Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/4997de-7df7-4c6d-a54a-42b73ee46b9c/1/XYt1sr5noXcqAQOUwlRLFXFMYS0.roa
File: XYt1sr5noXcqAQOUwlRLFXFMYS0.roa (raw, json)
Hash identifier: 46r2Qu47gbNLWtDGQm1Nr7Q3AT6EFV8H5cAOTAgQY2U=
Subject key identifier: 5D:8B:75:B2:BE:67:A1:77:2A:01:03:94:C2:54:4B:15:71:4C:61:2D
Certificate issuer: /CN=c51fdb78308fdf7d6619f54ed21c02e5b50b2905
Certificate serial: 0183B2C3D4461951C488DE8DE688FD88DDF9
Authority key identifier: C5:1F:DB:78:30:8F:DF:7D:66:19:F5:4E:D2:1C:02:E5:B5:0B:29:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xR_beDCP331mGfVO0hwC5bULKQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/4997de-7df7-4c6d-a54a-42b73ee46b9c/1/XYt1sr5noXcqAQOUwlRLFXFMYS0.roa
Signing time: Fri 07 Oct 2022 14:05:21 +0000
ROA not before: Fri 07 Oct 2022 14:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34582
IP address blocks: 185.19.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b2:c3:d4:46:19:51:c4:88:de:8d:e6:88:fd:88:dd:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c51fdb78308fdf7d6619f54ed21c02e5b50b2905
Validity
Not Before: Oct 7 14:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d8b75b2be67a1772a010394c2544b15714c612d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:70:a9:65:d5:48:d4:13:c3:f2:20:30:01:2b:
44:68:dc:71:61:e5:55:c7:ea:1e:11:05:b7:9b:10:
4b:18:7a:a0:30:47:28:31:b8:84:53:56:1a:b6:ae:
03:e7:a8:61:bb:bf:33:17:1b:92:3a:a9:cd:a5:9f:
ee:12:fb:70:5d:90:7f:88:9c:c4:6c:78:4e:52:30:
da:38:36:51:13:58:ee:91:20:6b:88:0d:45:01:a6:
cb:a2:87:2d:8a:63:6e:c5:9a:0b:41:70:ee:86:e4:
a7:64:28:d8:97:e7:b0:57:53:e2:73:13:a9:0d:c8:
a8:3f:dd:c0:5a:1f:b7:c0:7d:37:29:7d:7d:17:a0:
91:4f:5e:ac:41:cc:41:c2:1a:10:01:69:74:a0:67:
b9:4c:61:a9:8b:e7:0f:cb:53:dd:3f:64:f9:54:76:
8e:31:84:3c:9f:b9:74:a8:44:3f:c3:da:61:0f:28:
17:54:9b:18:09:8b:53:35:38:7e:86:9d:d5:38:04:
34:ff:eb:08:31:ec:e0:18:25:33:9b:6e:0c:7d:85:
23:5a:f9:d3:fb:ec:a9:0a:9c:42:f6:dc:8c:1b:19:
27:98:6c:cc:a9:27:28:62:52:e4:53:e5:1f:fa:af:
bc:53:ab:6d:3f:9a:f3:94:e7:b1:20:f5:8c:f1:6b:
67:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:8B:75:B2:BE:67:A1:77:2A:01:03:94:C2:54:4B:15:71:4C:61:2D
X509v3 Authority Key Identifier:
keyid:C5:1F:DB:78:30:8F:DF:7D:66:19:F5:4E:D2:1C:02:E5:B5:0B:29:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xR_beDCP331mGfVO0hwC5bULKQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/4997de-7df7-4c6d-a54a-42b73ee46b9c/1/XYt1sr5noXcqAQOUwlRLFXFMYS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/4997de-7df7-4c6d-a54a-42b73ee46b9c/1/xR_beDCP331mGfVO0hwC5bULKQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.202.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:08:55:8a:0e:d6:6e:e5:67:22:ca:ea:3a:39:81:b9:c4:4b:
9f:0b:09:3d:f4:3d:94:b5:df:84:4a:d5:5f:b3:f7:04:98:e9:
9a:f7:34:a4:b2:67:17:61:ab:2e:fb:2d:ab:37:10:18:fa:bd:
47:06:be:d2:20:f3:77:62:77:f9:b2:be:21:3d:20:dd:27:99:
5e:01:ea:0b:ee:db:7b:35:b3:86:ab:b9:d0:5f:bd:0e:12:23:
d5:4b:00:26:49:a0:dc:9f:90:ad:54:7c:bf:8e:11:8e:7c:b5:
0f:18:40:e0:6f:ab:13:18:87:c8:60:b2:3b:16:d6:84:3a:cd:
2d:a9:7c:c3:d8:21:37:d8:26:e3:12:0c:bd:47:2c:99:fc:1a:
9c:66:84:ee:70:2f:2a:79:42:17:c8:fb:be:cf:b6:44:05:ef:
97:5c:5f:dd:01:56:2a:89:d2:31:9f:d9:47:85:29:c9:47:2c:
a8:1b:b9:07:84:a8:ac:9f:e5:e3:ab:1d:72:84:1b:a9:aa:f8:
ed:1a:ae:a6:c6:1d:bf:50:4e:41:20:1e:87:96:6e:30:4d:b4:
2b:31:23:38:ec:1a:35:82:8a:8b:2d:49:f2:e3:64:92:76:13:
80:fe:5b:86:b6:28:24:d3:7e:ea:c3:5b:fd:55:29:27:c0:d2:
3e:14:ca:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:26 2023 by rpki-client on console-ams.rpki-client.org