Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/Vl4byNOX5ccELbQNyX8BpuDPz44.roa
File: Vl4byNOX5ccELbQNyX8BpuDPz44.roa (raw, json)
Hash identifier: eIGHyRMakeeQ/Eov7U6OloYps0DU27T8SvNQ/hRo+OA=
Subject key identifier: 56:5E:1B:C8:D3:97:E5:C7:04:2D:B4:0D:C9:7F:01:A6:E0:CF:CF:8E
Certificate issuer: /CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Certificate serial: 01199F50
Authority key identifier: D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/Vl4byNOX5ccELbQNyX8BpuDPz44.roa
Signing time: Sat 01 Jan 2022 11:04:56 +0000
ROA not before: Sat 01 Jan 2022 11:04:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48940
IP address blocks: 5.182.84.0/22 maxlen: 24
46.254.92.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18456400 (0x1199f50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Validity
Not Before: Jan 1 11:04:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=565e1bc8d397e5c7042db40dc97f01a6e0cfcf8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2d:a0:15:eb:0f:12:af:2d:93:ee:b6:ee:06:
b1:19:d8:57:de:3f:76:cb:3c:67:4c:79:40:8e:96:
3d:e0:e9:bc:98:0d:df:3a:55:72:61:5f:81:28:f9:
ce:f0:62:7b:5e:05:79:6e:2c:02:08:c7:12:7b:ba:
f2:7e:61:d6:85:d1:7f:d8:bd:d4:43:ca:36:cf:5b:
56:d6:8c:7d:f7:a2:b0:83:80:72:04:f3:1f:22:d2:
db:a4:44:f8:03:c1:11:1c:8d:ae:89:d4:a7:f9:2a:
db:3b:51:51:04:d0:ed:9e:09:e7:d4:34:a5:76:5b:
79:17:e6:2b:e0:3e:b6:6e:3a:5b:60:38:c6:7c:ad:
b4:03:03:a0:26:9d:cf:2b:a2:0c:17:5b:c9:77:e3:
dd:b6:99:15:31:80:44:e5:4b:a9:d6:b7:65:3b:1a:
01:39:66:4e:15:67:5f:91:2a:ae:11:a7:74:90:5b:
42:1c:c0:e1:7b:c6:58:5d:b7:fc:de:38:6e:5d:6f:
a2:c0:1e:78:4a:48:59:44:c1:9a:f0:e0:2b:89:e8:
ca:d1:3a:7e:49:8b:1a:9e:27:b7:cc:9b:64:23:f0:
c5:c0:5e:8b:a7:6f:3e:84:2d:eb:74:da:54:c5:6b:
41:3e:11:a4:69:ee:5c:70:e5:4a:0d:57:52:e6:31:
cf:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:5E:1B:C8:D3:97:E5:C7:04:2D:B4:0D:C9:7F:01:A6:E0:CF:CF:8E
X509v3 Authority Key Identifier:
keyid:D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/Vl4byNOX5ccELbQNyX8BpuDPz44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/1QTmQeVaSK7gFB4sDSYicQLKptQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.84.0/22
46.254.92.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:79:08:51:fb:9e:c8:a7:67:95:d7:15:58:bc:99:ea:f3:e2:
19:45:2e:7d:c9:b2:ab:52:4b:ad:f3:b9:1a:2f:68:1b:cb:ef:
cd:fe:51:b7:41:ae:af:96:a0:d2:dc:a9:9b:01:e4:f8:11:2e:
2f:d6:f1:e9:8a:f0:76:f6:da:18:0e:8f:c4:bd:a2:b9:4a:b7:
59:0c:99:7c:b0:54:4a:68:12:0a:09:e0:be:12:1b:5e:b3:61:
5f:fd:ff:de:fa:10:f2:e8:7e:9f:f0:1b:41:8e:0f:9f:ac:68:
56:06:84:f7:8c:4b:06:0e:13:39:bd:76:3a:6b:89:3b:0c:59:
aa:67:d3:9d:55:df:ed:59:b7:69:54:0b:ef:8c:0a:a3:37:21:
90:cd:39:03:7c:c5:e3:12:04:e9:63:cf:77:75:84:12:6e:0f:
f4:5a:dd:47:bc:90:bc:be:8b:52:7f:99:3c:d2:63:35:f4:6f:
23:26:d9:d1:48:ee:06:d8:e5:b6:26:8c:ec:b5:50:81:b8:71:
d6:44:3e:9b:00:cc:c7:0a:1a:08:c9:66:5a:09:c9:e2:9e:c1:
13:8b:e0:22:32:a5:7f:ea:0a:c5:9a:df:9a:d8:64:bc:ea:0d:
aa:06:37:7a:f4:8d:3b:1a:de:7c:d1:7c:2a:63:95:eb:02:ea:
3f:1d:3a:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:04 2023 by rpki-client on console-fra.rpki-client.org