Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/s5UCITrpT4FGmiZHQh4CnI2OJRg.roa
File: s5UCITrpT4FGmiZHQh4CnI2OJRg.roa (raw, json)
Hash identifier: sB6I6bjr7PI0+P0GtNKDMExaFGjalQV6pW92KAdy9Ys=
Subject key identifier: B3:95:02:21:3A:E9:4F:81:46:9A:26:47:42:1E:02:9C:8D:8E:25:18
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 018D8D
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/s5UCITrpT4FGmiZHQh4CnI2OJRg.roa
Signing time: Thu 19 May 2022 11:56:29 +0000
ROA not before: Thu 19 May 2022 11:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 145.224.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101773 (0x18d8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: May 19 11:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b39502213ae94f81469a2647421e029c8d8e2518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:90:d5:97:92:c7:d4:65:be:b6:34:f3:1d:
b0:f0:02:51:a0:1f:0b:fa:e6:f3:4a:56:26:d2:64:
1e:56:cb:e6:17:35:12:7c:04:78:e0:0f:48:05:5b:
7f:f9:8c:c6:93:2d:52:0a:46:56:52:e2:7d:65:23:
b4:7d:50:d9:57:a2:a0:79:d7:18:6f:30:0c:42:50:
85:72:a3:15:9f:ff:8f:d5:2a:af:48:51:64:b8:60:
3f:ae:00:9c:a3:78:15:c6:c0:4d:aa:2b:34:46:9b:
81:33:bf:20:fd:18:a3:af:6a:57:b0:a9:e0:91:d1:
29:28:67:e4:8c:ce:a8:9d:da:d8:36:a2:a7:1c:db:
5f:89:7b:05:59:35:43:f5:d9:38:27:54:95:b5:f2:
32:4e:e3:ff:25:10:fb:fb:1f:15:7d:17:e8:d3:2c:
2a:cd:84:58:c9:eb:3a:e7:14:04:41:cf:67:4a:dc:
01:73:66:0f:6d:e5:18:15:42:09:c2:65:40:a5:b6:
7b:a6:04:58:a7:5a:b7:1f:3f:4c:e5:4f:29:93:50:
3c:7f:d0:96:9d:16:e6:e4:c0:3d:ab:f5:42:dd:33:
bd:91:ac:4c:9c:54:4f:93:4a:ac:f2:22:53:89:fa:
37:5c:80:3d:62:86:59:12:9b:ae:b5:e2:79:40:95:
77:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:95:02:21:3A:E9:4F:81:46:9A:26:47:42:1E:02:9C:8D:8E:25:18
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/s5UCITrpT4FGmiZHQh4CnI2OJRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.224.32.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:97:fc:3d:ee:b4:76:cb:bc:90:ff:e7:e6:6c:21:bc:8b:aa:
71:19:cd:2a:02:df:b4:e6:7f:24:7c:e7:08:b5:e1:5a:5b:a4:
f8:cd:dc:e2:49:54:4c:47:06:c5:4d:1f:a4:68:87:90:74:0c:
3e:71:ab:4b:4f:29:65:d8:7f:71:66:e8:79:f4:e2:7d:22:b2:
43:65:87:4c:95:0c:fa:1d:26:9b:09:6b:e0:48:2c:eb:f9:52:
48:12:21:0d:66:5c:85:50:ba:56:80:e7:57:6e:aa:e0:d7:12:
7c:c4:73:72:bd:dc:58:d6:75:69:3f:b4:1e:51:07:6e:52:9f:
20:cb:25:70:42:28:94:ae:7d:4f:95:6d:f7:72:3c:ce:0c:45:
89:f1:a8:e7:82:44:1a:76:0b:23:cc:b3:fc:44:d2:f4:d6:f6:
f5:f1:1c:d9:a9:1f:7a:96:a5:93:e6:40:dd:30:41:19:07:2e:
f4:2d:70:0b:4f:2d:a8:b6:fa:4f:57:f6:0d:9e:0a:cd:30:c4:
65:b2:7e:00:6d:7c:51:55:c2:83:a7:a9:8d:05:cf:d1:38:57:
8b:13:8b:36:57:a8:c2:b1:71:00:07:3d:60:5c:9d:a2:66:91:
84:b8:f7:e7:6d:a4:3e:ae:c5:25:84:db:11:58:f8:5c:ec:e9:
9b:e3:ba:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:10 2024 by rpki-client on console-fra.rpki-client.org