Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/67080d-cae0-48c1-a338-38f5d963222c/1/4Y26Cm_uCedGbQt0dhrMA7DlPG4.roa
File: 4Y26Cm_uCedGbQt0dhrMA7DlPG4.roa (raw, json)
Hash identifier: 0M8aHFZDrpj1lv+jqvCt/mTXtgMVZEnScTGGDS7+s9g=
Subject key identifier: E1:8D:BA:0A:6F:EE:09:E7:46:6D:0B:74:76:1A:CC:03:B0:E5:3C:6E
Certificate issuer: /CN=135155cebf9de0cb73e40a0fa0a1ab4dcf1d09ca
Certificate serial: 08E3491A
Authority key identifier: 13:51:55:CE:BF:9D:E0:CB:73:E4:0A:0F:A0:A1:AB:4D:CF:1D:09:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E1FVzr-d4Mtz5AoPoKGrTc8dCco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/67080d-cae0-48c1-a338-38f5d963222c/1/4Y26Cm_uCedGbQt0dhrMA7DlPG4.roa
Signing time: Sat 01 Jan 2022 13:07:25 +0000
ROA not before: Sat 01 Jan 2022 13:07:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137
IP address blocks: 130.251.0.0/16 maxlen: 16
192.148.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149113114 (0x8e3491a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=135155cebf9de0cb73e40a0fa0a1ab4dcf1d09ca
Validity
Not Before: Jan 1 13:07:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e18dba0a6fee09e7466d0b74761acc03b0e53c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6d:5c:e4:74:52:ce:cc:47:04:69:9c:7c:a6:
1b:18:6d:ed:fb:28:9c:92:29:15:f0:5b:fb:d1:45:
38:4f:94:2c:ea:82:70:8f:3b:26:e9:33:e1:fd:65:
45:57:72:7e:de:6b:39:fa:68:db:c0:fd:1d:97:dc:
73:5e:74:d9:db:fa:cd:d8:31:b1:4f:f3:7e:89:2b:
95:c0:b2:2a:8a:2c:ae:c1:86:46:b0:58:92:30:75:
ad:cd:09:d8:24:62:9b:78:1e:13:d9:32:a8:3e:aa:
74:21:f6:3b:01:7f:8f:ce:05:f8:3d:c5:4e:57:ea:
7f:bc:23:57:88:81:74:29:84:8c:c3:5d:b0:af:12:
b4:3a:57:29:5a:db:28:c7:7a:f6:17:ea:f8:b6:11:
c9:76:7b:7b:63:06:d5:73:9e:26:18:87:69:90:ca:
39:92:58:3c:78:d5:0f:b5:6a:6e:7a:98:4a:53:ac:
48:da:cc:d9:ec:73:35:eb:20:dd:48:aa:fa:a1:71:
9a:87:af:13:f7:6c:f1:09:50:74:52:5b:8f:27:47:
ce:7b:e6:30:50:7b:0e:0d:85:37:fb:84:69:ea:85:
ae:9a:7a:1a:5b:1e:0b:84:9d:d4:c4:b7:2c:c1:57:
c6:2b:91:e2:ff:88:21:d9:26:1b:b8:a2:3b:42:bf:
7c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:8D:BA:0A:6F:EE:09:E7:46:6D:0B:74:76:1A:CC:03:B0:E5:3C:6E
X509v3 Authority Key Identifier:
keyid:13:51:55:CE:BF:9D:E0:CB:73:E4:0A:0F:A0:A1:AB:4D:CF:1D:09:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E1FVzr-d4Mtz5AoPoKGrTc8dCco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/67080d-cae0-48c1-a338-38f5d963222c/1/4Y26Cm_uCedGbQt0dhrMA7DlPG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/67080d-cae0-48c1-a338-38f5d963222c/1/E1FVzr-d4Mtz5AoPoKGrTc8dCco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.251.0.0/16
192.148.193.0/24
Signature Algorithm: sha256WithRSAEncryption
41:2d:e1:5a:a7:a2:63:fd:b2:80:26:60:47:c5:cd:5c:ed:5c:
91:fc:4f:fc:0d:c9:a0:2c:57:ab:e7:93:a1:4e:0a:40:10:a0:
1d:c0:07:f6:46:ff:eb:11:b0:0a:af:d3:7e:63:5c:58:de:b9:
38:da:df:90:05:47:ff:ac:0d:7c:44:01:c9:87:c3:37:48:f8:
4d:06:e6:98:80:53:97:13:58:40:e0:24:14:be:c6:45:cb:ed:
7b:2e:aa:4a:bd:7d:bc:9b:e7:db:7e:3c:24:9c:cd:b2:01:96:
b0:7e:51:36:65:f5:3a:a2:89:b1:42:66:3b:5e:e5:e9:f3:9c:
ff:8e:15:bb:74:2d:28:be:40:54:9a:c7:4c:5d:99:47:38:6a:
61:43:14:b4:c4:7b:51:4d:54:ae:47:33:1a:83:7e:cc:cc:a8:
ea:12:d4:77:a6:6e:0d:01:53:62:15:a7:d2:89:a7:c0:8f:c1:
84:99:59:5f:32:47:47:d7:34:cc:80:eb:8d:62:41:bf:f7:9f:
8e:90:22:95:3d:14:aa:7d:65:06:f5:cd:ac:5f:27:87:29:92:
74:dc:1d:6f:a5:49:3d:2c:82:c1:2e:0f:84:f0:63:67:7b:46:
d1:89:00:3a:59:c0:3a:f7:af:66:3f:fb:d5:c5:22:4e:01:04:
66:0d:ce:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:08 2024 by rpki-client on console-fra.rpki-client.org