Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/w5dzhf83JKHEkJBsoLkp-KKZnq8.roa
File: w5dzhf83JKHEkJBsoLkp-KKZnq8.roa (raw, json)
Hash identifier: K2wF6rIo2oFjSbDRbp6ja/mu/fIDop0fQnbgzzNDUwI=
Subject key identifier: C3:97:73:85:FF:37:24:A1:C4:90:90:6C:A0:B9:29:F8:A2:99:9E:AF
Certificate issuer: /CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Certificate serial: 7F82
Authority key identifier: FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/w5dzhf83JKHEkJBsoLkp-KKZnq8.roa
Signing time: Thu 26 May 2022 12:21:13 +0000
ROA not before: Thu 26 May 2022 12:21:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20860
IP address blocks: 149.255.96.0/20 maxlen: 24
2a03:ca80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32642 (0x7f82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Validity
Not Before: May 26 12:21:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3977385ff3724a1c490906ca0b929f8a2999eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:99:0c:11:df:d9:43:0d:86:7f:7c:80:de:78:
0a:85:45:d2:ba:32:61:4c:b8:0e:78:c7:5c:ff:5f:
45:c0:a7:eb:a8:38:7a:3a:e3:cc:03:f2:23:87:fa:
9c:46:24:be:0b:14:c4:88:51:cf:d4:42:45:d9:0c:
d2:f6:4b:21:35:88:d4:15:8c:4e:0a:30:40:31:74:
a2:af:b2:f3:a4:2c:3a:81:69:cd:bf:74:60:d2:95:
05:b6:85:96:a7:fb:e3:32:76:7f:e2:46:b6:b9:c2:
61:5d:1b:ec:71:a8:5f:9e:6e:d2:c5:f9:bc:68:9f:
9c:69:71:8f:d3:4b:50:57:37:1f:c2:d3:38:f9:8a:
0a:1c:e1:05:a4:8e:e0:6a:40:4c:d0:33:22:75:da:
fa:e1:a0:75:91:70:76:c0:28:05:29:58:ab:05:7d:
e0:29:85:cc:41:71:c5:96:ee:d7:1c:f4:99:77:b9:
e9:79:8d:33:ed:6a:d7:5b:d7:f6:e4:15:38:d5:e5:
37:c8:58:e4:ae:99:7e:c8:ea:5e:c7:2b:7a:f0:20:
ed:ee:c1:6f:0e:7c:cd:8d:10:ba:51:e3:a5:26:aa:
88:71:63:c5:ee:c1:1e:fe:14:bd:90:a0:5d:76:20:
3c:ad:36:51:a9:b7:8d:1c:05:30:6b:09:65:e7:68:
0c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:97:73:85:FF:37:24:A1:C4:90:90:6C:A0:B9:29:F8:A2:99:9E:AF
X509v3 Authority Key Identifier:
keyid:FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/w5dzhf83JKHEkJBsoLkp-KKZnq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.255.96.0/20
IPv6:
2a03:ca80::/29
Signature Algorithm: sha256WithRSAEncryption
51:01:ea:b0:95:40:63:61:73:4d:9c:0b:7a:74:7f:5c:1e:34:
ca:f2:9b:44:38:56:52:4a:93:98:ab:60:4e:ca:dd:7a:00:40:
62:c2:96:d1:c4:f4:3e:7f:ff:5f:95:58:20:20:d4:a6:4e:09:
b4:d3:0c:42:d9:b3:8c:a4:3d:aa:27:85:7c:12:81:d5:0b:29:
9e:a6:38:53:dd:9e:19:72:e5:ee:e9:0c:3b:50:6e:29:4f:41:
2a:97:7a:3c:ca:a6:74:04:28:be:a2:e7:08:69:31:fc:da:95:
a2:79:1f:40:d4:38:9e:a5:da:bc:b2:59:a0:cd:54:5e:b9:23:
8d:a5:16:a6:5e:3a:11:38:8f:23:85:cc:20:ab:e9:05:ec:5f:
d6:c1:aa:f3:6d:02:ee:c5:39:ae:e4:a0:06:e1:1b:04:e2:a3:
5d:a1:f5:88:24:4c:eb:ee:91:cf:44:b5:6b:bb:79:14:9a:5a:
bd:a5:54:8a:56:06:92:64:91:78:5e:9c:c1:5d:8d:3c:94:dd:
82:83:dc:88:9a:ca:d1:34:e2:a0:7c:6e:4e:9c:47:eb:a7:0b:
48:70:18:d0:eb:53:1e:58:09:25:3f:d9:0a:14:5f:43:7d:72:
ce:c7:c3:04:f3:b6:23:5a:12:4a:fc:cb:f1:7e:e2:74:dd:6e:
67:08:56:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:05 2024 by rpki-client on console-fra.rpki-client.org