Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/L4aPp5a0XN7kSfL34IiB0gSHck4.roa
File: L4aPp5a0XN7kSfL34IiB0gSHck4.roa (raw, json)
Hash identifier: 9WYUyG2mmNY0VeXwcjvkytIJogWNEszHhkB5I3Z5vb4=
Subject key identifier: 2F:86:8F:A7:96:B4:5C:DE:E4:49:F2:F7:E0:88:81:D2:04:87:72:4E
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 064748DC
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/L4aPp5a0XN7kSfL34IiB0gSHck4.roa
Signing time: Fri 25 Feb 2022 13:02:10 +0000
ROA not before: Fri 25 Feb 2022 13:02:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52035
IP address blocks: 158.41.24.0/21 maxlen: 24
188.64.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105335004 (0x64748dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Feb 25 13:02:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f868fa796b45cdee449f2f7e08881d20487724e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d6:58:2e:89:e7:a6:0a:81:4f:de:73:87:d7:
c7:95:04:6b:66:10:6d:86:4d:4b:a9:02:0a:c6:9d:
28:68:00:c7:a3:20:e4:8e:bc:12:ea:e0:f9:c7:3f:
ba:f1:a1:ca:23:4b:12:ca:dc:46:23:46:7c:36:3a:
f6:b8:70:22:6d:3c:99:99:61:8f:a1:60:bc:92:b9:
69:39:45:34:34:3c:16:a3:e3:d5:15:93:26:22:a4:
16:99:16:11:85:86:91:34:16:41:b2:6c:d3:c0:18:
9a:24:c3:9d:2c:aa:80:94:bd:17:d6:af:56:ab:dc:
7b:75:fc:d6:bc:75:35:85:f5:8c:4d:cd:58:e9:6a:
bf:bc:e3:55:4b:86:26:32:de:0c:c8:6b:13:8b:06:
45:49:aa:33:df:87:49:af:45:41:f7:6c:d4:ea:e3:
c4:d9:73:2e:d4:3b:9c:fe:f1:4c:95:58:69:e1:69:
f6:08:ad:94:38:ba:10:fa:59:a8:e0:d1:4f:0a:10:
f6:15:68:e9:22:98:7f:da:7a:24:59:30:e1:36:7d:
95:42:3b:06:7f:08:85:25:c2:f1:5f:85:cc:29:20:
e1:d9:71:54:58:4f:be:78:d3:ee:a2:ea:69:25:60:
ae:dc:bf:6c:77:9e:97:8c:60:23:da:3c:f8:71:f4:
bf:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:86:8F:A7:96:B4:5C:DE:E4:49:F2:F7:E0:88:81:D2:04:87:72:4E
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/L4aPp5a0XN7kSfL34IiB0gSHck4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.41.24.0/21
188.64.104.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:a1:a2:c3:3e:ca:a0:96:a1:43:c9:27:b6:b0:47:bc:e9:f0:
d6:fa:75:c4:02:ce:4e:26:9c:e7:3e:6b:f2:08:38:7d:b8:84:
69:09:5e:7c:17:7e:d7:ca:1c:66:7f:b5:d2:82:f0:3a:b4:e6:
ac:b4:74:fe:82:e3:95:03:de:bc:53:7c:99:3b:41:e0:80:e1:
2d:76:c2:4e:17:fa:6b:82:d4:3a:92:b5:a2:38:ad:34:f9:ee:
fe:9c:9e:e2:6d:c4:42:11:a9:83:37:03:8b:d7:43:e4:6e:8e:
0a:16:28:0d:7f:2e:53:ab:0e:70:30:fc:4e:0a:4b:99:8b:6b:
73:a7:7c:a1:1f:53:c5:f1:28:60:e7:1b:ed:04:83:1d:94:3c:
63:a8:07:08:ee:35:49:b8:52:37:a3:ef:49:04:f3:9c:f8:7b:
4b:d5:96:db:2d:95:d3:37:9f:9b:0a:74:34:c7:2d:7c:6d:33:
e3:2f:ad:3c:16:a4:8d:4a:9f:81:92:86:d6:47:a2:fd:96:9d:
0f:c6:99:c3:c5:a4:0c:5f:45:d2:44:11:fa:ce:32:39:fb:eb:
57:16:b3:2d:f6:3c:70:a9:5b:82:ce:21:96:3a:60:37:a5:90:
94:58:ce:f4:f0:7a:a8:00:36:54:9f:8e:dd:b4:67:a2:43:73:
6a:c4:93:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org