Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Xs-WSlfSkbZ2Rvtja02nbz5lDVg.roa
File: Xs-WSlfSkbZ2Rvtja02nbz5lDVg.roa (raw, json)
Hash identifier: 1nfY6yLCv2ygibJrVcyyIhT5szFoShcXoPDVD2cJVXU=
Subject key identifier: 5E:CF:96:4A:57:D2:91:B6:76:46:FB:63:6B:4D:A7:6F:3E:65:0D:58
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 10773C2D
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Xs-WSlfSkbZ2Rvtja02nbz5lDVg.roa
Signing time: Thu 24 Mar 2022 13:16:04 +0000
ROA not before: Thu 24 Mar 2022 13:16:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12761
IP address blocks: 193.118.162.0/24 maxlen: 24
193.118.164.0/24 maxlen: 24
217.111.164.0/24 maxlen: 24
217.111.166.0/24 maxlen: 24
217.111.165.0/24 maxlen: 24
217.111.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 276249645 (0x10773c2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Mar 24 13:16:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ecf964a57d291b67646fb636b4da76f3e650d58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:27:b4:f8:f4:07:98:a5:bc:0f:63:73:9d:52:
91:4f:f7:f0:3f:65:ba:a3:7c:a4:59:db:76:6b:df:
80:fe:13:ea:62:ba:12:53:9a:a5:dd:75:1b:a1:17:
69:09:d8:e5:58:40:39:63:8a:3d:2a:08:e0:68:37:
bc:f6:87:d2:b6:74:07:42:24:45:fb:81:af:41:64:
35:89:4d:7c:8d:d1:5f:a0:62:05:a1:f5:6f:f8:da:
69:74:4f:3e:01:aa:3f:f6:8c:d3:bf:78:eb:30:9f:
3a:e5:92:d1:75:50:cf:35:44:e2:d8:bf:6b:2e:fd:
2c:0d:87:8b:03:cb:2f:7f:d5:bd:47:56:71:cc:3d:
ca:82:2f:98:75:a1:21:11:fc:4c:96:dc:37:b8:1d:
44:e1:73:e0:c6:a8:81:81:a9:67:cf:a7:e7:9b:e3:
0d:a7:df:2e:60:62:45:63:de:ef:c0:a1:44:e6:48:
b6:36:07:09:ae:fd:71:b1:60:86:02:3b:9a:14:fb:
15:20:26:57:84:71:c8:0f:13:7e:1b:b1:0c:04:71:
ff:87:ba:a2:a5:b6:46:1a:18:53:38:cc:02:b7:36:
ea:ca:0a:14:c2:f4:01:cf:e1:1f:04:92:a1:64:76:
4a:f5:31:e0:0c:12:57:35:d0:61:74:35:7e:a1:da:
ab:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CF:96:4A:57:D2:91:B6:76:46:FB:63:6B:4D:A7:6F:3E:65:0D:58
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/Xs-WSlfSkbZ2Rvtja02nbz5lDVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.118.162.0/24
193.118.164.0/24
217.111.164.0/22
Signature Algorithm: sha256WithRSAEncryption
74:7d:28:75:cc:72:1c:12:3f:4b:b7:79:e9:6c:e1:f6:f8:f3:
19:49:0d:24:c1:ab:f6:ea:95:24:24:29:61:84:02:e6:09:85:
d5:43:22:dc:a8:59:1a:7a:cc:35:37:4c:7f:1b:51:d9:1f:e6:
2c:c1:08:26:ce:62:ec:db:1c:e2:61:fd:f9:cd:c7:0f:7f:95:
23:49:5f:5c:81:30:e6:d0:8e:1e:d0:67:5a:9b:88:14:93:ba:
50:dd:a8:1b:c7:07:83:94:55:f5:94:41:48:78:69:5f:11:c0:
a0:b6:03:43:5b:fa:00:79:92:4d:e0:19:4a:24:74:19:8c:02:
6a:61:89:40:9b:86:e4:67:a0:86:36:5d:5f:15:49:6c:b9:0d:
02:94:6d:42:75:eb:59:c4:22:0b:aa:62:85:0c:0d:18:8a:05:
91:8f:47:7a:6d:3d:a3:b8:42:5f:2f:62:e2:1c:aa:90:e9:fa:
43:71:12:66:85:8e:92:41:ee:aa:18:3f:1c:a0:d9:3b:ec:20:
16:13:d2:67:cf:64:bc:73:ef:9c:38:e7:24:87:75:f5:e5:3b:
bf:22:18:07:19:68:63:51:0e:f0:f0:69:10:48:21:3c:22:f9:
c2:ca:01:12:df:e9:ce:85:92:b0:ef:09:81:ad:8e:54:4c:4f:
18:9e:a4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:37 2023 by rpki-client on console-ams.rpki-client.org