Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/2d0b47-f026-4f98-9fe9-1bb716427ca9/1/CtJ32sI-HgL19GLNkjYoBPctOOg.roa
File: CtJ32sI-HgL19GLNkjYoBPctOOg.roa (raw, json)
Hash identifier: CnTOL6WvxP4a7+YOe4OaUYd0P2bg64q/6RU45qjxKNk=
Subject key identifier: 0A:D2:77:DA:C2:3E:1E:02:F5:F4:62:CD:92:36:28:04:F7:2D:38:E8
Certificate issuer: /CN=d392f8fc986e9f1d3e4bf05fca9659a0881d7003
Certificate serial: 08DED15C
Authority key identifier: D3:92:F8:FC:98:6E:9F:1D:3E:4B:F0:5F:CA:96:59:A0:88:1D:70:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/05L4_Jhunx0-S_BfypZZoIgdcAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/2d0b47-f026-4f98-9fe9-1bb716427ca9/1/CtJ32sI-HgL19GLNkjYoBPctOOg.roa
Signing time: Sat 01 Jan 2022 11:03:49 +0000
ROA not before: Sat 01 Jan 2022 11:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200487
IP address blocks: 5.188.28.0/22 maxlen: 32
5.183.188.0/22 maxlen: 32
185.105.224.0/22 maxlen: 32
2a01:5a60::/32 maxlen: 128
2a0e:1600::/32 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148820316 (0x8ded15c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d392f8fc986e9f1d3e4bf05fca9659a0881d7003
Validity
Not Before: Jan 1 11:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ad277dac23e1e02f5f462cd92362804f72d38e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:34:8c:ad:80:e5:ca:8d:34:a3:dc:70:2b:3a:
29:05:e5:08:c2:94:7f:b7:e5:ab:68:45:90:cb:91:
10:a0:57:41:3c:46:65:e0:80:c3:62:51:41:3c:32:
71:db:eb:93:02:dd:62:62:3f:53:2d:3b:30:07:29:
a3:d3:1b:13:bc:7f:28:4d:32:bc:59:33:34:c6:79:
17:46:71:87:1b:38:1d:a3:d6:5d:9d:ab:c9:ed:82:
6b:eb:c0:c2:0f:e3:e5:0d:b2:e4:50:22:73:c1:e8:
9c:1f:eb:8c:41:90:dc:fc:2b:51:21:d9:a1:b9:f6:
02:2c:72:4e:2c:7e:2e:4e:6a:d6:db:34:f0:d7:2e:
db:02:de:d8:8a:f7:6f:80:55:27:a8:c6:af:e9:e1:
db:38:18:17:10:ab:11:68:66:25:43:1c:90:63:72:
99:d6:89:c2:ea:15:aa:f5:c2:a2:1c:9f:ee:d1:79:
91:e8:f8:0b:a1:2d:e6:8b:b8:1a:bc:c2:51:89:0e:
70:75:51:4b:4d:b7:fa:4b:58:35:ff:b1:b9:05:5e:
4d:2d:c0:dc:33:3a:8a:d9:1a:56:f2:de:07:ef:61:
fd:c1:7c:62:4b:3e:65:1b:1e:63:f1:b8:16:eb:10:
4e:d9:2b:72:17:ce:69:87:41:c7:be:e0:78:5d:19:
ac:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D2:77:DA:C2:3E:1E:02:F5:F4:62:CD:92:36:28:04:F7:2D:38:E8
X509v3 Authority Key Identifier:
keyid:D3:92:F8:FC:98:6E:9F:1D:3E:4B:F0:5F:CA:96:59:A0:88:1D:70:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/05L4_Jhunx0-S_BfypZZoIgdcAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/2d0b47-f026-4f98-9fe9-1bb716427ca9/1/CtJ32sI-HgL19GLNkjYoBPctOOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/2d0b47-f026-4f98-9fe9-1bb716427ca9/1/05L4_Jhunx0-S_BfypZZoIgdcAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.188.0/22
5.188.28.0/22
185.105.224.0/22
IPv6:
2a01:5a60::/32
2a0e:1600::/32
Signature Algorithm: sha256WithRSAEncryption
38:2a:62:30:ff:90:57:a9:00:a3:1d:37:88:a8:80:73:2d:fc:
0c:d5:c9:27:40:d4:6b:11:70:29:6c:08:89:50:28:91:ca:f3:
f9:16:ae:05:e6:c5:40:0a:0d:f6:af:d7:70:a2:05:45:ae:4c:
42:ef:93:60:60:67:f2:9f:46:35:04:0e:d4:6d:2f:23:1f:37:
65:b1:55:9c:cd:7a:82:b1:cd:4a:2e:f9:bd:f4:61:67:c7:dc:
97:a2:91:e5:89:14:50:98:f2:4d:55:91:95:51:71:00:a9:8a:
ef:1d:15:ff:e9:4c:8b:21:f3:72:3d:c8:fa:24:bc:a2:60:02:
b5:11:8d:3e:f8:8e:e9:c0:2f:d3:f9:b4:2c:6a:2a:8a:3c:6f:
a0:33:62:3f:21:e5:38:f1:be:b6:4d:28:13:1e:44:d3:e0:a8:
c4:13:3e:09:97:97:bd:59:0f:c3:9f:6a:59:38:f4:89:c5:b7:
70:09:06:cf:4a:01:8d:1f:b7:bb:5c:37:2f:11:f3:1f:45:fc:
01:a1:42:86:d3:06:0a:46:7a:a4:33:97:b7:b2:8d:dd:06:b6:
a9:25:88:fb:0c:d5:28:8e:aa:fe:80:46:6f:47:ce:1f:95:46:
f9:6f:bb:c2:3f:9b:c1:81:99:0f:8e:9d:bb:f4:ae:e9:44:d7:
a5:90:3e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-fra.rpki-client.org