Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/312529-73f6-4809-af9b-e8d70717ff8a/1/T8P3CrIyO67uNPHqeulZ2fL_ubw.roa
File: T8P3CrIyO67uNPHqeulZ2fL_ubw.roa (raw, json)
Hash identifier: dMYUupKRnZgp7wt0P77wuS751JucLLYY7mFS71yejN4=
Subject key identifier: 4F:C3:F7:0A:B2:32:3B:AE:EE:34:F1:EA:7A:E9:59:D9:F2:FF:B9:BC
Certificate issuer: /CN=6665dd97665a23b1b183e223822b66b5ae536a2f
Certificate serial: 37463778
Authority key identifier: 66:65:DD:97:66:5A:23:B1:B1:83:E2:23:82:2B:66:B5:AE:53:6A:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmXdl2ZaI7Gxg-Ijgitmta5Tai8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/312529-73f6-4809-af9b-e8d70717ff8a/1/T8P3CrIyO67uNPHqeulZ2fL_ubw.roa
Signing time: Sat 01 Jan 2022 08:53:22 +0000
ROA not before: Sat 01 Jan 2022 08:53:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3170
IP address blocks: 5.198.138.0/24 maxlen: 24
5.198.139.0/24 maxlen: 24
5.198.137.0/24 maxlen: 24
5.198.141.0/24 maxlen: 24
188.92.139.0/24 maxlen: 24
188.92.138.0/24 maxlen: 24
83.137.212.0/24 maxlen: 24
83.137.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927348600 (0x37463778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6665dd97665a23b1b183e223822b66b5ae536a2f
Validity
Not Before: Jan 1 08:53:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fc3f70ab2323baeee34f1ea7ae959d9f2ffb9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b3:86:e1:49:fe:37:a6:22:a8:2d:1d:9f:ba:
6e:06:01:23:d2:35:76:4c:6d:37:30:3c:17:6e:15:
9f:a4:db:48:e9:30:41:77:62:81:ec:0a:12:4d:cf:
55:82:a4:aa:da:62:e2:85:c9:bb:df:f5:d5:2d:11:
de:46:6c:e4:a1:22:b4:79:49:27:b4:e6:34:33:5a:
7a:22:63:cd:01:ef:a0:a9:ae:d0:b8:a6:0e:9e:44:
e7:ca:e2:5a:6a:fb:bb:b1:c5:7a:63:98:21:17:51:
f9:c7:ba:a3:12:fc:42:49:32:a8:f9:ec:80:9b:29:
e8:8c:ee:9c:95:53:a8:76:df:5f:d2:5b:14:51:85:
af:fb:c0:54:b8:26:95:34:b1:b5:8b:a8:1f:96:e6:
ba:94:bc:31:e4:11:b6:53:65:59:70:47:5c:b9:f5:
f9:ef:08:3b:17:d1:55:35:b9:d7:ee:43:22:e1:10:
93:f0:ff:c6:b6:0c:51:45:1f:0f:9b:db:76:31:1f:
70:68:a6:47:20:f8:af:3a:3b:71:e1:82:dc:ef:38:
5a:00:b2:f7:78:7c:e3:91:e6:6f:86:5f:c8:c2:d4:
b1:fb:a4:a6:c9:dc:59:95:30:2d:d1:56:a6:49:54:
d4:29:44:12:6c:f4:1b:fa:12:2d:c5:98:47:70:41:
8c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C3:F7:0A:B2:32:3B:AE:EE:34:F1:EA:7A:E9:59:D9:F2:FF:B9:BC
X509v3 Authority Key Identifier:
keyid:66:65:DD:97:66:5A:23:B1:B1:83:E2:23:82:2B:66:B5:AE:53:6A:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmXdl2ZaI7Gxg-Ijgitmta5Tai8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/312529-73f6-4809-af9b-e8d70717ff8a/1/T8P3CrIyO67uNPHqeulZ2fL_ubw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/312529-73f6-4809-af9b-e8d70717ff8a/1/ZmXdl2ZaI7Gxg-Ijgitmta5Tai8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.198.137.0-5.198.139.255
5.198.141.0/24
83.137.211.0-83.137.212.255
188.92.138.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:42:5d:61:d2:16:e9:a5:38:ca:e8:03:29:36:a8:53:c8:1e:
21:1e:bc:d5:92:ed:32:d0:49:cd:f8:28:ba:12:43:6d:ab:52:
9c:4b:6c:8e:77:da:41:c7:25:18:27:9d:2e:ca:6d:d0:03:c0:
c8:d7:64:9e:a4:2b:ec:97:82:cd:9c:0c:5e:79:07:2b:66:bc:
47:55:54:c5:74:f7:58:79:42:57:07:9b:f3:95:59:93:e5:ec:
df:20:5c:c0:55:99:20:3e:10:fa:0d:88:bd:5d:72:3c:ec:ef:
d5:04:33:39:05:4a:a6:43:4a:eb:8e:68:af:cb:fd:d9:0c:16:
61:74:df:f7:3c:b4:8b:80:3f:82:96:1e:6f:b0:66:be:6f:4e:
a8:ab:df:41:17:39:63:fa:1e:63:24:b1:09:84:79:fc:df:39:
9d:b0:bf:fd:44:ff:eb:70:32:86:44:ef:d5:cd:90:92:9d:54:
d5:7c:1d:3e:d2:f2:fb:be:f1:93:10:ad:72:24:25:09:a5:98:
92:5b:73:d0:cc:7b:72:37:ea:61:e3:b9:8c:1f:44:5f:fc:03:
af:c6:eb:a8:71:0d:1c:13:ec:2f:76:14:8a:8f:29:df:35:de:
07:a3:ee:4a:a7:5b:0c:58:cb:c4:71:a4:fc:1a:fc:66:2e:8d:
cf:c1:1e:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:34 2023 by rpki-client on console-fra.rpki-client.org