Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/5aDB25YKdue3IOjUzAyn5LPCjWg.roa
File: 5aDB25YKdue3IOjUzAyn5LPCjWg.roa (raw, json)
Hash identifier: MnhzMtKIvhz9rpN4bLvZ2+hg51yRuAoFQLDZ1An1UAM=
Subject key identifier: E5:A0:C1:DB:96:0A:76:E7:B7:20:E8:D4:CC:0C:A7:E4:B3:C2:8D:68
Certificate issuer: /CN=ac5eadc0032850236fee756eb58fbf05e1316b5e
Certificate serial: 1A422BC2
Authority key identifier: AC:5E:AD:C0:03:28:50:23:6F:EE:75:6E:B5:8F:BF:05:E1:31:6B:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/5aDB25YKdue3IOjUzAyn5LPCjWg.roa
Signing time: Sat 01 Jan 2022 16:05:19 +0000
ROA not before: Sat 01 Jan 2022 16:05:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201709
IP address blocks: 185.41.104.0/22 maxlen: 24
185.41.104.0/23 maxlen: 24
2a01:55e4::/30 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 440544194 (0x1a422bc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5eadc0032850236fee756eb58fbf05e1316b5e
Validity
Not Before: Jan 1 16:05:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5a0c1db960a76e7b720e8d4cc0ca7e4b3c28d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5e:02:89:20:e4:3e:75:25:53:a2:db:93:9d:
15:16:8b:8b:bf:d3:e4:08:8e:d5:fa:b7:4a:eb:b6:
6e:6a:99:63:29:ef:91:d6:43:f9:09:98:f1:77:f5:
69:b7:62:77:18:52:4f:ef:1a:ed:42:6d:fe:6b:c6:
c0:e9:33:ee:aa:08:42:f4:7c:79:3d:bc:f7:f7:78:
97:90:d5:73:10:3d:3f:ad:b9:91:20:72:37:83:ab:
bd:32:f7:50:ee:69:c0:5f:6c:d5:a0:e8:de:ac:a1:
92:73:3f:69:42:cc:45:55:7b:9a:45:bc:0f:84:85:
18:e2:a8:35:1e:b1:ba:df:34:57:be:5d:92:36:2e:
ba:dd:f9:e2:c6:1f:a1:bb:68:fd:70:89:e7:60:a1:
66:4d:7d:1c:23:ca:9c:ce:77:2d:72:57:03:c2:8a:
b7:61:3e:96:8a:ae:6c:88:c5:92:6f:52:6a:b5:8d:
05:2c:5d:ce:a0:b8:91:26:ba:50:20:01:28:42:18:
bb:ce:15:f8:a0:63:4f:93:5f:20:fc:62:0b:48:8a:
22:3d:c3:b8:28:25:f3:c2:ee:f5:a9:cc:11:1e:94:
a7:77:87:e1:86:e1:60:36:31:56:58:57:12:7b:18:
ed:4d:0b:84:bc:94:8e:3f:f5:85:03:59:66:cb:da:
71:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A0:C1:DB:96:0A:76:E7:B7:20:E8:D4:CC:0C:A7:E4:B3:C2:8D:68
X509v3 Authority Key Identifier:
keyid:AC:5E:AD:C0:03:28:50:23:6F:EE:75:6E:B5:8F:BF:05:E1:31:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/5aDB25YKdue3IOjUzAyn5LPCjWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/rF6twAMoUCNv7nVutY-_BeExa14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.104.0/22
IPv6:
2a01:55e4::/30
Signature Algorithm: sha256WithRSAEncryption
56:da:2a:31:1f:96:7c:89:f8:86:c3:9e:f0:ff:43:05:9d:15:
c5:1f:a6:74:1d:bd:29:7c:4a:f4:3c:ee:c6:82:e1:48:41:87:
b5:53:99:04:82:4d:3b:87:6b:f2:9d:94:ab:11:2f:a2:9b:05:
d1:20:89:d7:19:b4:d7:fc:88:04:4d:f3:93:9b:b6:bd:43:3a:
6b:f7:75:21:df:45:a0:37:86:17:a9:3a:6c:69:9b:ac:cc:fd:
c6:16:83:fb:c7:cc:0a:80:5a:34:18:2a:af:bc:c7:cc:d3:da:
1b:8f:be:9b:15:75:5a:f5:5d:30:54:3c:8c:09:f6:c2:c3:1d:
44:8c:ef:c6:04:b9:3d:bb:39:b6:c9:14:7b:02:8b:7c:fb:93:
49:38:ed:ac:53:ba:15:69:d8:91:f5:9b:f8:e8:8c:15:45:4c:
fe:e7:52:b0:ab:4e:a1:f7:20:34:3a:d7:08:20:68:ee:6b:81:
ab:ed:17:72:7f:42:95:03:ea:f6:5b:62:fc:eb:0c:04:0d:ba:
55:06:e8:6f:ad:98:56:f8:21:5e:64:1c:ae:aa:8f:a0:6b:db:
a9:7b:fc:46:ef:ff:c2:e5:bb:78:de:8b:09:19:66:04:4f:be:
1c:10:69:06:c3:cc:c1:ee:d6:df:9a:99:e3:14:67:03:4c:37:
21:cc:00:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:06 2024 by rpki-client on console-fra.rpki-client.org