Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/rFz_PeSSEviYTC3WaitItWs6vRE.roa
File: rFz_PeSSEviYTC3WaitItWs6vRE.roa (raw, json)
Hash identifier: zwp/gjCC/WHk/uh+BiK3jay23PhyBRkEwlBMjZ4PQik=
Subject key identifier: AC:5C:FF:3D:E4:92:12:F8:98:4C:2D:D6:6A:2B:48:B5:6B:3A:BD:11
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 051EA658
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/rFz_PeSSEviYTC3WaitItWs6vRE.roa
Signing time: Tue 17 May 2022 15:14:06 +0000
ROA not before: Tue 17 May 2022 15:14:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197476
IP address blocks: 5.157.176.0/21 maxlen: 21
5.157.184.0/21 maxlen: 21
37.35.56.0/21 maxlen: 21
178.157.104.0/22 maxlen: 22
188.74.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85894744 (0x51ea658)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: May 17 15:14:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac5cff3de49212f8984c2dd66a2b48b56b3abd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:82:0a:c0:37:e3:25:b1:91:c1:56:93:f4:aa:
d0:1d:6c:72:b1:d2:2c:d4:ec:b4:e2:4e:f1:d6:53:
2d:ae:2e:96:62:a5:dd:52:a0:ff:a7:a3:9f:dd:f7:
63:2c:a9:ff:66:ec:18:42:f7:79:8b:f2:4b:dd:66:
1d:6c:37:47:be:7e:e7:cb:89:e9:7b:9d:74:c7:77:
2d:12:9a:cf:81:53:b6:f2:81:75:a8:c3:c7:e0:fd:
40:25:35:25:38:c5:6a:b8:74:78:4b:d6:2e:86:d3:
8f:13:d6:f4:f3:46:3e:ef:13:90:c6:72:d2:d0:ab:
fe:72:1f:7e:37:72:4a:78:0e:7a:b7:16:9d:46:2c:
3e:90:81:69:19:ce:76:02:e8:e1:3b:c2:5a:99:9a:
76:50:ea:e9:bf:4a:8e:18:e2:c2:10:da:d6:70:c8:
fa:00:b6:5c:9b:a4:70:0c:a4:58:cc:1a:ac:b4:34:
81:8a:cd:72:94:91:77:60:e4:20:44:65:46:ed:45:
0b:d6:19:70:da:0a:98:08:68:b6:c7:0e:d6:12:83:
8e:99:fa:62:69:fb:32:70:09:45:04:96:b5:4c:9f:
54:cc:10:fa:75:20:c7:5e:72:07:1c:b1:f7:bc:30:
a8:e0:c7:5a:7e:e6:15:cd:c2:c0:98:fb:08:3d:6f:
e3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5C:FF:3D:E4:92:12:F8:98:4C:2D:D6:6A:2B:48:B5:6B:3A:BD:11
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/rFz_PeSSEviYTC3WaitItWs6vRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.157.176.0/20
37.35.56.0/21
178.157.104.0/22
188.74.176.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:fd:f8:0e:4c:47:43:df:36:18:3c:e9:f5:de:a9:49:73:dc:
db:22:f6:f3:d3:07:a3:42:0c:4b:3c:fe:73:f7:8f:5a:7b:93:
ae:1c:fa:6a:ac:09:59:e4:32:67:db:1a:49:b7:24:29:e0:ce:
be:2d:f0:61:87:52:c5:3a:01:98:e8:07:f0:83:f7:24:6d:4f:
d7:c0:45:b2:27:1d:fe:92:59:ff:16:a3:ac:93:4a:a4:5e:af:
1d:19:01:f7:d1:c8:bb:73:fa:52:70:f8:21:6f:31:ef:39:85:
17:33:4d:07:ce:9c:f4:62:96:6e:9f:dd:7c:ce:3c:5d:33:e6:
35:91:7c:08:bd:9a:de:89:26:8c:a9:6b:44:ca:fe:f3:b0:e4:
fd:c6:15:fc:54:c9:fc:4c:bb:e6:13:0f:67:29:3f:0a:b1:2e:
4b:0c:5f:01:b8:30:13:04:de:f3:aa:2b:e6:47:16:53:b9:81:
92:59:c2:f0:a8:64:8e:75:ae:6c:e9:b1:56:6f:51:8d:68:b6:
0d:e7:3c:d7:c2:f5:be:56:ca:e2:b4:53:01:34:72:fe:f9:08:
27:20:8c:2f:ad:34:93:0d:b7:af:d6:bd:02:78:4f:19:79:b2:
7b:80:f5:1c:38:c4:5c:a2:7a:4b:c4:f1:ac:fc:2b:4b:c4:cf:
15:83:4f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:14 2023 by rpki-client on console-ams.rpki-client.org