:0e:af:4a:36:28:85:04:65:fc:40:31:44:18:1c:f7:e9:9b:
91:ef:92:6c:60:a9:ca:d5:e0:31:50:04:4f:50:30:1a:ac:b3:
83:18:b4:41:8b:77:39:7d:a3:a4:5e:2e:a8:b7:de:9e:02:b3:
f5:7d:80:60:3c:10:3a:41:91:4d:cf:ff:33:ba:af:d4:2c:ad:
ca:c7:47:a2:6a:9a:db:02:d8:2e:04:71:67:05:99:aa:a3:e0:
59:71:b2:b1:f1:77:86:e8:d9:dc:ee:e6:e2:0e:13:81:11:de:
df:a3:86:90:ea:d2:b2:a1:99:d1:45:af:82:f2:1c:97:6a:01:
ae:5d:a4:1c:c6:40:f5:91:8c:91:2c:a2:68:fc:a4:4d:b8:a4:
79:96:3d:cd:f4:54:4a:1a:74:74:37:28:f7:57:3b:f1:4b:25:
77:55:5c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:50 2024 by rpki-client on console-fra.rpki-client.org