Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/EVtauPzIZTy1h6AkkrwnH_MnK14.roa
File: EVtauPzIZTy1h6AkkrwnH_MnK14.roa (raw, json)
Hash identifier: JXw5CbvnHH61HGoMQPJqf8p0F+gfO+444tLzt36rXEk=
Subject key identifier: 11:5B:5A:B8:FC:C8:65:3C:B5:87:A0:24:92:BC:27:1F:F3:27:2B:5E
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 04D9E6AD
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/EVtauPzIZTy1h6AkkrwnH_MnK14.roa
Signing time: Fri 17 Jun 2022 07:17:41 +0000
ROA not before: Fri 17 Jun 2022 07:17:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42910
IP address blocks: 188.132.141.0/24 maxlen: 32
77.92.152.0/24 maxlen: 32
188.132.149.0/24 maxlen: 32
188.132.146.0/24 maxlen: 32
78.135.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81389229 (0x4d9e6ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 17 07:17:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=115b5ab8fcc8653cb587a02492bc271ff3272b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:57:45:51:12:f9:5b:06:2f:9a:a6:bd:ee:10:
9e:96:f4:dc:2f:00:0b:8b:69:50:d7:4b:bc:5a:75:
16:f3:4c:82:7b:85:b3:41:3a:c6:8d:7c:e5:3b:32:
f2:31:1e:17:90:b0:01:2f:68:fc:f5:01:87:b1:64:
dd:e5:63:0f:e9:69:d4:e6:f8:de:e7:13:ca:ac:64:
3d:83:d0:45:09:df:fe:35:6b:24:30:7f:61:84:6f:
16:2a:69:ab:67:0b:0d:60:44:c6:19:f3:48:eb:81:
7d:40:33:ab:18:e7:58:d3:e7:38:b1:72:52:3a:82:
3a:6d:98:07:1b:55:80:6c:15:dd:c2:29:79:81:8f:
e8:84:40:85:34:37:8f:24:80:98:5a:dc:78:5e:70:
95:ff:7e:71:3a:4a:47:f2:e2:41:e8:f9:80:e7:1e:
75:a4:62:54:3a:82:b0:79:4b:b4:04:cb:eb:f0:cc:
79:34:2f:38:f2:95:e0:bd:20:e9:0f:cd:02:b5:d0:
fc:02:80:e1:fa:b2:ef:7e:e6:b2:da:31:db:f5:b5:
33:39:3d:05:04:68:09:c3:ed:4d:a5:97:6c:ee:2d:
cc:ba:df:e9:ab:13:72:fd:2f:97:85:aa:06:55:24:
c0:3e:32:29:49:70:2f:8e:61:4a:b3:fc:73:e1:d8:
e2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:5B:5A:B8:FC:C8:65:3C:B5:87:A0:24:92:BC:27:1F:F3:27:2B:5E
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/EVtauPzIZTy1h6AkkrwnH_MnK14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.152.0/24
78.135.73.0/24
188.132.141.0/24
188.132.146.0/24
188.132.149.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:c6:1b:93:05:67:08:62:b7:23:44:cf:a2:61:1e:a2:98:f5:
5c:f4:05:db:6d:52:c4:8f:9b:61:c3:8e:dd:2b:bd:68:35:39:
e8:86:6c:ba:b2:e0:3d:36:2f:71:f9:72:cc:1d:50:2b:1a:db:
59:3a:6f:a8:18:1e:a2:85:44:b7:70:04:da:8f:b4:12:d2:a0:
94:c0:1d:ad:1d:fc:e6:c7:72:d2:b7:c8:be:4c:75:0d:59:3c:
ee:da:12:ba:46:90:34:76:84:01:2e:c8:f0:fd:a4:2c:c7:f5:
e8:24:e4:7a:7b:61:6f:71:a6:75:6d:2c:94:44:f1:6c:11:66:
3a:b0:ab:fb:26:97:3a:40:92:ef:ee:d8:b5:84:0d:8a:e6:c0:
5b:53:87:fa:27:ae:66:9d:f6:f6:80:6d:01:9e:a1:bf:ad:23:
7f:52:44:50:70:09:67:aa:51:54:3c:41:7c:bb:8a:55:1e:05:
4d:46:f3:ee:b9:5b:ca:5d:92:5c:c7:f9:01:76:52:b6:a2:c8:
9c:53:c2:a7:cd:81:62:68:1c:42:86:7d:e1:29:86:d8:c2:92:
44:81:5a:8c:f1:e8:b8:6e:82:21:7a:29:98:c7:53:9f:9f:f0:
a2:a1:c0:d1:24:bc:04:86:13:0e:6e:b2:22:7c:7b:47:e1:71:
c8:c7:cc:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org