Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/mqeHZ3BONHRdkAhb9GHyB9IL7eY.roa
File: mqeHZ3BONHRdkAhb9GHyB9IL7eY.roa (raw, json)
Hash identifier: Ztove1swi/EZFeD0dex20pW7gnWMwoU3DDV+8T5IAmc=
Subject key identifier: 9A:A7:87:67:70:4E:34:74:5D:90:08:5B:F4:61:F2:07:D2:0B:ED:E6
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 01850F9EF29A6925579AC88278547E23DD8E
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/mqeHZ3BONHRdkAhb9GHyB9IL7eY.roa
Signing time: Wed 14 Dec 2022 07:52:33 +0000
ROA not before: Wed 14 Dec 2022 07:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58192
IP address blocks: 185.239.0.0/24 maxlen: 24
5.159.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0f:9e:f2:9a:69:25:57:9a:c8:82:78:54:7e:23:dd:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Dec 14 07:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9aa78767704e34745d90085bf461f207d20bede6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:80:8a:88:0e:12:19:9c:27:62:0f:3a:7d:5b:
0c:4a:15:34:c5:cd:f7:e0:00:a6:52:59:cf:91:66:
de:e1:70:86:2c:88:bd:eb:ee:9a:df:b5:28:e4:37:
c5:5e:50:bd:0e:e6:9c:09:26:59:5f:fe:44:ee:4d:
56:f1:87:cf:d8:32:77:ee:62:66:36:32:36:f5:31:
f6:10:19:31:2f:2f:e3:83:49:aa:60:54:71:b0:aa:
7d:69:b9:70:36:50:42:37:f9:5f:bc:62:99:d4:43:
f6:87:47:c1:d6:5a:92:7d:33:8b:94:0d:6c:2a:9e:
20:6e:ee:2f:84:36:5d:bd:1a:34:fb:69:8f:e5:3e:
8e:97:91:8e:7d:6b:ab:75:b4:11:52:3e:ea:8c:40:
dc:15:97:ca:0c:f5:50:84:e6:e2:76:4c:07:89:43:
b7:2f:2f:ff:4a:d9:e3:c8:35:ba:d5:f2:dc:63:89:
cd:4a:bf:60:8e:c7:7b:84:26:51:19:66:94:fe:63:
ee:fb:05:c3:1a:ed:75:48:61:11:b4:07:d7:4f:e7:
fe:88:ff:45:93:7d:b7:68:3e:37:dd:4a:cd:ea:9f:
22:ce:b6:69:21:7a:66:ef:70:61:32:45:13:84:de:
98:55:ed:b1:9c:65:30:01:40:b2:28:cb:25:c6:ff:
f2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A7:87:67:70:4E:34:74:5D:90:08:5B:F4:61:F2:07:D2:0B:ED:E6
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/mqeHZ3BONHRdkAhb9GHyB9IL7eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.54.0/24
185.239.0.0/24
Signature Algorithm: sha256WithRSAEncryption
94:84:a3:78:a1:77:34:6a:e0:1f:3b:81:cb:f2:66:e4:a5:ff:
74:2c:4d:ee:c8:1b:ea:b4:b1:91:3e:78:c2:b0:54:5c:36:a7:
98:85:6f:5b:92:47:32:2d:29:10:cd:72:3a:d6:43:73:d9:f2:
dd:e7:cb:b9:99:89:ed:d2:36:73:68:69:b1:49:74:43:3a:5b:
a7:48:ae:1b:c7:ff:71:4d:89:ae:b0:09:82:5b:d7:01:d4:22:
1b:e7:e7:53:ad:5a:fb:8b:60:28:5a:eb:d0:5a:36:d2:ee:09:
fa:34:7d:37:40:fd:6e:52:63:67:71:f1:8f:aa:a5:f4:72:77:
c5:08:3e:b9:1d:29:db:bf:d0:4c:14:69:d9:b9:ae:61:fa:93:
16:14:d4:5b:77:af:62:40:30:cf:9c:8b:58:dd:c7:42:ba:17:
ac:3a:b3:33:93:2c:f2:68:0f:04:12:66:b6:7f:e8:dc:89:98:
04:04:bc:b1:23:b2:ff:7a:33:43:e1:f7:89:15:0f:d7:02:e0:
4d:c9:2f:ab:ba:1b:1c:8e:0c:db:f7:3d:04:10:b3:26:9a:72:
f1:a4:20:f3:39:72:8c:5f:03:44:4d:4a:dd:df:e5:61:1a:7d:
9e:cd:bf:23:e4:d5:eb:49:82:0f:57:0d:d3:ca:48:d1:56:10:
72:a7:85:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:51 2024 by rpki-client on console-fra.rpki-client.org