Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/5eVvnTnZPROXKKCNeXudbuqkKxk.roa
File: 5eVvnTnZPROXKKCNeXudbuqkKxk.roa (raw, json)
Hash identifier: gRDPlzK8wAc0NyVyujYWaO0ajEO0aPg4nD6Vx2uZ0Xo=
Subject key identifier: E5:E5:6F:9D:39:D9:3D:13:97:28:A0:8D:79:7B:9D:6E:EA:A4:2B:19
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0184B83809549F325275B54507CFF0C027AD
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/5eVvnTnZPROXKKCNeXudbuqkKxk.roa
Signing time: Sun 27 Nov 2022 08:33:10 +0000
ROA not before: Sun 27 Nov 2022 08:33:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 88.216.180.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.228.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
88.216.36.0/24 maxlen: 24
84.32.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b8:38:09:54:9f:32:52:75:b5:45:07:cf:f0:c0:27:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 27 08:33:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5e56f9d39d93d139728a08d797b9d6eeaa42b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:58:a6:70:c0:28:9c:fc:6e:cf:8d:34:c2:83:
13:e0:48:90:7e:e8:49:ad:e0:c5:16:00:3d:d5:4f:
22:aa:86:9e:14:2a:0b:98:90:b0:78:5c:d4:75:ae:
6b:3f:c3:7d:99:d6:64:ce:9b:b2:93:ad:ba:ea:ba:
2e:3f:5c:f8:f4:70:f4:66:ac:c7:11:51:f5:e9:2f:
0e:44:0e:f3:02:7f:8c:d5:47:86:15:96:f8:4e:ab:
f7:6e:a8:ff:ff:10:f1:fb:4f:25:a7:73:45:a3:c0:
0a:df:39:1f:ce:26:25:b6:bd:0e:07:9c:30:ff:75:
03:c2:b5:e2:7c:be:62:57:d3:08:be:8b:7b:3f:a2:
1f:65:85:0d:f8:58:5b:4f:3b:c4:c8:64:9d:da:ce:
9d:a8:e7:0c:4b:13:b2:c6:18:09:82:e3:44:c7:e7:
26:23:dc:20:c6:77:e7:6e:68:37:8e:e1:ce:f1:8a:
79:88:07:b8:ea:f8:23:98:c3:99:00:1d:61:ff:e2:
ea:cc:4b:4f:52:83:f3:c9:a6:ff:54:ab:37:b2:0f:
23:78:6c:a0:dc:13:b1:98:25:1f:24:fe:96:67:81:
a9:8b:95:76:0f:87:3b:64:a9:bc:0e:09:5e:5f:2a:
8f:63:b4:71:81:af:a3:de:6f:60:2e:6d:93:44:53:
f0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E5:6F:9D:39:D9:3D:13:97:28:A0:8D:79:7B:9D:6E:EA:A4:2B:19
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/5eVvnTnZPROXKKCNeXudbuqkKxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.45.0/24
84.32.95.0/24
84.32.228.0/24
88.216.34.0/24
88.216.36.0/24
88.216.180.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:8d:f6:1d:29:75:a8:1e:8c:b7:f8:d5:3f:1b:42:35:b7:5b:
40:43:e2:9b:12:92:f5:1b:40:33:23:ab:19:75:e7:ff:a3:67:
f1:45:19:6c:1a:b8:9e:57:77:cc:af:62:ac:be:59:f7:af:d2:
2b:e4:af:9e:92:96:85:56:d3:ac:ce:05:01:31:9d:47:6a:42:
62:e0:2a:cb:5b:66:11:1c:b9:7c:fd:50:b2:bf:f4:1d:85:3b:
95:13:60:81:ad:7e:d8:58:08:3d:54:19:93:f7:ca:06:19:8a:
c7:3e:16:a7:7d:69:62:47:fa:37:8c:e6:f5:ac:71:f3:7d:e6:
7c:b4:a5:94:3f:bd:03:53:87:dc:5c:65:5a:80:11:26:72:87:
b6:a8:82:9b:07:ad:1e:4b:0a:8a:9b:7d:c2:94:24:18:c9:4e:
2d:60:e8:3c:38:2c:1c:8e:0a:cf:47:3e:8f:de:59:71:37:5d:
9b:14:c3:e1:da:fe:17:c3:34:51:f1:6f:07:04:be:d2:10:9b:
7d:dc:6c:e1:11:62:bc:85:9c:15:e4:54:df:f6:ae:a1:19:25:
4b:f3:58:40:d9:86:9c:7c:d1:76:c3:fd:8f:c9:1d:94:59:41:
c3:32:56:a9:68:4f:c5:3a:2a:ef:0f:5c:01:4a:8d:e9:8f:52:
0b:02:f1:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:30 2024 by rpki-client on console-fra.rpki-client.org