Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/eS-K4HRT5jbnTc3VVcWJU9rkPEU.roa
File: eS-K4HRT5jbnTc3VVcWJU9rkPEU.roa (raw, json)
Hash identifier: VouzU2UvAN1h/gCL/yo6gz6n5PiKSYczLgdV4AX+Es8=
Subject key identifier: 79:2F:8A:E0:74:53:E6:36:E7:4D:CD:D5:55:C5:89:53:DA:E4:3C:45
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 06EE6E05
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/eS-K4HRT5jbnTc3VVcWJU9rkPEU.roa
Signing time: Sat 01 Jan 2022 13:02:52 +0000
ROA not before: Sat 01 Jan 2022 13:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47823
IP address blocks: 185.94.196.0/22 maxlen: 22
193.219.101.0/24 maxlen: 24
2.58.152.0/22 maxlen: 22
193.219.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116289029 (0x6ee6e05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Jan 1 13:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=792f8ae07453e636e74dcdd555c58953dae43c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:93:f0:fe:31:5d:3e:76:e2:b7:3e:3d:6d:74:
1f:ac:30:4c:22:e9:ee:2f:56:9b:f0:53:92:4a:56:
1a:7b:bc:90:e2:3e:85:e9:3d:39:d2:3b:f2:95:bc:
2a:40:67:2b:8b:b7:9e:ff:75:1a:33:b0:c8:00:7b:
67:84:3a:37:5d:4b:88:21:67:61:6b:20:c3:21:96:
8e:88:c8:85:d6:7a:d0:7c:0b:1f:b7:3b:bb:b2:30:
f9:d9:8f:b7:5c:ce:a4:d3:38:5c:f7:a0:88:dd:03:
3a:e5:e4:55:75:b4:15:52:d4:b6:31:ac:43:6a:f2:
b3:58:0a:8b:fe:54:6d:25:97:bd:50:8f:36:22:1a:
d7:6d:15:4a:4c:09:de:b8:5d:d0:c4:12:5d:71:72:
41:90:f4:d7:5c:c6:c6:b1:7c:33:74:95:d1:9f:b0:
a5:d6:ba:e9:26:c4:8e:2f:78:26:b0:c1:8f:60:a8:
f6:f6:b4:eb:2d:5a:3e:f8:d1:b3:95:39:a3:2c:4d:
8c:66:49:f6:59:7e:83:39:8f:60:30:95:c6:e1:e1:
be:b0:88:ed:78:76:81:8f:5d:7b:10:7c:b5:1a:ba:
4f:eb:2a:bc:5e:13:e7:cb:a8:44:68:80:87:e7:bb:
36:1a:ba:2d:3d:48:0c:8e:12:ec:07:83:9c:22:eb:
c5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2F:8A:E0:74:53:E6:36:E7:4D:CD:D5:55:C5:89:53:DA:E4:3C:45
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/eS-K4HRT5jbnTc3VVcWJU9rkPEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.152.0/22
185.94.196.0/22
193.219.101.0/24
193.219.121.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:57:ae:ad:83:ac:19:f8:6f:59:d4:22:85:9d:1a:5f:43:0a:
27:e0:b4:d8:57:f4:a8:fe:b6:41:10:43:fa:f5:32:e2:bd:3f:
8b:9d:82:c1:31:48:4e:8f:33:4d:ea:f6:f9:ad:06:32:42:3a:
fe:89:63:bd:6c:ac:99:c3:ab:28:fd:fe:21:27:cd:19:8b:79:
fa:9f:f7:30:db:e6:d6:72:2c:74:5f:3f:74:1d:37:23:73:a7:
1a:68:41:10:0c:79:7f:52:6a:2e:04:67:a0:ff:a6:82:16:20:
42:68:cf:13:ce:e7:ff:d1:83:ff:ed:10:e4:a2:c1:3b:3b:b4:
a8:88:21:28:aa:92:9c:8e:e9:08:26:03:81:3d:fd:1b:7c:75:
e9:a7:7a:11:85:54:99:2b:de:f5:0d:91:55:ba:3e:b6:e9:46:
dd:c5:2a:5b:dd:27:5f:fb:77:ff:86:f7:12:20:0f:ad:61:38:
d4:6a:00:e4:68:a4:41:0f:d0:04:b8:ff:77:0e:76:98:fd:43:
72:32:74:44:8e:2c:20:4f:cf:b0:3d:5d:5b:ba:67:58:32:12:
2c:41:41:a2:fa:be:f1:6a:6c:f1:a2:2d:a4:50:7c:75:9f:77:
cd:3d:b0:35:8a:b1:d3:3f:b1:e4:e9:5a:e3:49:1d:01:f4:49:
89:c9:31:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:08 2024 by rpki-client on console-ams.rpki-client.org