Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/1aa69f-db55-4fba-bce9-c1ebe61549cc/1/g4wfhh2wMy2WANl_EXnsj4_dbh8.roa
File: g4wfhh2wMy2WANl_EXnsj4_dbh8.roa (raw, json)
Hash identifier: lCgNsUTzAwD7VUNH/fRdyufrj1+B7ex2rEsw+VW2Ta8=
Subject key identifier: 83:8C:1F:86:1D:B0:33:2D:96:00:D9:7F:11:79:EC:8F:8F:DD:6E:1F
Certificate issuer: /CN=cc40d96242b082efe5b4f2258820b3059396198d
Certificate serial: 1C8151A2
Authority key identifier: CC:40:D9:62:42:B0:82:EF:E5:B4:F2:25:88:20:B3:05:93:96:19:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEDZYkKwgu_ltPIliCCzBZOWGY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/1aa69f-db55-4fba-bce9-c1ebe61549cc/1/g4wfhh2wMy2WANl_EXnsj4_dbh8.roa
Signing time: Fri 18 Mar 2022 12:20:50 +0000
ROA not before: Fri 18 Mar 2022 12:20:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 81.223.0.0/16 maxlen: 17
85.124.0.0/14 maxlen: 15
213.229.0.0/18 maxlen: 19
83.64.0.0/15 maxlen: 16
195.58.160.0/19 maxlen: 20
62.99.128.0/17 maxlen: 18
91.118.0.0/15 maxlen: 16
212.41.224.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 478237090 (0x1c8151a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc40d96242b082efe5b4f2258820b3059396198d
Validity
Not Before: Mar 18 12:20:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=838c1f861db0332d9600d97f1179ec8f8fdd6e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:aa:ef:01:ea:56:8e:b4:87:3b:3e:68:c3:b8:
b9:26:b2:e9:f8:ce:b3:c9:d1:54:80:c6:fb:2f:ab:
5c:e0:a5:62:0b:16:5d:2e:95:49:ed:d7:0f:b8:23:
68:f4:42:28:44:0a:8b:29:b9:ea:55:70:81:15:aa:
de:2a:c9:e8:ef:95:6c:6d:ff:21:3c:b6:d2:88:7a:
1e:71:d7:0b:17:78:f0:d1:8e:5a:a2:08:52:ce:6c:
f8:9d:c1:6b:12:fa:36:38:b5:c0:28:b2:9d:a3:e3:
55:e1:84:54:3b:15:0c:e6:06:a2:dd:8c:9d:a2:a0:
f6:34:23:8d:54:d0:5e:2a:f8:69:f7:ad:2f:fd:1b:
ca:35:5b:9d:2b:c8:4d:be:4b:17:8a:8a:b1:86:2d:
92:54:38:e7:f8:6b:f6:bc:6d:0d:cb:ef:28:af:e1:
ea:80:c2:5b:eb:25:51:b6:4c:cd:bd:bd:8c:4d:f0:
79:44:d1:f1:b7:f6:3a:eb:3e:2f:b8:4e:fb:50:0f:
83:49:f3:c4:d7:c6:01:0e:c5:d3:4a:5d:ec:4e:c1:
d4:26:80:c6:b6:20:c9:33:fb:19:a6:e2:c2:30:bc:
11:e3:76:4e:12:49:a4:eb:ab:a8:19:f9:af:86:a6:
29:3d:e3:76:f6:b1:55:4c:62:14:68:9f:fd:c3:f2:
08:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8C:1F:86:1D:B0:33:2D:96:00:D9:7F:11:79:EC:8F:8F:DD:6E:1F
X509v3 Authority Key Identifier:
keyid:CC:40:D9:62:42:B0:82:EF:E5:B4:F2:25:88:20:B3:05:93:96:19:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEDZYkKwgu_ltPIliCCzBZOWGY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1aa69f-db55-4fba-bce9-c1ebe61549cc/1/g4wfhh2wMy2WANl_EXnsj4_dbh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/1aa69f-db55-4fba-bce9-c1ebe61549cc/1/zEDZYkKwgu_ltPIliCCzBZOWGY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.99.128.0/17
81.223.0.0/16
83.64.0.0/15
85.124.0.0/14
91.118.0.0/15
195.58.160.0/19
212.41.224.0/19
213.229.0.0/18
Signature Algorithm: sha256WithRSAEncryption
b9:1f:a9:96:95:fe:83:ee:b6:65:4b:83:2d:a3:7c:4a:fa:97:
0f:3f:09:26:06:4f:f7:c4:c8:df:14:3b:a0:29:5f:4a:fc:e3:
e9:f3:87:14:56:a6:d6:49:79:27:92:f5:c0:98:17:32:cb:2f:
14:ed:6f:a5:52:9e:36:cb:a7:3f:ba:15:f4:68:5b:49:92:1c:
96:11:3b:66:05:cd:1e:62:d6:a9:0f:4e:0b:79:34:1e:46:d7:
68:31:d5:66:05:0d:20:47:db:41:cc:5a:e5:7f:56:41:75:a1:
7f:52:5c:cb:48:9d:2a:08:4b:b1:29:97:59:76:54:da:79:f5:
d5:89:da:05:01:8d:79:8c:5c:58:5d:d2:0b:ae:d6:75:1f:0a:
b0:86:bb:59:42:5d:da:e5:b4:9b:7d:69:b1:6e:7e:e8:7a:ac:
ba:dc:02:00:2b:d7:66:21:f7:28:ac:6b:41:4a:be:43:6b:55:
a3:c4:f8:42:10:07:6f:2a:44:25:25:a8:39:fb:a1:05:2a:0a:
63:db:0e:b2:5d:ae:15:37:d7:82:13:e1:b3:da:a8:67:09:07:
6c:ce:e4:c8:66:e5:df:26:e8:a8:60:a1:c6:7e:bf:e8:53:87:
d0:a8:bd:cf:42:e8:6a:a8:0b:cd:83:b6:56:7f:a9:7c:04:88:
a6:af:53:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:03 2024 by rpki-client on console-fra.rpki-client.org