Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/lQg6w7OceHNqYNWlL_ZTyhV4urg.roa
File: lQg6w7OceHNqYNWlL_ZTyhV4urg.roa (raw, json)
Hash identifier: 1g5t2nGz+HOPX8ePDSoA6mD4Rc1DB6KwakeFa7N5WgE=
Subject key identifier: 95:08:3A:C3:B3:9C:78:73:6A:60:D5:A5:2F:F6:53:CA:15:78:BA:B8
Certificate issuer: /CN=015b6d1596ac0501a71a393447051a62ff1dda16
Certificate serial: 01BFD6F8
Authority key identifier: 01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/lQg6w7OceHNqYNWlL_ZTyhV4urg.roa
Signing time: Sat 01 Jan 2022 13:06:51 +0000
ROA not before: Sat 01 Jan 2022 13:06:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47626
IP address blocks: 193.7.216.0/22 maxlen: 22
5.180.240.0/22 maxlen: 22
78.24.100.0/22 maxlen: 22
188.93.64.0/22 maxlen: 22
2a05:9c00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29349624 (0x1bfd6f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=015b6d1596ac0501a71a393447051a62ff1dda16
Validity
Not Before: Jan 1 13:06:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95083ac3b39c78736a60d5a52ff653ca1578bab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:19:03:5f:f0:c4:f9:e2:3f:06:d9:4a:25:37:
96:bf:87:50:76:a2:5a:17:b6:31:08:2e:91:6f:df:
24:c5:77:7f:72:cd:92:c9:5d:6f:70:1b:24:0f:07:
3a:86:51:25:44:f6:d9:43:0c:3e:1e:a9:9b:26:05:
03:fe:0a:9a:aa:b8:07:3a:f0:b1:ef:a7:17:6e:23:
ed:00:ed:23:35:e2:fd:fd:66:25:47:3f:d3:64:41:
fc:51:bd:90:28:85:f4:69:ea:a5:10:5c:84:1b:5f:
a2:0c:6b:a0:37:2f:d6:ff:7c:06:f8:f3:a4:4b:a6:
c0:3b:d8:e4:ee:86:2f:8c:93:6e:4d:22:85:50:c8:
35:79:92:d1:56:0f:ed:01:71:0f:f0:30:37:f4:24:
fc:17:f5:42:0d:82:d3:cc:6e:5a:34:fd:8f:60:3a:
25:e6:0d:05:99:db:e6:7b:10:21:e2:13:c5:07:8c:
65:75:ea:28:79:80:73:2e:e3:da:79:dc:98:d7:ea:
4e:21:ce:1c:c1:bf:bc:10:16:e2:6f:2f:82:1c:f4:
73:56:6f:97:0c:52:3d:40:58:05:a9:19:e8:a1:12:
fc:ad:e9:a6:9f:70:53:de:86:1c:ee:fb:6e:a6:d2:
b3:7e:ab:d2:3e:18:4c:dd:a4:a3:8c:b1:62:0d:8f:
03:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:08:3A:C3:B3:9C:78:73:6A:60:D5:A5:2F:F6:53:CA:15:78:BA:B8
X509v3 Authority Key Identifier:
keyid:01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/lQg6w7OceHNqYNWlL_ZTyhV4urg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.240.0/22
78.24.100.0/22
188.93.64.0/22
193.7.216.0/22
IPv6:
2a05:9c00::/29
Signature Algorithm: sha256WithRSAEncryption
1d:b7:37:a2:e6:a3:73:d4:b8:7a:20:9f:97:5e:e0:31:b5:16:
8e:59:35:67:21:f9:df:88:ae:71:1a:b5:6c:98:bd:4f:93:45:
29:54:ed:88:2c:cc:27:fa:89:a6:16:42:27:4c:01:5f:8c:8d:
79:e5:a4:ee:e4:33:b4:fc:b8:54:de:2d:e3:49:cd:4a:31:bf:
ac:06:29:f8:9e:41:99:ba:f3:b6:36:b0:27:52:23:25:79:a7:
e6:13:1b:c9:f5:0e:03:14:79:d7:bf:1f:07:06:96:8c:e2:74:
d0:3e:52:24:60:0a:cd:08:1c:cc:0e:e8:bc:62:90:40:a1:7f:
fa:47:18:90:1a:b2:dd:70:c7:58:a9:02:53:ea:38:8a:d8:50:
e2:66:87:bd:13:f7:13:d9:f3:19:2a:55:1f:f5:25:30:c5:a5:
7e:b2:e7:c9:7e:be:78:8e:9d:c5:1c:7d:8c:ff:21:fb:03:0b:
02:1f:a2:c1:13:ae:b4:64:e8:6b:dd:dd:1d:34:76:36:31:73:
68:60:66:93:2d:ff:9b:fc:88:ea:fd:24:14:ae:07:ab:55:82:
11:d7:4d:42:51:65:8c:0a:c7:9c:5d:c2:8a:37:4e:28:b7:b7:
ee:5b:16:4b:3f:4b:f1:5b:98:bf:05:95:12:16:86:41:e8:9c:
a7:44:19:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:47 2023 by rpki-client on console-ams.rpki-client.org