Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/NDQ4Yt0sif_zDWHSxObTo9ixhng.roa
File: NDQ4Yt0sif_zDWHSxObTo9ixhng.roa (raw, json)
Hash identifier: HIA+gaOXVcH7ileHTEYkwxFfOBZUqzKEu04StIJjcDA=
Subject key identifier: 34:34:38:62:DD:2C:89:FF:F3:0D:61:D2:C4:E6:D3:A3:D8:B1:86:78
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 0823ED6B
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/NDQ4Yt0sif_zDWHSxObTo9ixhng.roa
Signing time: Sat 01 Jan 2022 06:03:20 +0000
ROA not before: Sat 01 Jan 2022 06:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60731
IP address blocks: 193.32.202.0/24 maxlen: 24
5.149.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136572267 (0x823ed6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 1 06:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=34343862dd2c89fff30d61d2c4e6d3a3d8b18678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:00:06:38:8e:45:68:70:53:14:9c:43:b9:b1:
95:af:54:51:07:76:2f:65:b8:82:ae:34:9a:3a:cb:
f8:dd:06:0a:ca:3e:fe:2c:84:ee:b5:60:ee:5a:47:
fd:4a:8f:5c:71:3d:a0:85:42:2b:57:fc:98:cd:27:
d1:e9:99:a2:2f:21:1c:e2:1a:cf:83:0c:7f:60:71:
50:01:85:bf:68:43:38:94:90:f6:59:3b:b1:88:47:
05:46:8b:84:3b:67:f9:65:aa:43:28:93:9e:a8:32:
20:66:7e:40:e2:bd:04:f6:44:49:3b:3e:d8:bc:d7:
aa:30:41:cf:5a:bc:8c:37:04:28:80:1e:36:cf:a0:
c4:7e:70:99:a2:2e:95:b2:92:19:d1:54:9f:45:c8:
a1:74:d0:25:6e:77:e5:24:dd:54:96:0d:80:71:de:
e5:22:71:f8:66:64:7f:8a:df:ee:ed:15:28:d1:f7:
1e:8f:69:c1:98:3b:63:92:c0:24:45:14:15:51:e8:
0d:63:4b:a8:5a:44:30:10:7f:6d:21:4c:a7:6b:77:
e3:c6:d8:c2:4a:8b:4b:25:36:3b:a2:ec:0a:6f:cc:
d8:1e:31:ff:f2:8b:e4:d8:0f:d4:54:21:bf:45:6b:
60:fd:23:69:49:c9:59:3e:89:c0:57:21:3c:ad:ac:
3a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:34:38:62:DD:2C:89:FF:F3:0D:61:D2:C4:E6:D3:A3:D8:B1:86:78
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/NDQ4Yt0sif_zDWHSxObTo9ixhng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.158.0/24
193.32.202.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:f0:88:60:da:23:a8:73:37:23:ee:42:37:24:27:3e:0b:7d:
22:bc:7a:bf:0b:f4:00:ec:80:25:73:a6:8d:64:c5:c9:f2:cc:
a9:fe:19:d6:81:6d:bf:69:ad:7b:93:07:3e:e0:64:47:75:63:
1b:38:a3:b3:c9:cf:bc:46:7b:fb:22:c9:ed:49:cd:17:ff:76:
b7:70:20:de:dd:80:8b:bc:a7:9c:44:c6:47:b1:1b:db:63:c2:
8e:2e:e9:ee:d6:99:ac:b3:54:4b:d6:53:6e:42:a8:d0:7d:27:
86:10:28:92:bf:78:74:e3:5a:db:bf:9d:6b:fb:cc:b2:db:88:
6f:a4:e6:8d:ee:78:f2:c5:fd:f8:c0:a6:5e:da:ef:3f:54:d3:
c3:9c:09:9f:69:dd:82:ab:a6:ba:0f:dc:24:7b:52:f7:af:0b:
33:c3:7e:70:da:b4:4d:71:22:a0:6c:b2:29:92:6c:99:47:e9:
8c:8f:2e:2e:af:f0:82:3d:fc:ce:59:f8:45:fe:76:11:9c:59:
ea:c7:c6:3c:c5:22:d4:49:78:16:c8:c9:07:9d:9d:a0:d3:27:
6f:05:9b:44:8a:ed:fb:9f:be:64:41:7c:f6:1b:10:fc:63:31:
e8:d7:e6:a5:d4:8c:9f:1c:31:cc:de:b4:dd:fb:b1:bb:cc:5c:
b2:e7:2e:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:35 2024 by rpki-client on console-ams.rpki-client.org