Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/4T-tB7PQ6phWwwEvwZn4YxAjsv0.roa
File: 4T-tB7PQ6phWwwEvwZn4YxAjsv0.roa (raw, json)
Hash identifier: 3Nd31vhPQB7kxOKS9XbXwb2KjVqS4m8KL501aQcXaQY=
Subject key identifier: E1:3F:AD:07:B3:D0:EA:98:56:C3:01:2F:C1:99:F8:63:10:23:B2:FD
Certificate issuer: /CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Certificate serial: 037E9E92
Authority key identifier: 5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/4T-tB7PQ6phWwwEvwZn4YxAjsv0.roa
Signing time: Sat 01 Jan 2022 15:02:09 +0000
ROA not before: Sat 01 Jan 2022 15:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33864
IP address blocks: 84.17.128.0/19 maxlen: 24
185.137.40.0/22 maxlen: 24
2a02:1760::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58629778 (0x37e9e92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Validity
Not Before: Jan 1 15:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e13fad07b3d0ea9856c3012fc199f8631023b2fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:85:d7:f3:58:7a:48:b9:91:08:25:e8:7a:e1:
75:31:b6:10:e6:3e:c4:22:b1:4b:06:b3:50:81:00:
1a:34:fa:5a:20:85:d7:92:96:15:2c:db:ea:25:b2:
7b:eb:4a:77:c6:97:cb:5e:64:e0:06:ea:6d:85:ba:
60:fa:12:24:df:08:27:06:e1:22:ed:67:19:ee:f4:
e9:f5:88:ab:fb:76:15:36:8c:4a:b5:80:ba:8f:07:
74:6d:55:0a:69:72:5b:11:51:55:91:5f:28:29:21:
a5:11:f0:c7:f8:0e:78:eb:35:0b:40:29:e4:68:15:
60:65:b9:6b:30:35:29:3c:4f:67:df:bf:da:2f:83:
94:3e:e0:c6:b6:9c:76:2d:ce:c2:68:eb:d4:fa:d6:
7b:e5:af:3d:1d:e7:7c:c2:42:82:16:43:8d:20:2c:
5e:c1:34:63:85:8a:3f:90:89:08:3f:3e:f2:14:50:
b8:43:cb:e1:44:99:f5:9a:93:59:65:7a:48:a8:27:
a7:42:fe:80:2e:29:ac:fe:f6:61:7d:0c:c7:05:0c:
51:b7:a1:24:15:8f:ad:c1:10:b9:c6:cf:16:65:03:
0b:5b:2d:56:b2:eb:01:28:4e:af:e7:08:30:c8:52:
ae:cb:78:fd:5b:83:ed:c9:00:f6:93:0a:b2:ab:47:
40:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3F:AD:07:B3:D0:EA:98:56:C3:01:2F:C1:99:F8:63:10:23:B2:FD
X509v3 Authority Key Identifier:
keyid:5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/4T-tB7PQ6phWwwEvwZn4YxAjsv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.17.128.0/19
185.137.40.0/22
IPv6:
2a02:1760::/32
Signature Algorithm: sha256WithRSAEncryption
a2:73:fe:5a:26:fa:ff:a3:35:88:55:a6:00:1b:f4:23:85:a4:
b0:bc:79:ae:68:22:0f:ee:66:59:2b:e3:83:a2:84:6a:9c:57:
3a:97:37:ec:ea:3a:da:ac:a0:59:88:3d:33:5a:91:35:77:ae:
83:6c:c3:94:29:00:67:30:e1:cb:a0:30:40:1a:f0:7f:c6:8f:
5b:ec:33:e9:9c:07:b7:65:b1:5d:ea:2c:11:23:66:91:5d:0c:
d3:c8:0c:04:58:43:19:33:5b:58:95:b7:d2:6f:4f:15:44:7e:
f2:3b:7c:a5:04:33:8f:0a:35:a0:f6:16:e4:9f:ba:a5:3e:e5:
f2:31:33:24:ca:ae:39:32:a7:bc:be:cb:e1:c1:16:39:86:10:
dc:25:cc:ab:25:a9:8f:ea:ec:a0:cd:01:96:ba:6f:5d:c0:6b:
53:33:ec:7d:1a:09:25:b4:d5:c5:1b:42:96:78:18:d5:86:d6:
f7:71:31:ff:11:88:cf:d4:b8:34:ef:6e:bf:67:21:a9:8f:dd:
80:a5:03:70:c8:cc:a5:80:2f:4e:8e:d8:f6:e8:66:e4:2d:49:
d6:00:c3:9d:5f:2e:92:66:10:38:ce:87:4e:e7:68:83:25:69:
44:55:b1:03:25:24:51:19:18:d8:8f:c9:ff:3b:93:e9:a9:4c:
48:27:45:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:25 2023 by rpki-client on console-fra.rpki-client.org