Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/XSmMttR-49RjCETCQ08qnp97Nks.roa
File: XSmMttR-49RjCETCQ08qnp97Nks.roa (raw, json)
Hash identifier: 70u/CzXznOfk/6YNYiC9vZXct+MjcqCjT0XndUw94rg=
Subject key identifier: 5D:29:8C:B6:D4:7E:E3:D4:63:08:44:C2:43:4F:2A:9E:9F:7B:36:4B
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 055108D1
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/XSmMttR-49RjCETCQ08qnp97Nks.roa
Signing time: Mon 20 Jun 2022 21:30:44 +0000
ROA not before: Mon 20 Jun 2022 21:30:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201381
IP address blocks: 213.208.171.0/24 maxlen: 24
85.91.107.0/24 maxlen: 24
84.47.167.0/24 maxlen: 24
85.91.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89196753 (0x55108d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Jun 20 21:30:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d298cb6d47ee3d4630844c2434f2a9e9f7b364b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:73:b9:68:8d:42:df:3e:58:6c:ee:0c:97:f7:
1d:6b:72:3f:dd:c5:40:d2:af:45:ee:5b:48:bd:2a:
3c:18:d9:2b:38:00:d6:e7:6c:ef:9d:61:14:a4:60:
43:1e:ac:a1:5a:36:64:c2:d5:36:1f:e3:20:65:6d:
47:89:2c:49:a4:55:d5:ef:20:90:0b:b2:13:87:9b:
7c:bd:ce:aa:18:55:74:eb:ee:33:30:80:f0:03:c4:
98:3b:f8:59:1e:82:34:f6:35:7b:c1:0f:b1:e6:28:
fb:6b:e5:f2:3e:42:c6:a0:9f:c0:35:49:4d:6e:05:
1d:46:16:24:3e:51:19:d2:40:0b:bb:7d:55:be:4f:
dc:8c:ba:91:86:c9:b9:39:2d:9d:a3:5c:ff:56:4a:
ae:c8:2e:c9:da:59:3b:8b:e9:7d:f6:e3:a0:49:ff:
7c:8b:5f:6d:fb:4d:a4:ba:2b:5d:76:7c:7b:93:6f:
31:79:8a:7d:09:10:d4:f4:0d:7d:08:a6:b7:22:8e:
33:85:8d:bf:03:7d:88:fb:08:31:56:46:3d:1a:42:
cd:3f:2c:34:ae:cc:ff:34:80:4d:d2:7c:db:bd:b9:
b0:6f:71:e2:7d:b7:c9:97:3c:03:27:1c:48:2a:8c:
20:06:dc:69:02:dc:eb:72:3b:65:4b:30:bb:67:f7:
28:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:29:8C:B6:D4:7E:E3:D4:63:08:44:C2:43:4F:2A:9E:9F:7B:36:4B
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/XSmMttR-49RjCETCQ08qnp97Nks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.167.0/24
85.91.107.0/24
85.91.123.0/24
213.208.171.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:22:f0:7a:7d:50:a4:b3:7a:58:c0:40:a6:57:e7:1b:32:63:
62:94:da:d9:50:9a:97:2f:19:17:b9:d5:86:ac:0f:42:1c:e3:
25:08:0d:b6:36:96:fa:34:07:37:86:2c:06:72:52:5d:5b:e0:
76:7d:74:e2:71:eb:a6:25:61:77:ea:8b:7e:b1:ef:18:a9:d8:
ea:f6:6e:6f:00:34:43:64:c6:a1:bb:35:44:f2:fb:47:51:85:
9f:e2:a5:70:d6:6d:62:da:dd:fe:bd:44:00:85:c4:7b:b8:51:
9c:ab:68:a5:92:a5:b6:5b:3b:d0:4e:a0:97:72:25:67:a9:1c:
c5:c6:77:22:12:85:39:eb:10:26:6e:22:d9:ae:f4:5e:6a:00:
38:29:7f:8a:6f:37:f9:f3:04:01:ef:a7:c3:28:7e:54:8e:62:
7a:61:3a:2e:92:4c:6a:6b:54:cf:fc:e5:5a:8d:1c:6b:d9:89:
3c:14:ba:36:e9:6b:55:ff:02:e5:a6:c8:9b:bf:5c:e1:d9:02:
93:e6:bf:19:46:47:4b:cf:8f:04:a8:b2:d2:8b:80:66:e0:e0:
04:bc:a3:21:53:4b:6b:27:ec:98:eb:9d:18:0d:b5:09:80:04:
c6:8c:dc:36:8e:27:86:3d:ae:85:cd:cb:93:fb:8c:cb:85:f3:
b5:fb:29:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:33 2024 by rpki-client on console-fra.rpki-client.org