Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/5sZiCBB0Y9NrU9PN9oVnPebkEAw.roa
File: 5sZiCBB0Y9NrU9PN9oVnPebkEAw.roa (raw, json)
Hash identifier: 8+PFmdgG9fBSeVcyud24tPBxOxDx6MGwzVtXFVgkRSA=
Subject key identifier: E6:C6:62:08:10:74:63:D3:6B:53:D3:CD:F6:85:67:3D:E6:E4:10:0C
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 02E57086
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/5sZiCBB0Y9NrU9PN9oVnPebkEAw.roa
Signing time: Sat 01 Jan 2022 15:59:47 +0000
ROA not before: Sat 01 Jan 2022 15:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50340
IP address blocks: 185.156.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48590982 (0x2e57086)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jan 1 15:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6c66208107463d36b53d3cdf685673de6e4100c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4c:cf:34:ae:92:b3:3d:7e:ea:95:31:c4:7a:
5d:b7:4b:a2:d9:fe:91:e5:11:e1:f4:72:00:c6:80:
78:31:bb:f4:f2:79:61:84:77:3a:f6:6a:94:6a:1f:
39:f6:59:1b:ed:83:77:bb:1d:77:f7:1e:c2:44:74:
bf:b6:57:fc:e0:80:9f:84:84:f3:48:62:55:46:dd:
bd:bd:3a:6d:19:72:76:9a:fa:3c:e9:ee:6a:c2:e1:
50:81:53:42:36:7a:fa:c5:0c:9c:19:f0:16:23:36:
bb:5a:7d:2d:0e:98:a8:bc:0e:c4:4e:8d:0d:ad:36:
25:6f:b7:26:87:85:a2:f8:9b:5d:12:bd:53:44:92:
a2:7d:2c:15:d2:f8:fd:b5:7c:71:ef:1a:6e:22:df:
3a:6f:87:00:59:91:69:ab:58:a9:f7:98:eb:5d:31:
88:55:9f:71:cd:fd:c5:ac:8c:22:e4:99:80:13:09:
eb:11:e6:7f:51:71:3d:83:f6:79:ed:55:29:c4:70:
2e:ef:b5:5a:e2:52:15:02:83:2b:8f:ab:62:c9:7d:
e3:6f:f1:29:4e:28:5d:93:08:32:00:69:d3:55:87:
bd:95:33:73:f7:8e:5e:07:96:31:88:75:a9:07:4c:
4f:b9:21:5c:fc:c6:05:c6:a0:9b:01:e4:78:bb:0a:
85:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C6:62:08:10:74:63:D3:6B:53:D3:CD:F6:85:67:3D:E6:E4:10:0C
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/5sZiCBB0Y9NrU9PN9oVnPebkEAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.74.0/24
Signature Algorithm: sha256WithRSAEncryption
19:7b:a2:29:0a:e7:6a:51:47:06:78:c4:b5:18:a3:b7:44:e0:
59:2d:e6:cb:cb:82:c7:b2:4a:f1:f4:3f:89:50:d6:24:b2:ab:
4a:55:c4:a6:92:bf:13:af:70:16:c3:92:60:ab:19:7a:2c:9d:
aa:fc:90:c5:59:2c:30:7f:83:4b:e7:e8:94:11:ee:1f:ec:71:
6e:ad:8a:c8:19:7c:05:e1:8b:32:fe:d5:03:b4:a6:aa:06:42:
62:3f:b2:9f:29:f7:2e:b4:ec:3b:86:c8:21:3e:3c:91:a8:f5:
28:26:ca:c0:54:15:8c:b8:e7:1e:fb:6c:13:27:19:d3:c7:a8:
79:be:35:23:a9:5e:d6:1c:8a:aa:9a:a0:42:ca:35:26:b8:db:
58:d3:b6:c7:b8:19:35:f2:3b:a0:b9:f2:68:8f:0a:b6:f0:4e:
d4:f9:a0:74:ee:9c:eb:5d:6c:89:4e:d3:65:18:0f:83:85:39:
ea:f7:72:e8:2c:bc:83:b6:d4:97:28:31:42:c6:83:f2:90:93:
f5:97:cc:6e:3f:c8:66:bc:03:11:8f:cd:14:44:00:a0:80:8f:
5a:0c:c1:3d:b6:1d:da:c2:c2:b7:55:d1:b1:a5:fe:1d:7b:61:
b3:29:15:17:ce:c9:4b:5f:4a:56:3c:6e:11:72:f8:76:65:0f:
9a:84:3f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:29 2024 by rpki-client on console-ams.rpki-client.org