Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pFdUNstE2IylwphsgdboJ2toGAM.roa
File: pFdUNstE2IylwphsgdboJ2toGAM.roa (raw, json)
Hash identifier: FrlbFOAyJw1kXT52/qZ4lEz4tUCoKzgjK/nRbw6ggl4=
Subject key identifier: A4:57:54:36:CB:44:D8:8C:A5:C2:98:6C:81:D6:E8:27:6B:68:18:03
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 07226E80
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pFdUNstE2IylwphsgdboJ2toGAM.roa
Signing time: Tue 07 Jun 2022 09:31:21 +0000
ROA not before: Tue 07 Jun 2022 09:31:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 192.94.58.0/24 maxlen: 24
193.150.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119697024 (0x7226e80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Jun 7 09:31:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4575436cb44d88ca5c2986c81d6e8276b681803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8d:6f:3f:da:67:d7:46:78:1d:71:99:26:bb:
05:5f:21:25:c5:f8:8c:2f:d0:9f:40:56:85:12:58:
ce:6c:bc:73:5a:1a:bd:4c:9b:87:1d:b5:36:be:26:
6b:ea:5a:61:55:df:7c:27:6e:56:24:6b:72:a8:b4:
b6:f3:98:76:28:97:17:b3:cf:b9:7a:89:b3:9f:a9:
83:84:29:a1:d1:b2:8e:f4:dd:85:fa:0b:8e:c7:a4:
dc:d2:9b:d7:f8:4d:d4:02:97:74:87:a2:52:90:33:
23:9b:bf:97:3d:27:ed:9e:46:90:12:4a:d7:e2:64:
b0:a5:44:b8:aa:b2:73:fe:e3:ac:ff:db:44:b1:63:
ff:fe:2e:ec:db:47:f2:b0:f2:c4:4d:a2:6d:c4:41:
c8:94:37:7f:c5:dc:51:3e:2e:b0:ec:c4:f3:a3:0a:
83:ae:ae:fd:21:41:04:d3:8a:d6:00:be:a1:00:72:
9f:eb:d8:b8:1a:07:d4:73:51:ec:2a:27:a6:a6:09:
14:48:be:71:d1:40:94:a4:1d:03:6d:f1:4e:63:34:
07:52:1c:12:37:20:74:ba:ef:6a:f1:66:eb:7d:93:
14:db:a9:a6:90:83:2b:82:c0:d7:52:ac:9e:4b:01:
27:4e:a8:91:e3:b1:c6:f4:83:54:e3:67:90:2d:8a:
1a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:57:54:36:CB:44:D8:8C:A5:C2:98:6C:81:D6:E8:27:6B:68:18:03
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pFdUNstE2IylwphsgdboJ2toGAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.94.58.0/24
193.150.188.0/22
Signature Algorithm: sha256WithRSAEncryption
41:9e:47:58:d8:12:e1:d0:44:d4:ac:63:43:b6:48:ed:e8:f2:
d5:17:d2:d6:a0:22:4b:56:85:aa:6c:e7:2c:0b:65:48:4a:63:
45:95:a4:8d:71:4e:d2:b3:0f:cc:91:b3:36:ff:c6:e3:35:4c:
1f:1c:20:bf:6a:70:9f:f7:f7:e3:8c:4d:4e:41:93:84:b8:ce:
6d:f5:b1:77:53:b3:70:97:d4:91:de:1a:22:c8:7e:4f:9e:62:
3c:e3:0a:23:3b:b8:82:77:64:7a:11:4c:f0:f8:36:b9:a1:8e:
bf:c8:62:84:1f:95:87:99:d9:bb:34:7e:16:c1:68:3a:06:08:
c0:92:28:85:6d:b1:9b:0a:78:52:9f:27:d3:bf:33:e3:25:31:
32:b3:19:1b:a7:94:8f:13:4b:48:4a:2c:17:56:ef:3b:13:c5:
4a:75:98:79:e1:10:1e:93:40:66:24:33:54:9d:bc:62:90:ba:
7e:8b:93:66:a3:2a:7a:15:4e:24:34:4b:9f:51:61:7a:ab:bf:
c9:84:f1:d0:59:3b:e8:8f:ff:80:0c:49:2e:23:a1:de:83:b4:
f9:a7:5e:45:68:e4:21:da:a8:21:cc:36:f5:ef:1a:1f:b9:48:
13:02:27:a1:34:b9:4a:24:95:68:82:a4:d3:bf:44:77:22:50:
65:42:ca:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org