Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/4FrLpu8EJSPS98epwLXHrFY9WqI.roa
File: 4FrLpu8EJSPS98epwLXHrFY9WqI.roa (raw, json)
Hash identifier: yT7hlM8XjOcUwdfkxzt7kdtIxqr+o5CQ+bceVomzwrk=
Subject key identifier: E0:5A:CB:A6:EF:04:25:23:D2:F7:C7:A9:C0:B5:C7:AC:56:3D:5A:A2
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 03DA30C0
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/4FrLpu8EJSPS98epwLXHrFY9WqI.roa
Signing time: Sat 01 Jan 2022 06:02:06 +0000
ROA not before: Sat 01 Jan 2022 06:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211655
IP address blocks: 192.102.225.0/24 maxlen: 24
2001:7f9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64630976 (0x3da30c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 06:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e05acba6ef042523d2f7c7a9c0b5c7ac563d5aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:c2:4b:f3:e2:9d:24:1a:10:f9:1f:8b:3e:b6:
9b:36:08:f9:6d:49:e1:d2:04:cb:4b:00:8c:97:49:
5e:8c:5c:58:77:f4:e1:8f:cf:9b:97:9d:47:c6:ae:
a7:0c:0d:04:2f:bb:22:2e:73:51:6b:2e:76:88:ef:
d1:59:59:58:05:79:ac:7f:8f:d5:fb:51:22:cf:07:
a0:52:95:f2:c9:d6:7d:d1:81:80:b5:12:78:cf:3e:
7c:0c:68:5b:1a:1b:db:28:75:75:f4:26:2c:19:7a:
d2:7e:db:9d:44:1e:3a:83:c8:47:ed:bd:6d:2b:8f:
9f:81:61:e7:a9:a3:f6:65:86:98:b0:78:35:2a:b2:
d8:b7:aa:4d:23:7f:23:d4:74:dc:11:85:22:a4:81:
3a:19:c1:ff:c7:24:86:34:42:a8:5a:18:ae:d4:72:
47:c5:00:3a:07:d1:bf:4b:3c:ff:ad:87:16:09:85:
cd:52:fa:92:31:31:66:54:05:9f:cc:2e:30:18:07:
12:7b:fe:fd:87:b2:6b:62:2e:40:bf:74:2d:0f:8a:
1e:ce:19:bd:36:3e:29:2b:f3:f6:b3:03:76:4d:69:
fb:e4:fc:6b:f1:50:12:8b:9c:c0:c9:65:0a:f1:00:
4b:cb:87:61:43:4f:76:62:b2:b7:4a:af:c6:06:19:
e4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:5A:CB:A6:EF:04:25:23:D2:F7:C7:A9:C0:B5:C7:AC:56:3D:5A:A2
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/4FrLpu8EJSPS98epwLXHrFY9WqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.102.225.0/24
IPv6:
2001:7f9::/48
Signature Algorithm: sha256WithRSAEncryption
4e:2f:96:04:d3:49:5d:70:8d:38:f2:16:07:d9:1d:c6:d6:03:
47:ef:a0:c2:7e:8a:d1:af:b7:28:ce:a6:b9:9d:df:20:7f:d0:
f3:2a:86:79:0e:2c:38:f8:01:c4:a1:b8:59:49:e5:ac:b4:04:
e3:95:b4:8d:f3:30:70:e2:54:de:e9:fd:a3:58:64:0f:f7:90:
9b:a4:79:18:51:28:a6:98:20:5b:17:30:df:28:81:82:7e:ec:
75:45:ef:c7:db:da:bc:83:cd:44:7e:a6:53:17:67:b0:20:ab:
68:ed:35:5b:8d:a2:89:09:0c:63:cf:bd:15:b2:a2:f1:e0:df:
55:21:2b:5c:ca:86:c3:1f:61:25:e4:ba:b0:44:dc:87:d5:ef:
e6:18:f4:89:a5:d7:68:20:2d:a0:12:7f:27:84:37:d1:d3:1b:
68:47:52:e7:a8:7d:87:f1:e0:da:ee:4e:e4:f5:3c:b0:48:95:
a1:44:08:37:7a:0e:ce:ae:b9:8d:5f:10:c7:a6:84:56:51:43:
94:89:6b:fa:30:1b:5f:19:95:04:7f:c5:22:ef:d3:da:ff:4f:
d9:c2:04:ef:ad:a8:49:74:46:23:ac:c8:34:e4:56:5c:90:ff:
e4:08:5e:70:21:6f:05:47:53:61:b2:5f:16:dd:1d:9e:4f:26:
c4:0d:84:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org