Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/784c9e-e6ea-49e9-adbe-479297364eb6/1/4LhyIGjlbW7wpUOG8D-5_8yOWc8.roa
File: 4LhyIGjlbW7wpUOG8D-5_8yOWc8.roa (raw, json)
Hash identifier: aVg6VeZqnDFBU+oXOW8ajwFBTgUhIaTcZoAYYqNrFqM=
Subject key identifier: E0:B8:72:20:68:E5:6D:6E:F0:A5:43:86:F0:3F:B9:FF:CC:8E:59:CF
Certificate issuer: /CN=c15c153441aab020eb6f60dff7152eeaacaea4e7
Certificate serial: 32504037
Authority key identifier: C1:5C:15:34:41:AA:B0:20:EB:6F:60:DF:F7:15:2E:EA:AC:AE:A4:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wVwVNEGqsCDrb2Df9xUu6qyupOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/784c9e-e6ea-49e9-adbe-479297364eb6/1/4LhyIGjlbW7wpUOG8D-5_8yOWc8.roa
Signing time: Sat 01 Jan 2022 10:59:41 +0000
ROA not before: Sat 01 Jan 2022 10:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39823
IP address blocks: 185.12.236.0/22 maxlen: 22
188.92.160.0/21 maxlen: 21
92.62.96.0/20 maxlen: 20
2a02:e80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 844120119 (0x32504037)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c15c153441aab020eb6f60dff7152eeaacaea4e7
Validity
Not Before: Jan 1 10:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0b8722068e56d6ef0a54386f03fb9ffcc8e59cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0e:0e:bb:87:72:ee:a6:6c:77:42:56:57:2b:
99:29:31:f5:4e:53:7a:cd:61:b6:62:db:1d:d2:8d:
55:61:06:fa:3a:50:d9:f2:5e:3d:72:1b:8e:d6:2f:
48:28:c5:28:ee:7b:a6:c7:b1:8d:9a:ab:ba:04:a2:
62:75:d4:80:53:4b:16:c3:1f:19:ba:bc:18:a1:b1:
16:92:46:43:fc:81:bf:77:7f:9a:9f:e0:9d:69:99:
8b:69:c1:08:2a:28:1d:5e:cd:61:dc:b3:14:0f:be:
98:8c:89:86:43:b8:79:3f:57:5f:9a:28:18:2f:27:
ed:5b:da:43:3a:64:67:df:0b:ca:df:53:35:b8:15:
04:3a:36:32:2b:ad:ab:2d:42:ef:a9:80:34:3c:93:
46:9a:4c:4a:b4:aa:30:76:ec:45:a4:e4:2b:e7:f8:
fa:e2:ba:c8:5c:62:1f:e5:2c:5d:7f:27:e0:80:98:
16:ba:73:16:69:31:91:56:72:51:50:9f:c8:e0:82:
44:eb:54:bf:5b:d7:83:39:cd:a4:e5:c5:de:b1:95:
34:22:f5:a9:ff:a9:00:57:98:8b:35:b0:f1:65:bb:
f8:17:a2:fc:52:4a:2e:47:e2:57:4d:2f:19:ce:4e:
f1:97:7e:36:4e:92:20:d4:1a:2a:73:35:d7:05:cb:
fb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B8:72:20:68:E5:6D:6E:F0:A5:43:86:F0:3F:B9:FF:CC:8E:59:CF
X509v3 Authority Key Identifier:
keyid:C1:5C:15:34:41:AA:B0:20:EB:6F:60:DF:F7:15:2E:EA:AC:AE:A4:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wVwVNEGqsCDrb2Df9xUu6qyupOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/784c9e-e6ea-49e9-adbe-479297364eb6/1/4LhyIGjlbW7wpUOG8D-5_8yOWc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/784c9e-e6ea-49e9-adbe-479297364eb6/1/wVwVNEGqsCDrb2Df9xUu6qyupOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.62.96.0/20
185.12.236.0/22
188.92.160.0/21
IPv6:
2a02:e80::/32
Signature Algorithm: sha256WithRSAEncryption
43:19:65:64:f9:0c:4a:1e:d2:19:51:f6:a7:b9:4d:b5:c6:57:
bc:56:53:dc:6b:95:10:45:47:1c:ca:1d:52:80:6f:f5:67:ca:
1d:df:4d:8a:7b:bd:e1:c1:55:1c:fb:ff:fe:8a:ae:71:a9:67:
d9:99:a9:43:7a:f9:2c:df:29:97:64:56:09:2a:94:c1:27:47:
e4:9c:48:dd:58:47:94:7c:f0:8d:e4:6a:25:a8:a2:3c:ba:b6:
64:6c:12:ff:3d:11:99:12:d6:42:8c:37:d8:54:b5:05:9d:9f:
c0:5e:5d:c5:3e:50:52:60:ba:81:18:d3:77:47:f4:5f:c0:01:
74:b8:ce:92:51:13:02:aa:b6:4a:fb:7c:76:ac:4c:23:9b:f7:
7b:d5:19:ee:49:b5:c0:93:7c:54:14:10:86:b5:47:68:14:c3:
c0:ac:78:64:23:b9:06:27:e2:be:5e:12:2f:a9:d0:0d:d9:12:
54:35:b0:88:a0:84:39:2b:a5:70:4a:54:f8:05:6a:55:39:59:
af:30:bf:ef:9b:bb:8e:8e:f3:96:2a:71:48:67:d5:7e:b1:76:
ad:48:7a:93:17:fa:03:9c:39:a7:e1:3e:e8:d9:b4:df:b7:90:
7e:b2:5b:12:31:14:ae:07:3d:e1:ca:72:9d:69:cc:52:3a:e4:
17:88:a4:69
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:22 2024 by rpki-client on console-ams.rpki-client.org