Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/icVWOEZ0K_5tDC5M7cQLiwOMd9I.roa
File: icVWOEZ0K_5tDC5M7cQLiwOMd9I.roa (raw, json)
Hash identifier: p/xf/vstYhLATuO0pJMM73V9TXsB1hhy4AQeNs/scQ8=
Subject key identifier: 89:C5:56:38:46:74:2B:FE:6D:0C:2E:4C:ED:C4:0B:8B:03:8C:77:D2
Certificate issuer: /CN=60581e673d80f7474936b21337eafcc1bdc385e9
Certificate serial: 020D1D2D
Authority key identifier: 60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/icVWOEZ0K_5tDC5M7cQLiwOMd9I.roa
Signing time: Tue 29 Mar 2022 10:47:41 +0000
ROA not before: Tue 29 Mar 2022 10:47:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13886
IP address blocks: 104.238.26.0/24 maxlen: 24
45.150.32.0/22 maxlen: 22
206.124.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34413869 (0x20d1d2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60581e673d80f7474936b21337eafcc1bdc385e9
Validity
Not Before: Mar 29 10:47:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89c5563846742bfe6d0c2e4cedc40b8b038c77d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9d:06:ca:e0:1f:6d:9b:e4:c6:49:b5:e9:5d:
42:98:7f:14:8a:6c:6b:f9:7b:bd:2b:f8:ac:d9:d3:
63:7c:a3:d1:17:d5:44:cb:04:1e:d7:15:eb:4f:10:
fc:f9:af:ac:88:8a:e8:8f:6a:6e:f1:7d:10:e4:64:
65:f2:12:e7:35:0e:3d:2c:1c:9c:c6:64:47:8c:0d:
94:7e:43:be:11:5e:b2:7b:fb:f5:01:da:42:a3:19:
c2:b0:a7:2e:c3:ac:d8:48:be:0a:b4:83:13:95:9b:
12:56:e4:f0:25:be:44:88:90:90:b4:03:54:f3:3f:
04:7c:52:26:b9:56:ba:28:92:19:82:47:f3:85:17:
76:83:e1:e5:c2:c3:10:f9:10:fe:48:fc:a3:69:2a:
31:ed:d1:ba:28:3a:e9:0f:c9:c6:6c:90:96:84:35:
2a:53:d3:ef:33:74:30:78:dd:20:2b:89:7b:a6:7f:
79:25:45:e4:d7:71:24:00:83:55:7a:aa:d7:89:45:
a2:e8:96:b9:d6:bc:d0:27:7d:b6:3f:2c:ec:cd:26:
1a:6d:bc:d5:36:17:45:e1:f5:04:31:c5:81:ca:a4:
28:dc:fe:d6:8b:18:33:92:66:c7:14:1c:56:8b:7b:
6c:eb:07:73:84:7c:cf:6d:35:29:fe:c0:04:7b:a3:
14:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C5:56:38:46:74:2B:FE:6D:0C:2E:4C:ED:C4:0B:8B:03:8C:77:D2
X509v3 Authority Key Identifier:
keyid:60:58:1E:67:3D:80:F7:47:49:36:B2:13:37:EA:FC:C1:BD:C3:85:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFgeZz2A90dJNrITN-r8wb3Dhek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/icVWOEZ0K_5tDC5M7cQLiwOMd9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fdd633-c658-49c5-9e8f-fb07955f3aaa/1/YFgeZz2A90dJNrITN-r8wb3Dhek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.32.0/22
104.238.26.0/24
206.124.104.0/21
Signature Algorithm: sha256WithRSAEncryption
5b:3c:5f:d7:20:87:d1:1e:71:10:ea:cf:cc:12:ca:17:4c:07:
12:8d:e0:ea:14:d1:bc:8d:34:06:38:b9:c1:e8:79:fb:9d:0c:
3a:06:c3:51:05:9f:93:91:b0:23:3a:fe:1d:0f:fc:c0:89:8e:
c8:69:44:37:11:37:a1:ca:1a:3a:6e:0a:d0:51:47:e2:43:f9:
74:80:c4:12:40:e2:46:b3:ed:07:86:a5:40:85:aa:3f:85:b0:
b6:73:33:08:1a:3a:79:ae:16:cb:e6:73:3a:6d:ed:ff:39:ab:
12:a4:ce:1a:5d:98:c5:ab:01:82:dd:95:a4:16:00:9b:a8:4b:
9e:2c:00:f2:f8:02:f7:25:71:7f:1e:11:56:55:d5:b9:52:6d:
f5:a5:3a:af:64:4f:33:41:37:5f:90:84:e3:d8:10:26:14:81:
8e:01:8c:ad:a2:a6:1e:66:c1:ac:b7:84:49:35:a4:18:e7:a4:
b2:a7:25:2f:99:46:16:49:28:78:68:54:46:12:d4:cd:f8:ca:
00:80:b2:e7:15:d8:10:0c:8d:99:16:d3:f5:b2:e4:67:5a:cc:
b9:88:f7:4b:c6:ce:51:db:c0:58:f7:58:21:de:6a:04:ab:09:
63:0b:c6:41:7c:16:2d:3c:8f:95:8e:e2:bb:04:fa:d0:c9:07:
5c:a6:b6:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:03 2024 by rpki-client on console-fra.rpki-client.org