Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/DMx8lXHQtqMvZFoJs0QCBcqlHIU.roa
File: DMx8lXHQtqMvZFoJs0QCBcqlHIU.roa (raw, json)
Hash identifier: 82EM4vCo+fVbVIRJs80n/P7lukWc8a4KyuTWL/HJ4Vk=
Subject key identifier: 0C:CC:7C:95:71:D0:B6:A3:2F:64:5A:09:B3:44:02:05:CA:A5:1C:85
Certificate issuer: /CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Certificate serial: 454A8208
Authority key identifier: 5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/DMx8lXHQtqMvZFoJs0QCBcqlHIU.roa
Signing time: Sat 02 Jul 2022 05:14:25 +0000
ROA not before: Sat 02 Jul 2022 05:14:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60077
IP address blocks: 193.151.128.0/20 maxlen: 32
193.151.128.0/19 maxlen: 32
193.151.144.0/20 maxlen: 32
193.151.159.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1162510856 (0x454a8208)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b52634a2eb03f8565b5e33dc2b9f49041f7cfb0
Validity
Not Before: Jul 2 05:14:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ccc7c9571d0b6a32f645a09b3440205caa51c85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6a:9d:e3:a3:08:ce:87:78:95:08:9d:50:b5:
12:7f:0d:ea:dd:99:dd:ca:6b:c8:33:ea:40:aa:0c:
62:3a:69:db:34:d4:11:79:b1:31:2b:8e:86:94:50:
dc:a1:ff:03:e7:c0:ad:46:97:90:6a:fd:44:f7:04:
b7:fd:69:91:a6:8d:84:6c:10:15:bb:6a:67:ba:a7:
2e:8a:2a:76:73:19:72:b4:5d:2f:e8:82:73:9c:52:
8e:99:fa:ba:48:c3:e5:2f:81:42:d9:ff:65:41:45:
9d:19:58:ad:7d:82:0a:30:9f:8c:d9:0b:f8:21:4c:
eb:df:bd:c7:0e:d3:a2:09:0a:25:44:be:72:4e:15:
7c:78:d9:05:88:ba:53:34:39:56:c3:ce:0c:a0:73:
3d:f6:be:a1:a2:ce:7e:40:9b:86:9c:c9:88:b0:ec:
d6:0e:4e:0a:46:a6:6b:36:d1:ac:af:1e:1b:d4:58:
b3:8a:d0:70:2f:3e:2e:ec:57:43:9e:57:85:04:5f:
da:75:3b:f7:59:b2:67:d9:52:2f:2a:50:1f:9f:ef:
0a:e0:2b:ce:65:ee:89:1b:9a:01:80:56:cf:3b:11:
a4:0b:fc:e7:23:9a:52:08:29:5b:e0:c0:1d:56:9c:
e2:00:7b:d5:a7:cb:22:70:35:8d:04:db:c6:71:83:
e6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CC:7C:95:71:D0:B6:A3:2F:64:5A:09:B3:44:02:05:CA:A5:1C:85
X509v3 Authority Key Identifier:
keyid:5B:52:63:4A:2E:B0:3F:85:65:B5:E3:3D:C2:B9:F4:90:41:F7:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W1JjSi6wP4VlteM9wrn0kEH3z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/DMx8lXHQtqMvZFoJs0QCBcqlHIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a5b44-6b18-42d3-a8d5-dc6554fd1235/1/W1JjSi6wP4VlteM9wrn0kEH3z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.128.0/19
Signature Algorithm: sha256WithRSAEncryption
63:50:fc:c8:72:17:95:e8:e0:0a:1b:ff:95:1c:69:36:19:9b:
05:6f:63:10:15:fd:1b:1d:87:2b:a3:d6:99:b4:91:23:25:88:
05:30:40:95:6a:2e:51:fa:29:fe:98:44:e1:4f:f7:0f:3d:f0:
ba:5e:ca:9f:f6:5f:7c:9b:4d:f5:db:6a:b0:86:b2:95:a8:a5:
10:db:80:7e:82:63:e5:b1:21:9a:c2:02:aa:d2:b1:2e:9a:b7:
40:32:35:9e:bf:b9:56:d4:0e:4a:7f:f7:e0:30:f6:80:e1:20:
6d:98:b9:48:37:fa:db:65:80:09:07:74:fd:42:40:3d:11:ff:
1c:73:a1:eb:90:36:c4:aa:df:99:44:d6:05:56:5b:af:40:3f:
73:6c:cb:6e:93:a7:e2:f8:4a:34:15:82:ad:6e:5d:bb:c8:67:
4b:67:dd:10:3b:61:d1:70:84:b9:bb:68:0e:4c:cc:13:9d:eb:
58:d7:9d:73:bd:a9:6d:b0:78:0b:5c:36:18:a3:72:39:be:95:
2b:d9:60:86:a9:77:4c:38:8b:f8:39:81:e1:8c:c7:4a:ed:6b:
ec:f3:9c:b0:ca:fa:07:07:83:10:5c:3c:cb:bc:f4:b4:26:d3:
bd:5e:a4:98:40:9a:7f:72:fd:cd:63:83:14:1f:c0:6b:4d:87:
f9:d9:c1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:57 2024 by rpki-client on console-ams.rpki-client.org