Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/FwG99GM8WcEYplvwyHxU0kKeQXY.roa
File: FwG99GM8WcEYplvwyHxU0kKeQXY.roa (raw, json)
Hash identifier: J/7IH5w3Ud4aCLLSozDVQ6ryLt/I8DXCb69uII1f8mI=
Subject key identifier: 17:01:BD:F4:63:3C:59:C1:18:A6:5B:F0:C8:7C:54:D2:42:9E:41:76
Certificate issuer: /CN=bfe3971a32c0692c4e342e911790662470cf31b2
Certificate serial: 045FCCE1
Authority key identifier: BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/FwG99GM8WcEYplvwyHxU0kKeQXY.roa
Signing time: Tue 08 Mar 2022 11:40:01 +0000
ROA not before: Tue 08 Mar 2022 11:40:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201814
IP address blocks: 5.181.189.0/24 maxlen: 24
5.181.188.0/22 maxlen: 22
95.214.52.0/22 maxlen: 22
185.16.36.0/22 maxlen: 22
2a03:cfc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73387233 (0x45fcce1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3971a32c0692c4e342e911790662470cf31b2
Validity
Not Before: Mar 8 11:40:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1701bdf4633c59c118a65bf0c87c54d2429e4176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:dd:4d:72:14:cc:a0:95:cc:6e:5c:7f:65:b0:
74:b6:06:93:8e:04:30:61:50:15:ab:11:69:89:9b:
95:16:a4:2e:80:c1:53:03:59:71:bf:06:57:c1:f0:
cb:0b:9a:77:cc:85:4e:34:f5:50:eb:f3:5e:e7:f0:
1c:00:35:ec:7f:a3:e7:9b:2b:f4:2b:37:51:5a:d9:
f3:d8:dd:39:df:c0:91:55:c5:72:4c:5e:b7:72:83:
11:9b:ae:d7:fb:63:84:86:08:3f:f3:df:cd:0a:5d:
4d:b5:16:b2:76:a3:a9:4e:7c:a0:12:c6:20:8d:d6:
e6:75:26:72:b9:d8:cb:6f:f0:b3:16:f5:f1:4a:7c:
e3:c3:a9:fc:24:ae:b3:a4:7c:3e:3a:74:38:4e:c5:
85:39:e1:7b:bc:9d:ec:a0:15:82:e6:5e:74:3e:6d:
5e:54:7d:41:1d:a0:e9:1b:51:de:89:cb:d3:6e:a8:
66:10:23:7f:f1:d9:c6:74:94:ee:df:bd:97:8e:12:
bf:cf:8c:f9:52:9b:16:ee:e8:ef:40:0e:b5:3c:73:
5d:0d:f4:a7:c4:e4:e7:94:e9:9b:2f:29:ff:6b:02:
68:f5:01:6e:bb:fe:71:74:80:ed:6e:88:5a:c3:5e:
c1:f5:13:cc:e4:2e:f2:ed:f7:5c:03:17:df:64:b9:
e8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:01:BD:F4:63:3C:59:C1:18:A6:5B:F0:C8:7C:54:D2:42:9E:41:76
X509v3 Authority Key Identifier:
keyid:BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/FwG99GM8WcEYplvwyHxU0kKeQXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/v-OXGjLAaSxONC6RF5BmJHDPMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.188.0/22
95.214.52.0/22
185.16.36.0/22
IPv6:
2a03:cfc0::/32
Signature Algorithm: sha256WithRSAEncryption
61:42:88:0b:fb:e0:c9:11:1b:fc:c1:32:cf:d3:be:e6:de:9f:
c5:99:f2:74:99:96:6e:d2:da:07:09:55:79:5c:4f:af:6d:29:
69:02:29:8b:2a:f5:8a:c7:c4:d1:a8:ef:a6:06:d2:b9:41:23:
fd:75:a4:00:33:29:cd:24:53:15:70:44:96:6f:e1:45:70:41:
6b:bc:5d:e5:05:ee:83:86:b9:a8:8c:64:95:63:60:d8:ab:3e:
6e:11:77:74:f8:b3:bb:16:ef:13:3c:24:e4:33:1e:1d:ae:5b:
b0:da:6a:f3:1d:1e:a9:5c:52:b4:e7:99:18:59:cf:95:2c:b8:
63:af:48:82:ba:6d:b0:4a:fa:d2:d5:2b:c4:b9:77:73:9a:8d:
6e:4b:b3:2a:89:bd:4e:d2:d1:e5:47:03:ac:f4:ef:a7:e8:eb:
6c:b6:7a:1c:73:08:a7:78:e7:61:fb:fe:50:7b:c9:b6:6b:19:
47:09:a8:83:6e:3c:9b:d3:28:10:59:31:f6:71:77:b9:21:ef:
cb:e0:a7:7c:27:a6:5c:03:60:ac:92:90:28:33:ed:24:97:59:
3c:e3:03:a9:52:af:68:66:14:21:58:2f:0d:97:d8:8d:3e:e5:
97:ee:c4:b6:36:35:71:9e:0e:90:f7:5e:e3:15:6e:1b:d8:2e:
f0:22:4e:9e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:25 2024 by rpki-client on console-fra.rpki-client.org