Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/X4YOPWZT2cq863hS8cihfz75hck.roa
File: X4YOPWZT2cq863hS8cihfz75hck.roa (raw, json)
Hash identifier: S0tE2RrWfErAjMudBbqkdxz50V/7qnvjJvegbaqVO4k=
Subject key identifier: 5F:86:0E:3D:66:53:D9:CA:BC:EB:78:52:F1:C8:A1:7F:3E:F9:85:C9
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0182F26EC8A9BF8840FF39BCF1A3FCC59715
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/X4YOPWZT2cq863hS8cihfz75hck.roa
Signing time: Wed 31 Aug 2022 05:45:22 +0000
ROA not before: Wed 31 Aug 2022 05:45:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39521
IP address blocks: 80.96.10.0/24 maxlen: 24
85.120.144.0/24 maxlen: 24
217.156.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:6e:c8:a9:bf:88:40:ff:39:bc:f1:a3:fc:c5:97:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Aug 31 05:45:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f860e3d6653d9cabceb7852f1c8a17f3ef985c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:98:46:64:fa:a8:dc:6c:a1:ee:3f:b0:3c:18:
5b:ca:aa:59:c1:17:e2:09:37:ef:a0:27:62:d1:f8:
53:7a:c1:81:d3:7f:a0:13:b8:6b:d5:fc:97:14:d7:
55:30:9f:95:15:01:e0:c2:18:d1:53:00:f5:8c:37:
63:5d:c1:86:76:bd:9c:d9:7d:df:d0:c9:96:47:c2:
b2:5d:2f:45:8b:10:78:95:2f:57:c1:b8:79:95:09:
cb:2a:0d:28:43:82:7a:4e:2d:ad:37:b1:b7:88:b2:
da:af:20:2b:48:4b:b7:10:e7:be:f2:5f:86:0c:69:
16:6f:d5:0a:e6:bd:48:95:bc:3f:0d:13:1e:38:07:
15:d3:34:1d:d8:ef:67:9c:7c:f4:df:e7:be:25:9e:
18:3b:e9:62:6b:db:14:31:55:7b:42:e8:36:28:c6:
9f:48:41:68:ac:d1:50:68:45:18:41:22:40:d0:d0:
a9:34:3f:74:dd:2f:df:38:3a:85:76:59:90:6e:99:
88:6c:31:d8:b1:70:f2:7b:24:54:04:20:02:a3:23:
fc:55:1f:b3:fd:4d:10:c6:fa:37:af:f9:f3:52:dc:
a4:09:ea:de:d2:fa:28:72:19:e1:be:3d:e9:db:7f:
dd:ad:cf:f6:a8:5e:77:18:d9:d0:aa:07:b4:5c:38:
80:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:86:0E:3D:66:53:D9:CA:BC:EB:78:52:F1:C8:A1:7F:3E:F9:85:C9
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/X4YOPWZT2cq863hS8cihfz75hck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.10.0/24
85.120.144.0/24
217.156.96.0/24
Signature Algorithm: sha256WithRSAEncryption
81:6f:62:e1:83:91:e1:16:c8:9a:43:0b:d6:73:38:6a:d0:28:
3e:df:12:ba:06:d0:88:8f:b3:51:7f:ba:6e:08:93:27:6f:43:
1c:f6:30:ac:ff:e7:78:3b:bb:43:b4:6d:9e:3d:71:9e:1a:47:
ec:59:c8:01:10:2a:1e:f3:d4:31:76:04:48:d0:58:f7:b2:29:
fc:4e:11:a7:89:8a:42:be:40:b6:0d:c3:17:49:81:e3:7f:50:
3d:01:05:9a:3b:dd:11:27:a6:84:41:19:af:0c:26:5e:aa:8b:
31:b0:72:fb:35:96:f8:91:7d:6b:e9:5b:a6:fe:9f:ad:33:e4:
95:21:0b:8b:77:49:e5:b9:95:b6:ca:38:c3:77:e1:3d:b6:81:
11:99:47:0f:05:63:9c:a2:b3:22:da:74:b7:e5:60:61:f7:c0:
cb:90:57:7f:83:32:9c:a6:ce:ee:60:64:99:40:4c:45:37:a1:
fd:76:82:fd:86:f2:50:89:1b:77:c7:90:d9:d8:89:73:7e:2d:
79:6f:81:aa:7f:5f:04:cc:48:c0:c1:bc:65:7c:d9:66:f1:67:
5f:a9:c3:72:ee:4a:41:e9:92:9d:4e:5f:02:7e:60:b5:f9:f8:
bb:e5:a4:f7:fc:cd:40:e9:48:91:41:67:0b:ee:07:5b:b2:39:
c1:0d:fa:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org