Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/zIixyfwjQLbDiMec5eOE4is8oJo.roa
File: zIixyfwjQLbDiMec5eOE4is8oJo.roa (raw, json)
Hash identifier: yQh6VpZVKhZxZtW3/6/v+TRL6ydFUaslbmBoU96uDho=
Subject key identifier: CC:88:B1:C9:FC:23:40:B6:C3:88:C7:9C:E5:E3:84:E2:2B:3C:A0:9A
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 0A55A391
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/zIixyfwjQLbDiMec5eOE4is8oJo.roa
Signing time: Fri 18 Mar 2022 08:34:58 +0000
ROA not before: Fri 18 Mar 2022 08:34:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 5.154.42.0/24 maxlen: 24
185.25.197.0/24 maxlen: 24
31.14.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173384593 (0xa55a391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Mar 18 08:34:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc88b1c9fc2340b6c388c79ce5e384e22b3ca09a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9e:ad:43:50:6b:3f:20:16:eb:92:f1:74:d2:
63:1e:5c:5e:04:34:e2:fc:61:9e:68:50:f5:35:46:
de:7d:f9:ac:d8:62:63:c4:11:5d:25:c4:54:eb:e7:
a3:c8:d2:49:56:e1:e0:e9:0f:fd:09:67:00:f3:20:
0f:71:97:33:01:0a:56:2d:20:4d:59:9f:75:1f:f5:
79:40:68:c7:e1:4e:e2:1a:39:48:9c:64:72:3b:18:
12:69:7b:82:e1:d3:a1:63:71:4f:65:c9:a2:a9:fe:
27:e2:a3:a3:4e:52:db:b1:d7:35:f3:54:ac:d5:58:
f5:3c:bb:c2:d1:21:ef:19:a7:32:43:cf:f6:99:2d:
2a:b1:ce:a7:f1:23:99:46:91:b0:af:50:d5:a1:f1:
ac:7f:ef:ff:ba:c6:79:42:e0:8f:af:95:a0:4d:26:
3f:c8:de:d5:d6:a8:4a:ae:8c:2a:c8:77:0a:9c:c0:
e7:48:a4:32:bd:b9:ad:5e:28:31:ae:2b:f0:8a:c2:
be:e3:2f:54:59:b1:46:8a:b8:c6:e5:d2:9d:c0:64:
c2:be:7c:22:6d:96:95:aa:20:1f:00:49:3e:28:22:
86:15:54:13:38:c4:e5:6f:a2:a6:28:f6:50:ce:74:
61:b3:c8:97:fd:1a:dd:96:4b:4d:00:8d:96:e5:3e:
b0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:88:B1:C9:FC:23:40:B6:C3:88:C7:9C:E5:E3:84:E2:2B:3C:A0:9A
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/zIixyfwjQLbDiMec5eOE4is8oJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.42.0/24
31.14.207.0/24
185.25.197.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:d2:2a:0e:da:c4:94:c5:3a:82:8f:e1:94:73:c3:77:e1:df:
20:30:8f:0c:eb:1d:2b:7a:ca:cc:f8:e4:d6:33:9d:75:20:08:
2e:cf:9d:0d:bd:5c:cb:69:a1:c1:08:80:9d:1b:75:66:fc:44:
0c:ff:4a:f1:cc:93:c4:c2:4d:6d:1f:34:b1:11:0e:45:0a:b4:
25:81:2e:88:0a:d7:8d:f9:0d:7a:cb:ee:e9:28:09:1c:92:ee:
bc:96:af:b0:10:58:49:a5:18:eb:39:ea:9f:e0:96:19:4f:68:
c0:12:c3:4c:c4:6e:d5:c1:13:8f:19:24:52:50:a7:fd:51:53:
4c:db:9a:5a:42:34:60:b5:f7:44:52:e1:9e:02:5b:26:ea:7c:
fa:bb:d8:cb:fc:68:73:e1:22:5b:42:af:ad:c9:50:f5:ff:38:
52:66:cd:92:b5:a3:96:dc:10:3b:17:27:b2:9f:c1:44:a3:d3:
de:e9:b8:8d:0b:f5:58:9d:b5:dd:7d:af:fb:4c:db:af:86:5d:
fa:1c:ca:3a:bf:bc:a2:ca:c7:5f:f9:ec:6e:4f:d0:f9:29:11:
71:e7:62:13:7f:67:95:37:9e:98:40:b9:41:96:0c:d9:1f:ab:
e0:3d:8e:f2:24:54:0a:35:53:bc:82:43:af:28:9d:2f:35:7b:
1b:8d:f8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:34 2024 by rpki-client on console-fra.rpki-client.org