Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/zGEYR3ueMsVHWpP-4rrN3-lEn8E.roa
File: zGEYR3ueMsVHWpP-4rrN3-lEn8E.roa (raw, json)
Hash identifier: I15syJvD8cJJ53yoUJC92wjzPKT/YJ5He+1lvF/xyv8=
Subject key identifier: CC:61:18:47:7B:9E:32:C5:47:5A:93:FE:E2:BA:CD:DF:E9:44:9F:C1
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 096948A2
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/zGEYR3ueMsVHWpP-4rrN3-lEn8E.roa
Signing time: Wed 30 Mar 2022 16:49:57 +0000
ROA not before: Wed 30 Mar 2022 16:49:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41327
IP address blocks: 5.183.110.0/24 maxlen: 24
5.183.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157894818 (0x96948a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Mar 30 16:49:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc6118477b9e32c5475a93fee2bacddfe9449fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b9:d8:bc:d3:91:6c:86:b7:05:c3:c4:14:32:
9c:9e:fc:05:32:74:a3:a0:66:4a:fd:4d:ec:1f:96:
b6:ec:7c:fa:be:da:1a:5f:29:a1:53:f6:1d:83:54:
cd:aa:fd:c3:c3:f0:f1:75:54:d8:3f:c4:b8:46:32:
59:5a:b9:de:15:39:4f:60:5b:56:a5:0d:66:ff:c0:
a2:22:69:4c:a0:a5:3c:3c:72:54:fa:87:43:05:e3:
ea:af:d4:08:34:18:6c:a0:d3:4a:bc:1a:b8:21:29:
a3:d2:c4:53:fd:bd:93:b4:e5:f4:03:22:f5:a2:0b:
19:6a:44:81:9e:33:f9:a7:81:9a:4c:0a:d0:f5:de:
3d:96:3a:14:a7:f2:d4:75:83:7b:b4:8e:ab:f5:fc:
22:8a:0f:d4:56:9c:9e:f1:9b:92:81:1f:9c:f4:bb:
02:a2:02:65:cb:75:b0:bc:40:df:e1:96:a6:d2:31:
60:54:f6:e5:77:62:89:ef:7e:09:96:61:24:47:7f:
af:51:fc:4d:95:56:36:1b:24:2f:dc:a3:4a:db:fe:
1b:aa:73:fb:e3:49:b5:42:cd:d0:a9:3b:c9:c8:33:
9a:68:e9:18:23:0f:d0:69:75:b2:53:29:f8:c9:da:
f8:96:b9:6c:82:e6:6d:9b:6a:5c:97:d3:cc:94:dd:
7c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:61:18:47:7B:9E:32:C5:47:5A:93:FE:E2:BA:CD:DF:E9:44:9F:C1
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/zGEYR3ueMsVHWpP-4rrN3-lEn8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.109.0-5.183.110.255
Signature Algorithm: sha256WithRSAEncryption
b3:92:23:a8:eb:89:01:e7:4f:58:92:83:72:76:68:3b:a5:c0:
7d:26:4a:e5:e1:3b:3a:23:a8:ed:05:bb:22:6a:3e:e5:5a:e8:
04:85:6e:17:ad:b8:e8:66:3e:24:a8:52:93:e4:3f:e7:05:9f:
12:60:84:54:d6:a6:5b:aa:98:10:ae:52:cf:e4:71:3a:7f:de:
df:62:7a:99:d1:64:d6:48:e4:fc:2f:b5:95:1a:7f:a4:56:74:
30:a4:4e:48:d1:66:c4:2c:9b:b4:7c:e4:20:03:d3:e0:38:db:
74:b5:82:4d:02:bd:83:47:21:ce:5f:1c:c3:c3:5c:6d:76:9c:
86:df:e1:5a:d4:86:77:71:24:b0:ff:a8:06:3c:cd:20:72:52:
a1:f2:98:ad:ba:90:cc:fe:46:5c:0c:ba:43:2e:48:ab:ec:0f:
81:d5:12:54:a1:19:26:b2:05:29:b3:e6:0b:c9:c3:3a:64:06:
98:fe:0c:d3:27:18:03:63:0c:dc:63:a5:98:6b:13:38:8b:04:
7b:f5:89:52:9f:43:0a:06:e6:aa:e1:41:f3:97:5e:53:55:0f:
a7:f0:2d:77:3f:94:4f:e7:13:e5:bf:53:45:59:d2:19:f6:92:
11:96:95:d2:61:db:bb:e1:41:c9:9d:34:a8:06:cf:24:f1:12:
23:57:c9:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-fra.rpki-client.org