Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/3pPzHh-UFIKiR1PSS21R6uPMVdk.roa
File: 3pPzHh-UFIKiR1PSS21R6uPMVdk.roa (raw, json)
Hash identifier: 45iM6hcpi9wOxm00T244BlgUVz28f2JE/wNi+ZvbphA=
Subject key identifier: DE:93:F3:1E:1F:94:14:82:A2:47:53:D2:4B:6D:51:EA:E3:CC:55:D9
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 17952908
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/3pPzHh-UFIKiR1PSS21R6uPMVdk.roa
Signing time: Sat 01 Jan 2022 13:03:21 +0000
ROA not before: Sat 01 Jan 2022 13:03:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201061
IP address blocks: 5.1.92.0/24 maxlen: 32
2a01:367:abcd::/48 maxlen: 48
2a00:f826:25::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395651336 (0x17952908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de93f31e1f941482a24753d24b6d51eae3cc55d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:89:15:00:08:eb:be:29:e0:3b:4a:da:77:2f:
cc:c4:94:3a:3c:3d:e8:0d:3a:8a:c8:61:66:56:8a:
7c:a9:f1:57:28:db:6c:c0:b2:98:b8:e1:a7:c9:e0:
30:23:7b:f0:5f:ee:01:31:10:c2:31:1e:57:bc:2a:
31:64:53:29:17:8f:a6:83:63:d6:d8:70:5c:68:b7:
6c:c3:f3:7d:ee:27:5f:92:78:2c:d0:44:87:ed:64:
d6:b3:92:9d:c2:99:21:27:39:5c:ef:05:25:93:fa:
dc:08:08:b3:5c:35:2c:68:d2:ac:0e:30:56:5c:59:
58:59:d7:7b:1a:ac:dc:01:ce:42:12:9c:d3:ad:08:
36:4c:26:d2:f8:03:6f:81:87:05:6e:4b:56:8a:9c:
9f:1b:e5:88:93:70:ee:b3:f2:3d:d5:33:19:56:83:
61:f3:c5:4a:53:1f:93:fe:9d:9a:d1:52:10:85:3a:
be:8f:32:d7:8b:de:7a:60:d0:f3:5d:cc:69:27:d3:
92:37:42:a2:2e:96:26:c3:4c:22:8d:cf:bc:88:76:
5e:1a:ef:d5:08:1a:64:7a:f9:fa:56:0c:d3:f0:24:
21:d9:f8:b4:03:f8:16:43:dd:2f:1c:5a:a6:db:ac:
6a:90:91:07:4a:d2:29:11:ed:fe:f0:d9:96:99:6b:
85:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:93:F3:1E:1F:94:14:82:A2:47:53:D2:4B:6D:51:EA:E3:CC:55:D9
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/3pPzHh-UFIKiR1PSS21R6uPMVdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.92.0/24
IPv6:
2a00:f826:25::/48
2a01:367:abcd::/48
Signature Algorithm: sha256WithRSAEncryption
91:ec:ca:9a:a4:a4:b1:79:2f:b9:04:c1:b6:72:e0:93:90:3f:
63:6f:c8:6d:34:dc:e3:f5:e9:de:48:78:c6:2a:64:bd:b1:fd:
e0:e6:fc:71:30:3a:87:2d:63:da:ef:67:d7:b7:c8:36:f7:34:
b9:c0:d3:80:57:00:d8:ba:60:68:1a:bd:0a:1b:36:e7:1d:f9:
5c:b8:ed:12:1a:e0:e3:e7:41:24:95:2e:22:2b:6c:dc:23:6e:
6b:66:8a:64:22:bc:00:aa:48:35:f8:2f:ca:e2:55:a1:43:22:
2a:2d:34:64:6f:d7:b6:ce:cc:1d:0c:90:3d:d0:69:e3:f3:e0:
9a:f5:24:43:17:7d:39:57:68:69:06:75:7e:31:bf:43:7b:a8:
ac:cc:bd:21:44:80:a8:67:6a:1b:9b:24:ca:7e:86:3c:28:57:
ac:47:3a:b4:ea:74:26:aa:fd:3a:33:b8:5c:a2:c6:8d:42:a4:
1b:af:c3:e2:55:18:6f:e3:59:5a:2c:c6:f3:93:43:c5:da:7b:
87:26:73:3e:48:97:13:f2:ce:05:f9:25:69:3b:d8:a6:50:ab:
23:9c:ad:a8:44:5a:a4:2c:32:08:cd:80:f6:1b:93:d6:c0:2b:
3c:08:bb:33:f8:4a:c2:61:3d:9b:43:60:03:da:c7:c8:ee:ce:
54:61:02:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org