Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/IYsGep-hXUvkqTi5pIv2A8PLcjo.roa
File: IYsGep-hXUvkqTi5pIv2A8PLcjo.roa (raw, json)
Hash identifier: mr5ydWx5L9KGRv9V7PTD4IaITsLE/1A2JTG/hpEyi+s=
Subject key identifier: 21:8B:06:7A:9F:A1:5D:4B:E4:A9:38:B9:A4:8B:F6:03:C3:CB:72:3A
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 179A4D1A
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/IYsGep-hXUvkqTi5pIv2A8PLcjo.roa
Signing time: Sat 01 Jan 2022 13:03:24 +0000
ROA not before: Sat 01 Jan 2022 13:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203909
IP address blocks: 5.1.77.0/24 maxlen: 32
2a00:f826:7::/48 maxlen: 48
2a00:f826:4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395988250 (0x179a4d1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 1 13:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=218b067a9fa15d4be4a938b9a48bf603c3cb723a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c0:ef:1b:2a:b7:66:76:15:e2:ba:f9:61:6f:
fa:27:83:ec:3a:eb:eb:9f:12:27:7c:09:f0:0b:a6:
9f:2f:7a:91:c9:03:c1:89:19:a7:69:8c:56:f5:1b:
12:c2:28:19:1e:56:e6:10:3e:e1:dc:63:2c:1c:87:
3d:da:50:a3:7f:f9:fe:ce:db:79:42:a2:42:10:a9:
ff:b4:79:01:68:86:e0:a1:87:41:de:64:45:0c:ad:
31:b3:3d:76:85:9a:b9:50:53:2e:00:38:82:75:30:
b3:da:6b:9c:b2:b4:cb:84:8d:6e:be:b2:85:2e:b8:
d0:f2:62:06:96:7b:60:b1:62:22:d1:9b:da:b5:0a:
99:63:2d:5e:f3:ce:71:81:c0:0d:36:d7:5b:69:6d:
31:79:79:e7:dc:4f:1a:97:6c:7d:34:7b:1b:c9:e6:
2a:d0:50:9c:12:4c:37:3c:49:59:4a:51:fa:47:af:
95:8f:53:a0:98:cb:2d:eb:e2:af:08:e1:25:2b:e4:
b9:98:23:6b:01:27:af:a3:eb:0d:ff:88:cb:60:c2:
7f:19:e9:2a:bf:bb:a6:d8:ca:4c:3c:2b:dd:13:97:
1f:de:45:2d:bc:dd:29:c3:5f:86:c6:73:96:2c:1b:
7e:ee:d1:01:1b:5e:bd:27:01:1b:96:d7:d4:5e:9e:
c1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8B:06:7A:9F:A1:5D:4B:E4:A9:38:B9:A4:8B:F6:03:C3:CB:72:3A
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/IYsGep-hXUvkqTi5pIv2A8PLcjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.77.0/24
IPv6:
2a00:f826:4::/48
2a00:f826:7::/48
Signature Algorithm: sha256WithRSAEncryption
85:ca:a8:cb:ce:7d:14:e4:03:a2:93:0d:cc:38:ec:8d:40:a3:
0f:9d:8a:ab:62:f7:b8:aa:52:f4:14:04:a6:7f:ce:bb:a5:5e:
e1:c3:8a:09:53:ed:02:97:d3:0a:79:29:40:fc:4a:f8:b3:57:
d4:44:be:4a:4f:91:ec:a4:11:2c:39:c6:1e:d4:62:f4:ad:e0:
9e:d4:1b:08:64:ca:69:be:c6:86:d3:1b:08:77:06:8e:92:13:
a1:24:d7:07:32:59:e9:97:a4:e6:26:b2:d1:0e:bb:ca:79:cd:
2f:29:bf:1f:7f:d3:07:f6:b9:3f:aa:56:2c:20:10:a6:07:96:
e1:bd:2f:5e:51:90:5e:ff:c0:c2:a0:28:b1:a1:02:1e:bb:90:
e3:2a:d0:19:e3:29:a2:3a:2d:b8:45:63:b7:c6:d2:48:0a:5f:
6a:6b:20:80:f7:a6:9f:f0:a2:47:b7:a8:99:d3:a9:cb:e0:54:
af:0a:3d:a2:60:55:96:51:c5:a5:85:e9:c0:12:b6:ba:b2:54:
1c:99:33:15:13:be:39:4c:38:e7:d4:26:0a:f2:f8:64:94:10:
f3:2e:88:62:95:a6:f5:12:47:b0:5b:64:be:4e:9f:f6:9a:54:
e6:20:dd:44:17:8f:44:fc:1b:26:62:78:a1:c3:d7:13:01:88:
20:50:bb:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:31 2024 by rpki-client on console-ams.rpki-client.org