Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/Q5DEaEtm0z1BnfBvkUeXn8a-T1E.roa
File: Q5DEaEtm0z1BnfBvkUeXn8a-T1E.roa (raw, json)
Hash identifier: RmxJ6uqtsW87HUu19A8A6//MUSi1JH+fgJFWm+ESwGA=
Subject key identifier: 43:90:C4:68:4B:66:D3:3D:41:9D:F0:6F:91:47:97:9F:C6:BE:4F:51
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 40C7C591
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/Q5DEaEtm0z1BnfBvkUeXn8a-T1E.roa
Signing time: Sat 01 Jan 2022 08:00:28 +0000
ROA not before: Sat 01 Jan 2022 08:00:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6667
IP address blocks: 192.136.74.0/24 maxlen: 24
192.136.73.0/24 maxlen: 24
213.192.184.0/21 maxlen: 21
192.175.45.0/24 maxlen: 24
2001:670::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1086834065 (0x40c7c591)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Jan 1 08:00:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4390c4684b66d33d419df06f9147979fc6be4f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ba:48:98:0c:09:bf:e1:de:e9:9c:4c:38:67:
e7:68:8a:0a:51:a6:35:5b:41:24:b2:ca:e0:e4:86:
e6:db:38:2f:50:bc:2d:61:30:d4:2b:37:16:3d:dd:
a2:5f:4e:52:7e:ee:31:a8:af:d4:a8:83:ae:5f:8e:
7d:3d:ac:a9:a9:47:47:bc:e4:14:00:0f:c2:1d:30:
74:6f:56:ea:53:c0:62:4b:03:0e:3f:4f:a0:64:ae:
97:a5:ba:38:0c:36:1c:04:54:2b:63:6f:7a:35:70:
66:8a:e4:0e:cd:66:11:51:0a:31:2c:d8:59:5a:47:
9a:6a:a1:8a:af:9d:bc:38:b6:a3:28:7f:a6:c0:cc:
5a:a2:a1:44:09:68:11:3c:83:3d:ae:b2:56:f9:e4:
59:b7:8a:9d:af:9f:67:88:28:dd:3b:8f:06:d9:a8:
54:69:ad:91:9d:62:ae:6e:36:ee:75:5e:19:d1:36:
bd:25:b8:30:b5:f0:f1:39:1b:0e:a7:50:f9:8a:93:
13:87:05:70:4b:2b:8a:2b:e0:02:63:b0:ee:2a:24:
fe:15:83:99:6b:18:d1:86:a7:ac:d7:5f:a8:36:72:
84:a1:4c:0e:4c:97:c4:45:f5:a1:41:6e:c0:95:72:
35:d3:06:3c:31:47:da:a1:6c:49:60:d5:76:18:75:
9c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:90:C4:68:4B:66:D3:3D:41:9D:F0:6F:91:47:97:9F:C6:BE:4F:51
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/Q5DEaEtm0z1BnfBvkUeXn8a-T1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.136.73.0-192.136.74.255
192.175.45.0/24
213.192.184.0/21
IPv6:
2001:670::/32
Signature Algorithm: sha256WithRSAEncryption
91:17:57:c0:8c:d5:40:ef:1d:af:dc:98:9f:a5:ba:ff:33:fc:
81:ae:3b:3e:ed:ac:95:bc:8e:c8:b1:0a:e5:a0:a6:2b:86:86:
58:26:5b:14:4c:d4:0c:51:32:fd:44:4c:63:07:7f:25:a8:f2:
78:ed:25:0c:55:9b:c0:d4:95:c7:8c:b3:56:3b:07:10:69:a4:
f7:6d:a0:92:29:bb:a5:f0:a4:98:b6:7e:aa:55:5c:fa:af:e4:
70:be:85:35:02:7d:74:68:3f:b0:88:29:1f:d8:b5:34:43:5e:
e8:7c:98:38:de:96:b2:06:b8:b9:a1:09:6c:f9:a3:52:1e:c4:
92:d7:58:32:84:62:0d:7d:d2:6a:57:a2:aa:32:80:e8:71:2c:
2e:f2:9d:68:d8:cc:95:bf:1d:4e:07:42:f0:74:be:ae:db:af:
01:fe:82:8b:14:1d:8d:80:9b:01:f1:c0:59:04:37:34:a7:7c:
9b:e2:b2:7d:45:ae:6f:13:43:80:c3:99:c7:94:f5:df:73:b5:
28:b2:82:c8:5b:37:91:2d:36:6c:38:a3:3d:ee:90:0e:f5:84:
57:17:8b:76:f1:14:61:c0:99:62:66:fb:74:aa:57:24:71:96:
ed:9a:08:eb:3a:98:d3:71:65:aa:df:1b:9c:d9:73:a0:00:8e:
5f:51:14:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org