Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/XKjDEeqq3I2CdoH71GHRo6SaM6I.roa
File: XKjDEeqq3I2CdoH71GHRo6SaM6I.roa (raw, json)
Hash identifier: klO8P5ctJxjl8NjlH8OI664GYZqh5yGK7uKTTMueagQ=
Subject key identifier: 5C:A8:C3:11:EA:AA:DC:8D:82:76:81:FB:D4:61:D1:A3:A4:9A:33:A2
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 09762D26
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/XKjDEeqq3I2CdoH71GHRo6SaM6I.roa
Signing time: Wed 25 May 2022 06:22:13 +0000
ROA not before: Wed 25 May 2022 06:22:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 91.186.216.0/22 maxlen: 24
91.186.220.0/22 maxlen: 24
178.253.12.0/23 maxlen: 24
94.241.176.0/21 maxlen: 24
83.147.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158739750 (0x9762d26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 25 06:22:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ca8c311eaaadc8d827681fbd461d1a3a49a33a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:04:c8:2c:35:e2:47:57:56:06:07:4b:50:3a:
77:f1:59:06:b7:12:5c:57:7b:4b:a9:9f:e2:b6:06:
c4:dd:de:e0:0c:87:51:d6:c3:45:8b:b3:84:5e:38:
ed:f9:87:07:43:2a:f2:8d:31:d6:58:a5:73:09:a7:
20:09:25:27:1e:4e:fd:f7:70:c3:0b:a1:85:11:4e:
5e:e0:bb:d1:0a:5a:ad:b9:f3:bd:dd:70:ea:81:79:
3f:24:7d:3d:ef:38:c3:3f:7e:f9:c9:a4:64:a1:54:
3f:2e:d1:1e:28:ab:ee:a8:d1:68:6b:be:7b:86:d1:
9c:2f:2a:95:82:6a:8d:ed:01:f9:b9:81:e6:41:80:
42:64:1d:7f:66:5a:18:6a:35:d0:7f:57:26:94:67:
f0:65:6f:f6:6f:ee:1f:88:60:30:2c:a2:bc:b5:af:
fb:f3:37:e1:6c:f4:62:8e:58:54:8b:73:13:4b:34:
ea:96:16:62:5c:9d:5c:9f:c5:e0:d4:88:7e:11:2e:
e5:41:1a:64:52:b7:d5:59:4e:74:c4:b4:04:7e:e2:
4d:34:44:03:9e:e5:86:c4:5d:6d:09:7b:4b:6d:d8:
33:63:56:8d:ac:ef:53:00:dd:97:36:6d:06:d6:5d:
09:21:c3:24:68:6a:18:9c:7a:a5:18:ee:22:1c:25:
4e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:A8:C3:11:EA:AA:DC:8D:82:76:81:FB:D4:61:D1:A3:A4:9A:33:A2
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/XKjDEeqq3I2CdoH71GHRo6SaM6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.232.0/22
91.186.216.0/21
94.241.176.0/21
178.253.12.0/23
Signature Algorithm: sha256WithRSAEncryption
81:cc:fb:e4:8f:28:10:3f:d8:49:27:23:75:75:53:42:b2:f1:
e4:03:7e:19:bc:b7:40:3c:fd:88:37:b6:34:dc:78:6d:41:e0:
fd:10:4e:12:50:96:98:49:16:1b:7e:4b:7e:fd:51:90:a7:22:
6c:ec:81:ae:cb:b9:88:ff:99:02:e2:39:b6:33:de:b5:6d:ca:
c7:11:70:e8:21:85:6f:e2:9f:7f:86:43:55:bc:2d:5f:77:3f:
ee:a0:30:4a:bf:48:99:34:fb:09:33:d2:63:76:ad:60:e8:35:
5d:1a:54:4e:a3:12:9e:77:f0:99:72:34:09:66:bd:e9:bc:4e:
00:e0:4d:1a:2c:61:6b:9f:66:f4:29:6f:b5:85:0a:d7:72:6f:
09:32:d2:06:7d:35:10:1f:81:66:0f:7f:dc:e6:16:25:2b:dc:
ff:18:6f:06:2e:44:61:df:93:77:e9:37:bb:cb:4e:14:26:30:
4a:7e:a3:b0:11:61:9d:83:e8:fc:0a:63:49:bf:9f:db:3f:62:
b9:62:9c:c5:c7:3c:84:22:b6:c0:70:ba:98:ed:8d:00:e0:dd:
b1:3a:e2:84:c2:75:53:24:2c:c6:c1:43:e1:08:15:86:6d:97:
ff:43:43:dd:8a:bd:78:87:0f:12:46:07:94:5c:ad:d8:5e:56:
d3:57:20:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org