Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/eXU5siXlZmsbTSuGIHiiJHWuPLI.roa
File: eXU5siXlZmsbTSuGIHiiJHWuPLI.roa (raw, json)
Hash identifier: pb66DbO0MSWtbm4EbfnCdxPwuUJmDoq88EgtN3WzADA=
Subject key identifier: 79:75:39:B2:25:E5:66:6B:1B:4D:2B:86:20:78:A2:24:75:AE:3C:B2
Certificate issuer: /CN=614f5665059abc7be3475ef9e77a9797b716fc87
Certificate serial: 02B9FA3F
Authority key identifier: 61:4F:56:65:05:9A:BC:7B:E3:47:5E:F9:E7:7A:97:97:B7:16:FC:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YU9WZQWavHvjR17553qXl7cW_Ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/eXU5siXlZmsbTSuGIHiiJHWuPLI.roa
Signing time: Sat 01 Jan 2022 13:55:05 +0000
ROA not before: Sat 01 Jan 2022 13:55:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42493
IP address blocks: 77.73.40.0/21 maxlen: 24
5.35.216.0/21 maxlen: 24
185.40.148.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45742655 (0x2b9fa3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614f5665059abc7be3475ef9e77a9797b716fc87
Validity
Not Before: Jan 1 13:55:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=797539b225e5666b1b4d2b862078a22475ae3cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4a:a6:b3:0e:40:79:0e:e9:49:54:69:8b:40:
2f:b6:b9:d1:a8:8f:b3:40:ae:47:11:45:c3:3b:82:
a7:c3:e1:2f:70:41:ce:bd:5f:f9:11:8f:0b:2b:5e:
45:58:03:fa:dd:47:88:c3:09:77:bd:60:96:eb:02:
f5:45:8b:7b:51:2b:be:0c:28:5f:a3:89:7b:ed:c7:
80:4c:50:3c:f2:71:f2:0a:72:0f:40:b5:92:52:cd:
99:6a:11:92:4f:b5:a1:b8:08:fa:42:2b:5d:0e:c5:
1a:c1:50:39:68:e2:de:91:7d:ff:94:af:85:50:4d:
8b:1c:95:d1:fd:a4:4b:be:53:91:69:c6:d9:d6:4c:
7f:7c:04:16:b2:10:ac:1e:11:ac:d1:bc:26:20:3f:
12:f0:70:4e:65:80:41:65:a1:d3:e1:ae:53:b9:10:
37:a5:0d:5a:40:f1:fb:77:35:6c:f1:1b:7a:22:43:
87:d9:77:36:cc:a6:c0:67:2a:b1:56:cf:98:6c:25:
cf:77:21:99:8b:f3:85:42:3f:16:1d:1e:9a:e4:e1:
fd:55:3c:dd:71:74:87:c2:07:5b:9a:5f:75:d1:8f:
f1:d7:6d:ab:57:ce:e2:15:18:88:56:c9:5f:94:af:
4d:53:27:2e:ba:8d:9d:07:c7:89:10:3f:84:35:ff:
c1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:75:39:B2:25:E5:66:6B:1B:4D:2B:86:20:78:A2:24:75:AE:3C:B2
X509v3 Authority Key Identifier:
keyid:61:4F:56:65:05:9A:BC:7B:E3:47:5E:F9:E7:7A:97:97:B7:16:FC:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YU9WZQWavHvjR17553qXl7cW_Ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/eXU5siXlZmsbTSuGIHiiJHWuPLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/888a04-77f4-4159-986c-3cef593d16b4/1/YU9WZQWavHvjR17553qXl7cW_Ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.35.216.0/21
77.73.40.0/21
185.40.148.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:b2:5c:f8:ef:94:f8:3c:96:df:bf:a8:49:75:81:d8:22:85:
99:31:9e:6b:8d:be:bc:54:b7:10:db:0b:16:67:3b:dc:89:76:
f3:c7:77:72:28:11:49:bf:26:7a:05:42:97:61:24:5c:76:2e:
9c:e2:f3:e9:13:94:c3:5b:f6:43:b5:52:fa:bf:ca:ae:62:11:
90:fd:32:7f:4b:cf:99:47:75:bd:54:28:dc:42:22:1d:a6:22:
17:2a:0c:02:4c:7d:f7:d6:28:52:8b:c7:49:12:b8:0e:56:f8:
c1:fb:6d:cd:3b:81:e1:ea:c8:f4:b0:81:78:3c:9b:ed:d2:b4:
06:58:68:bb:ee:d6:6b:07:fc:28:5e:cf:85:8d:75:19:58:f1:
28:d8:88:40:c4:db:15:8f:53:2e:27:35:7e:fc:5e:25:78:39:
92:03:31:b0:28:29:05:45:b0:11:13:b3:6e:c1:a4:d5:88:7d:
ba:00:56:02:19:d6:ce:76:d1:32:b9:d6:ca:f2:ea:fd:7a:93:
8d:cc:ca:36:c9:54:0b:3f:7c:91:01:0d:8a:a6:0f:0d:03:91:
38:4f:b2:be:d0:2c:d8:5f:bc:03:f3:60:a5:15:ff:17:a6:a1:
c3:df:d8:d6:72:d1:e4:48:8c:07:6f:bb:4c:29:1f:ed:77:42:
b3:da:3f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:47 2024 by rpki-client on console-fra.rpki-client.org