Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/4498aa-cc27-4316-ae87-d472d9afe134/1/5BomDaZJVQMuuDUs2xEc8iUzQvs.roa
File: 5BomDaZJVQMuuDUs2xEc8iUzQvs.roa (raw, json)
Hash identifier: qmrYm9R0oHcqZMC34HO2iQAarckL8VGH0bj/BuRV+cU=
Subject key identifier: E4:1A:26:0D:A6:49:55:03:2E:B8:35:2C:DB:11:1C:F2:25:33:42:FB
Certificate issuer: /CN=b915af59d24f59a60d97c1c88ab979a14c580ff4
Certificate serial: 1751DFAC
Authority key identifier: B9:15:AF:59:D2:4F:59:A6:0D:97:C1:C8:8A:B9:79:A1:4C:58:0F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRWvWdJPWaYNl8HIirl5oUxYD_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/4498aa-cc27-4316-ae87-d472d9afe134/1/5BomDaZJVQMuuDUs2xEc8iUzQvs.roa
Signing time: Sat 01 Jan 2022 09:03:20 +0000
ROA not before: Sat 01 Jan 2022 09:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47755
IP address blocks: 185.68.24.0/22 maxlen: 24
91.232.38.0/24 maxlen: 24
2a05:1540::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 391241644 (0x1751dfac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b915af59d24f59a60d97c1c88ab979a14c580ff4
Validity
Not Before: Jan 1 09:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e41a260da64955032eb8352cdb111cf2253342fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ae:f7:99:72:78:5e:76:fb:0e:98:24:7b:d8:
13:ff:b6:28:52:25:fb:ff:2a:5e:6e:da:86:96:2a:
35:8d:62:48:13:e5:87:08:22:d0:88:73:13:68:56:
9c:8e:2c:6e:d5:a4:a7:93:09:58:ec:a4:e0:5f:d9:
eb:f2:55:e7:6c:ee:1e:0f:e9:53:8d:02:74:67:ed:
c9:db:14:ab:6c:c2:bf:4c:ea:ed:10:26:61:db:a5:
3a:d4:ee:9b:b6:36:86:ea:3f:c7:3c:41:40:17:17:
bd:5b:32:51:7d:09:c7:5a:09:47:f4:0b:9b:d3:13:
48:34:f6:58:fd:ed:60:f5:b6:32:4f:c1:06:0a:6e:
d2:18:91:00:6d:b4:b2:22:61:2f:59:1e:a3:0b:d4:
57:ed:40:9a:13:a9:1a:4b:b0:da:93:01:e2:13:96:
aa:96:32:2c:c9:6a:90:78:13:a1:05:a3:fa:d5:ee:
d4:0f:be:8e:58:3a:08:fb:30:21:90:f1:7b:3d:b9:
68:b3:5c:b4:d8:e0:bc:be:b9:e1:a8:6a:d9:03:2b:
26:5d:8b:7f:e1:15:0c:60:3f:85:fd:ee:7b:4f:2c:
de:90:aa:ca:d3:8e:3a:84:c1:d1:99:df:7d:32:12:
82:c8:69:62:7f:63:70:6f:c4:43:78:c6:39:e6:72:
a3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1A:26:0D:A6:49:55:03:2E:B8:35:2C:DB:11:1C:F2:25:33:42:FB
X509v3 Authority Key Identifier:
keyid:B9:15:AF:59:D2:4F:59:A6:0D:97:C1:C8:8A:B9:79:A1:4C:58:0F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRWvWdJPWaYNl8HIirl5oUxYD_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/4498aa-cc27-4316-ae87-d472d9afe134/1/5BomDaZJVQMuuDUs2xEc8iUzQvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/4498aa-cc27-4316-ae87-d472d9afe134/1/uRWvWdJPWaYNl8HIirl5oUxYD_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.38.0/24
185.68.24.0/22
IPv6:
2a05:1540::/29
Signature Algorithm: sha256WithRSAEncryption
0c:7a:d9:81:5e:e5:a7:a7:30:93:74:1a:c3:30:db:13:be:85:
ea:e9:cb:9f:d7:23:9e:d1:07:37:1e:70:c9:86:aa:62:63:c8:
72:77:c1:00:17:b4:62:c2:64:78:6d:77:3e:bf:30:2b:28:ed:
a4:52:5b:df:f7:10:44:40:a7:f3:9d:b6:8f:4f:72:a6:fd:24:
14:f7:83:95:fa:75:16:06:b7:5c:cb:d5:a1:4e:d4:a0:58:b7:
bf:9b:1b:f2:91:e5:18:8b:70:48:bd:5a:42:cc:d5:2e:4b:d3:
10:8b:fa:4e:03:8e:f4:3e:23:93:c9:97:f2:05:db:6d:d3:e4:
f0:0d:70:39:d6:f0:fc:e2:b9:44:2e:fc:0f:75:f9:31:1c:71:
1a:8a:d8:1c:00:46:25:2a:36:93:f4:ea:6c:3f:86:fd:2b:1b:
8d:31:cd:82:bd:65:7d:24:05:9a:09:4e:eb:e6:2e:04:46:cd:
8f:9c:55:35:7f:9e:8d:36:58:a1:42:20:09:11:bd:79:9c:99:
ee:ff:6b:e1:dc:df:b0:0c:8b:4d:31:08:e5:2c:ed:75:f2:e4:
b2:d9:96:c4:cc:f2:25:c9:55:f5:1e:56:c7:a5:61:49:6f:3f:
f4:20:93:7d:6c:91:ab:fe:c7:80:4e:e5:ce:37:a1:d3:9e:c3:
67:e8:7d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:46 2024 by rpki-client on console-fra.rpki-client.org