Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/E4rFH08YLl8dCtd4awulMGprfjc.roa
File: E4rFH08YLl8dCtd4awulMGprfjc.roa (raw, json)
Hash identifier: CxuB+FmGwvP7gL7eccBZncunW+XvzBOEKMUra1AQt38=
Subject key identifier: 13:8A:C5:1F:4F:18:2E:5F:1D:0A:D7:78:6B:0B:A5:30:6A:6B:7E:37
Certificate issuer: /CN=edae0186c6823014bc2c42d04ea650bf5ccb9976
Certificate serial: 054A4295
Authority key identifier: ED:AE:01:86:C6:82:30:14:BC:2C:42:D0:4E:A6:50:BF:5C:CB:99:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7a4BhsaCMBS8LELQTqZQv1zLmXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/E4rFH08YLl8dCtd4awulMGprfjc.roa
Signing time: Sat 01 Jan 2022 01:01:42 +0000
ROA not before: Sat 01 Jan 2022 01:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200319
IP address blocks: 194.48.224.0/22 maxlen: 24
2a0c:f440::/29 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88752789 (0x54a4295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edae0186c6823014bc2c42d04ea650bf5ccb9976
Validity
Not Before: Jan 1 01:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=138ac51f4f182e5f1d0ad7786b0ba5306a6b7e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3c:43:0d:4d:6a:13:e5:d6:51:8f:b4:a9:a6:
8f:1d:43:30:45:70:fc:4d:10:86:e6:eb:54:52:c2:
42:e3:76:90:46:52:5f:3b:9a:51:d5:f0:e0:87:60:
60:f3:9d:07:ea:15:17:b7:57:70:be:62:66:12:5e:
94:57:b4:e8:56:d6:0e:be:fc:cf:b8:b2:8a:ba:f1:
85:60:d9:bd:de:da:42:98:f9:58:b5:17:29:51:36:
10:2d:a0:65:3a:85:cb:65:87:e5:2f:54:f4:79:4b:
c9:98:11:8a:46:e3:3b:e3:dd:32:95:54:eb:51:a4:
3a:70:d0:96:59:bb:70:3a:90:2a:c1:e4:31:ec:88:
69:1b:99:6a:4d:b4:3f:7e:3e:0c:d4:5e:a2:ae:93:
e3:81:b4:ec:f7:6f:53:99:40:4c:9f:63:6a:cd:c6:
9b:58:10:35:69:53:fb:b2:72:2b:56:42:ed:be:c3:
89:e6:a1:80:f7:20:01:1e:e2:79:38:2a:eb:80:2d:
4e:93:2f:a8:d7:98:2e:e2:ce:fd:43:38:49:66:51:
bc:d5:3f:c1:d5:df:b5:e4:5c:09:53:c5:ce:75:35:
c5:76:16:7a:26:1e:46:fc:8e:55:99:c7:3e:47:0c:
5e:92:7d:19:64:0e:0d:94:b9:bf:45:ec:a5:87:cd:
e3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8A:C5:1F:4F:18:2E:5F:1D:0A:D7:78:6B:0B:A5:30:6A:6B:7E:37
X509v3 Authority Key Identifier:
keyid:ED:AE:01:86:C6:82:30:14:BC:2C:42:D0:4E:A6:50:BF:5C:CB:99:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a4BhsaCMBS8LELQTqZQv1zLmXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/E4rFH08YLl8dCtd4awulMGprfjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29a52e-58a0-4238-aeb1-8b7a4abf1ca2/1/7a4BhsaCMBS8LELQTqZQv1zLmXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.224.0/22
IPv6:
2a0c:f440::/29
Signature Algorithm: sha256WithRSAEncryption
4c:6d:7f:a2:71:75:85:ab:e5:23:c3:64:7f:08:7a:33:50:48:
1f:b8:50:41:42:c9:20:f9:8d:fe:a4:7e:da:13:c3:48:f7:ca:
a0:36:7b:ac:a6:c8:a7:fb:04:8d:d9:1f:7f:fe:fe:f8:46:e5:
2b:22:a6:58:c6:8e:43:3f:54:01:c8:ea:39:05:c5:7d:12:84:
45:27:60:b8:43:26:a8:e3:4b:81:6c:12:e5:6b:b9:29:a0:5c:
b7:e4:b8:64:eb:03:d0:d7:78:36:54:36:44:05:33:ba:40:d8:
cc:b6:b3:14:d5:29:6c:97:e0:12:7b:a9:56:69:5b:c3:70:84:
e0:10:03:41:b6:67:ad:91:f1:6c:f0:29:da:0d:9f:c0:9e:99:
10:fa:ea:63:08:d0:cb:74:82:09:da:04:3e:13:f0:b2:c8:1a:
ed:eb:98:5d:b5:b3:09:a6:d3:d1:82:05:98:af:84:8c:05:bc:
a3:d8:3f:ef:99:d5:54:31:3b:38:f8:72:bf:a8:e7:fe:f1:1c:
34:75:66:1b:bf:48:64:ae:f5:8b:91:fa:14:24:d0:c0:6f:0d:
84:5a:4f:ca:9b:85:51:e7:fc:14:20:34:85:e1:67:f0:af:7d:
15:1b:28:0b:f9:91:0f:ab:49:d2:5b:57:13:04:b5:7b:dd:f5:
59:c6:02:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:49 2023 by rpki-client on console-fra.rpki-client.org