Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/5fN693n0cfkUhZoxYAw2vce6Lkk.roa
File: 5fN693n0cfkUhZoxYAw2vce6Lkk.roa (raw, json)
Hash identifier: K4uga86COWOTJ5IAY5+/S7xlsCmwdhfUOiFN/02Q/Ik=
Subject key identifier: E5:F3:7A:F7:79:F4:71:F9:14:85:9A:31:60:0C:36:BD:C7:BA:2E:49
Certificate issuer: /CN=27d54e4a788d6967a2eef3a6692622626f54efad
Certificate serial: 0183794637A8CDA5C00C1B514CB8481A5019
Authority key identifier: 27:D5:4E:4A:78:8D:69:67:A2:EE:F3:A6:69:26:22:62:6F:54:EF:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9VOSniNaWei7vOmaSYiYm9U760.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/5fN693n0cfkUhZoxYAw2vce6Lkk.roa
Signing time: Mon 26 Sep 2022 10:09:48 +0000
ROA not before: Mon 26 Sep 2022 10:09:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8487
IP address blocks: 185.156.24.0/24 maxlen: 24
2a07:9980::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:46:37:a8:cd:a5:c0:0c:1b:51:4c:b8:48:1a:50:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d54e4a788d6967a2eef3a6692622626f54efad
Validity
Not Before: Sep 26 10:09:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5f37af779f471f914859a31600c36bdc7ba2e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9c:a7:6f:2f:f3:e4:5f:88:38:bb:8f:da:6d:
84:68:41:c5:72:db:bf:29:b8:e1:1d:3b:45:62:03:
1b:8f:d7:59:b8:45:52:bb:4b:52:7a:17:c5:6e:f5:
0f:43:0d:b2:81:df:79:04:9f:8a:56:d1:e5:39:d2:
a1:31:6d:66:d7:18:a0:5c:95:f2:48:f9:1d:c5:21:
74:43:0d:6d:fd:af:77:e1:4c:70:03:67:7d:7c:8e:
32:6e:36:93:2e:76:3c:73:ef:50:38:22:82:18:51:
6d:0e:9d:2a:9b:4c:58:81:6b:b1:02:82:b0:14:e2:
90:07:ef:79:a8:b9:fb:89:74:87:88:f7:38:f3:80:
f2:bf:d0:02:f9:aa:6b:f0:cb:40:fe:6a:46:67:cc:
dc:ce:7c:bb:5c:cc:d4:1d:ff:41:f1:02:6b:4a:92:
90:8d:6c:11:2b:49:55:df:9a:21:52:59:28:ad:ee:
48:13:4f:ad:13:12:8a:ea:ef:ba:c3:eb:fd:79:af:
7f:39:b3:a9:40:90:be:f1:a7:d7:4e:df:48:4a:2e:
bf:49:88:26:79:4f:d9:8e:9c:4b:ef:b1:e0:c6:d9:
83:34:23:13:91:f6:ad:7d:2e:ee:ca:b7:84:60:5d:
62:1c:52:0b:55:1c:1b:19:c7:18:5f:6b:97:e3:4e:
96:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F3:7A:F7:79:F4:71:F9:14:85:9A:31:60:0C:36:BD:C7:BA:2E:49
X509v3 Authority Key Identifier:
keyid:27:D5:4E:4A:78:8D:69:67:A2:EE:F3:A6:69:26:22:62:6F:54:EF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9VOSniNaWei7vOmaSYiYm9U760.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/5fN693n0cfkUhZoxYAw2vce6Lkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/J9VOSniNaWei7vOmaSYiYm9U760.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.24.0/24
IPv6:
2a07:9980::/29
Signature Algorithm: sha256WithRSAEncryption
69:49:38:b1:c1:f9:38:c0:16:37:8d:e1:02:6a:7b:1c:68:cc:
3c:0b:a6:d0:94:a5:4c:65:9f:db:1e:ef:cf:c8:07:f1:b3:3e:
0b:cd:99:0c:6f:9d:34:be:5f:f8:82:b7:e8:73:12:97:da:4c:
c2:2d:18:07:0e:11:0d:c6:1c:22:eb:56:98:3f:61:e3:8c:ec:
d7:cf:2e:72:1c:10:d8:d6:ad:07:b5:c1:f3:54:9b:71:0d:18:
74:fe:a6:c0:a7:f6:b1:93:68:66:ff:e2:ac:f8:c3:58:af:04:
f0:c6:bd:92:83:f0:99:28:f1:41:d1:92:af:63:c8:79:44:b2:
0d:25:51:c2:12:8b:71:f3:27:91:19:fc:66:9c:7a:2a:ca:35:
8b:a5:13:37:37:ea:62:5f:4e:24:5d:4e:73:49:13:d1:9c:6f:
8b:46:24:54:86:ba:51:c9:3b:cc:7c:a0:c2:f5:9a:fa:3b:3e:
3d:66:95:e3:cd:52:17:46:11:2b:24:90:4b:3f:10:7e:48:51:
3f:c9:fa:eb:06:f4:b1:b2:37:32:ce:d4:bd:37:ef:38:83:d7:
a2:5d:61:e6:cf:ea:15:bd:0e:74:a6:1f:05:8b:bf:31:34:02:
d7:3e:0b:a6:bc:9c:7b:13:e2:9c:9f:35:f9:59:7c:bf:3a:5d:
3b:ac:5f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:49 2024 by rpki-client on console-ams.rpki-client.org