Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4f5951-2047-44bc-b69a-03bc63ca25a3/1/27sfz2kAE3P1Dp7IzEGg3BKqC70.roa
File: 27sfz2kAE3P1Dp7IzEGg3BKqC70.roa (raw, json)
Hash identifier: s2uSPLn0O3o0JnAI8fFWkYSXxbYt7epNS9NB7YSpsgc=
Subject key identifier: DB:BB:1F:CF:69:00:13:73:F5:0E:9E:C8:CC:41:A0:DC:12:AA:0B:BD
Certificate issuer: /CN=1b6828113bba3423d15731964fe57b5f252bfde6
Certificate serial: 0A5CC308
Authority key identifier: 1B:68:28:11:3B:BA:34:23:D1:57:31:96:4F:E5:7B:5F:25:2B:FD:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2goETu6NCPRVzGWT-V7XyUr_eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4f5951-2047-44bc-b69a-03bc63ca25a3/1/27sfz2kAE3P1Dp7IzEGg3BKqC70.roa
Signing time: Tue 17 May 2022 13:30:47 +0000
ROA not before: Tue 17 May 2022 13:30:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41294
IP address blocks: 194.176.104.0/24 maxlen: 24
193.134.112.0/22 maxlen: 22
2001:67c:90c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173851400 (0xa5cc308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6828113bba3423d15731964fe57b5f252bfde6
Validity
Not Before: May 17 13:30:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbbb1fcf69001373f50e9ec8cc41a0dc12aa0bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fb:5b:19:48:7f:c7:a6:2c:71:50:61:6c:dd:
b0:b6:09:b1:7e:f5:44:50:90:69:b4:8f:a9:3f:94:
7e:db:69:8f:c9:c2:26:a2:d1:e9:06:7c:4c:5a:43:
ba:8a:06:e4:aa:3c:ae:10:90:67:91:0d:ba:1f:7d:
5c:d4:2b:4a:55:f3:b5:af:67:e9:94:34:4a:ef:c2:
37:2a:65:19:55:02:57:a8:47:10:1b:d2:fb:74:0c:
bd:39:65:95:ec:10:48:18:02:7c:f8:de:a2:0b:55:
2e:d6:a2:f2:30:78:bd:24:82:4d:af:bb:2d:2e:58:
60:63:00:81:04:3d:06:80:c9:a4:47:a5:25:78:5d:
95:df:47:80:f9:44:c3:fd:1f:35:ee:de:5e:ac:04:
de:18:ea:4f:67:60:72:2f:a9:f9:3e:68:74:f0:b2:
69:4c:39:68:48:7a:be:bb:8e:9a:ec:89:98:cd:a6:
52:42:33:ab:69:83:db:81:a5:1b:ea:7c:39:52:de:
d0:81:17:a9:35:aa:92:93:38:99:d4:55:b3:54:66:
3e:55:61:2e:37:5e:16:26:84:4f:4e:7b:08:06:5b:
fb:5e:a2:67:5f:b1:ee:7e:bf:5a:42:44:56:0f:59:
8e:b3:f0:72:53:38:06:e8:1d:32:90:ef:99:6d:bf:
3d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BB:1F:CF:69:00:13:73:F5:0E:9E:C8:CC:41:A0:DC:12:AA:0B:BD
X509v3 Authority Key Identifier:
keyid:1B:68:28:11:3B:BA:34:23:D1:57:31:96:4F:E5:7B:5F:25:2B:FD:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2goETu6NCPRVzGWT-V7XyUr_eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4f5951-2047-44bc-b69a-03bc63ca25a3/1/27sfz2kAE3P1Dp7IzEGg3BKqC70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4f5951-2047-44bc-b69a-03bc63ca25a3/1/G2goETu6NCPRVzGWT-V7XyUr_eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.112.0/22
194.176.104.0/24
IPv6:
2001:67c:90c::/48
Signature Algorithm: sha256WithRSAEncryption
3b:51:a3:f0:f1:a0:74:dc:e8:72:57:35:b3:9b:e7:bd:d5:fc:
05:6c:8c:bd:2c:32:09:83:ed:b4:07:e4:63:b8:48:d0:50:84:
84:b8:fa:71:2a:5b:3c:bf:5a:4f:f2:1a:92:8e:75:ed:49:f7:
51:1a:e3:67:2a:7d:44:21:0b:32:5d:d0:20:04:32:f2:13:e0:
9b:12:3d:0c:49:b9:01:1c:a8:c8:40:8d:8b:8a:8d:a9:5c:b0:
af:59:91:82:ca:3f:d5:90:c4:9f:c4:66:67:0a:dd:5e:be:00:
ae:a2:f8:e2:54:4c:f4:39:e5:4a:bb:e3:9e:b4:54:82:61:80:
1f:2c:21:92:d0:4a:1b:2c:66:5a:ce:e9:fd:98:64:ea:84:87:
59:5d:94:76:a1:2b:46:26:a2:a7:3f:06:9b:af:77:e0:7d:21:
c7:1d:2c:5d:e5:b9:9f:e3:79:b1:86:1e:8d:27:49:50:a5:20:
b9:1d:2a:7c:a0:4f:78:c7:90:21:28:7d:52:50:ac:b6:33:79:
3c:93:8f:1a:6f:57:c5:d1:05:60:f7:28:f2:20:4c:84:bb:a5:
3a:a1:b0:dd:81:fc:37:db:7b:44:84:4b:29:8c:2c:e0:92:bc:
3b:d0:13:2f:e6:4c:1f:b3:a6:6f:58:2d:fb:ad:be:90:73:da:
e3:b5:0d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:33 2023 by rpki-client on console-fra.rpki-client.org