Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fb39ed-7c73-4478-901d-65a899a60366/1/5wPvGXkRKLgmWAWIZ6RnTZzUwmY.roa
File: 5wPvGXkRKLgmWAWIZ6RnTZzUwmY.roa (raw, json)
Hash identifier: 2FtqI5CAoiA3Y7kYiSt6hsHbPB14MH5iZUYRU/T4gXE=
Subject key identifier: E7:03:EF:19:79:11:28:B8:26:58:05:88:67:A4:67:4D:9C:D4:C2:66
Certificate issuer: /CN=449b18e3296d795d3a9c959be25c70aaab365200
Certificate serial: 341CB778
Authority key identifier: 44:9B:18:E3:29:6D:79:5D:3A:9C:95:9B:E2:5C:70:AA:AB:36:52:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RJsY4ylteV06nJWb4lxwqqs2UgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fb39ed-7c73-4478-901d-65a899a60366/1/5wPvGXkRKLgmWAWIZ6RnTZzUwmY.roa
Signing time: Sat 01 Jan 2022 12:55:27 +0000
ROA not before: Sat 01 Jan 2022 12:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56672
IP address blocks: 195.189.198.0/24 maxlen: 24
195.189.199.0/24 maxlen: 24
194.107.140.0/23 maxlen: 23
2a00:4680::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 874297208 (0x341cb778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=449b18e3296d795d3a9c959be25c70aaab365200
Validity
Not Before: Jan 1 12:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e703ef19791128b82658058867a4674d9cd4c266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:77:de:da:c1:3b:6d:39:69:3c:cf:0d:fa:32:
c9:6d:9c:b0:e8:52:88:15:a4:54:3e:de:27:88:e2:
7c:09:77:dd:b3:fb:2d:69:db:43:42:db:47:34:f8:
0a:df:83:48:cd:9a:42:8a:31:75:d9:9e:75:97:6d:
40:2a:80:ed:80:13:5d:c4:1a:db:65:0f:51:a1:44:
d3:66:ff:84:65:07:cf:c9:c9:9e:40:53:5b:34:55:
42:a7:cb:90:93:e2:aa:b3:ac:6f:26:d8:cf:d8:b6:
a4:97:1c:2c:e9:0f:aa:59:2e:77:eb:d4:37:06:01:
11:34:b1:e4:8f:0e:b2:c6:17:22:4b:be:ec:58:da:
c2:d3:ab:8a:a5:a3:0c:80:83:fe:d3:b9:66:2b:da:
05:fa:c3:54:b5:d1:ec:83:c1:88:5f:59:fc:68:3b:
4c:39:7c:9e:ed:21:14:bb:f3:17:a5:7f:6b:d0:b4:
c6:8c:99:d7:2a:74:0f:54:42:80:7b:32:69:0c:18:
1d:dc:d6:15:d2:b3:17:d2:34:c3:f6:7b:56:b7:09:
3e:e3:9a:fd:35:b2:a5:25:0b:6b:48:98:ce:90:49:
f9:7a:fe:5a:8d:f2:04:64:a1:63:16:b0:9f:02:aa:
1e:66:73:b1:47:c7:a9:97:cc:7d:6c:23:87:3f:2d:
5e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:03:EF:19:79:11:28:B8:26:58:05:88:67:A4:67:4D:9C:D4:C2:66
X509v3 Authority Key Identifier:
keyid:44:9B:18:E3:29:6D:79:5D:3A:9C:95:9B:E2:5C:70:AA:AB:36:52:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RJsY4ylteV06nJWb4lxwqqs2UgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fb39ed-7c73-4478-901d-65a899a60366/1/5wPvGXkRKLgmWAWIZ6RnTZzUwmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fb39ed-7c73-4478-901d-65a899a60366/1/RJsY4ylteV06nJWb4lxwqqs2UgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.140.0/23
195.189.198.0/23
IPv6:
2a00:4680::/32
Signature Algorithm: sha256WithRSAEncryption
63:1f:9b:0d:ff:77:e7:47:46:c1:60:b2:84:c7:f5:42:e9:5f:
00:37:3e:98:d6:e9:2c:ea:a4:6e:47:b7:ad:8c:9d:b8:0a:76:
7d:83:b2:5f:49:2b:0c:a9:d8:b9:a6:ab:c9:72:27:01:ca:03:
2b:24:57:66:51:1e:8c:ed:a8:18:89:56:9f:7a:1d:a0:0c:a9:
04:4c:9a:b8:a6:89:1c:8c:01:e8:dd:0c:07:2d:c5:cf:6f:c2:
ab:43:2a:f8:a5:81:a3:21:a0:97:a6:88:b9:c1:4f:19:bd:d2:
27:8b:1b:6e:1c:bc:d0:51:e4:b1:97:65:d3:b4:45:91:ee:f4:
67:62:3d:5e:7f:68:ef:00:90:20:8e:e5:5d:bb:1e:76:85:f3:
dc:70:2b:7a:c9:ce:2c:65:0a:76:71:31:6d:5e:5e:b0:2c:4e:
14:cf:82:99:3f:1c:ba:63:a2:f8:f2:9f:fe:89:72:42:e8:8f:
44:75:03:64:28:b2:0a:fe:c4:fc:48:0f:5b:77:63:a6:9c:93:
70:5a:36:f6:f7:d3:94:1f:01:ef:30:26:cb:aa:10:ef:f6:af:
63:d2:91:35:28:9e:a1:3a:1c:2f:46:0f:4d:92:6b:58:ae:32:
4f:e2:94:17:b2:35:4a:8f:7c:bc:71:35:a4:5f:e8:fa:35:ed:
9f:12:de:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org