Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/adea93-808b-4488-a53c-3a06b3af5243/1/SxWrjUPogn4PSUYFU_Kndvkc0Zg.roa
File: SxWrjUPogn4PSUYFU_Kndvkc0Zg.roa (raw, json)
Hash identifier: s6PjMsAjwsSCEDJjZTRYKaqRoG3+ZsM0hqW2EYn+XW8=
Subject key identifier: 4B:15:AB:8D:43:E8:82:7E:0F:49:46:05:53:F2:A7:76:F9:1C:D1:98
Certificate issuer: /CN=c4182e28f311c44294a8ca6ad81d7a7863af5099
Certificate serial: 0175CEF3
Authority key identifier: C4:18:2E:28:F3:11:C4:42:94:A8:CA:6A:D8:1D:7A:78:63:AF:50:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBguKPMRxEKUqMpq2B16eGOvUJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/adea93-808b-4488-a53c-3a06b3af5243/1/SxWrjUPogn4PSUYFU_Kndvkc0Zg.roa
Signing time: Sat 01 Jan 2022 13:54:56 +0000
ROA not before: Sat 01 Jan 2022 13:54:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35592
IP address blocks: 194.56.181.0/24 maxlen: 24
2a11:3600::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24497907 (0x175cef3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4182e28f311c44294a8ca6ad81d7a7863af5099
Validity
Not Before: Jan 1 13:54:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b15ab8d43e8827e0f49460553f2a776f91cd198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:01:35:2f:3c:12:28:2d:e8:53:1e:bd:d0:a7:
0b:fc:02:d8:b6:ef:b8:9f:f0:3c:e2:99:92:9e:a5:
73:0d:ac:cb:06:27:2f:28:58:d3:0b:7e:57:e0:c6:
90:03:b2:a8:fb:d5:f4:55:48:c0:cf:22:81:a5:27:
8e:45:0d:ef:b2:25:f1:74:ca:c7:d7:e8:b8:4c:11:
15:31:12:b9:3f:21:d4:1d:3b:8e:39:fa:f5:80:3b:
8f:75:86:2c:86:c1:6e:8a:cb:11:ae:c6:0d:ba:ee:
fe:90:dc:86:bc:95:5c:ee:2f:55:8d:32:77:73:c3:
5c:5e:44:1f:1d:d2:16:1d:98:72:fb:dc:bb:8a:0a:
7a:d9:a7:94:01:16:38:36:b3:19:5b:6d:0d:f7:21:
f8:dd:30:7a:11:b1:f0:8a:e2:3b:1c:c2:45:e0:dd:
2b:2b:00:84:2b:73:44:dc:1e:e9:9c:83:bf:4f:11:
a2:b4:05:22:f7:95:ca:6d:30:53:c8:42:39:7d:ec:
66:62:cf:40:fb:40:89:82:db:11:ca:00:e2:51:18:
e9:17:78:75:45:43:94:32:0f:0a:b0:bc:97:f8:c6:
b8:38:32:51:35:b8:78:82:a0:17:58:d7:73:d3:1f:
ff:15:a2:02:b1:67:a6:a6:02:90:aa:fc:e2:14:22:
5a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:15:AB:8D:43:E8:82:7E:0F:49:46:05:53:F2:A7:76:F9:1C:D1:98
X509v3 Authority Key Identifier:
keyid:C4:18:2E:28:F3:11:C4:42:94:A8:CA:6A:D8:1D:7A:78:63:AF:50:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBguKPMRxEKUqMpq2B16eGOvUJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/adea93-808b-4488-a53c-3a06b3af5243/1/SxWrjUPogn4PSUYFU_Kndvkc0Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/adea93-808b-4488-a53c-3a06b3af5243/1/xBguKPMRxEKUqMpq2B16eGOvUJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.181.0/24
IPv6:
2a11:3600::/48
Signature Algorithm: sha256WithRSAEncryption
0c:16:81:05:09:4b:15:23:98:ff:2c:9f:cd:58:78:b2:da:07:
b3:32:df:5e:43:0e:c9:32:1c:4c:ac:9e:17:7d:25:92:34:83:
8e:06:27:ad:88:42:ad:42:06:c2:66:05:0d:58:85:c1:be:84:
90:4d:43:bb:02:fa:71:0a:ec:02:8d:2e:ce:5f:34:3d:67:26:
ce:99:f7:12:ce:cf:ef:3d:8e:25:75:cc:79:30:da:d0:1d:85:
0b:58:2f:70:b4:ce:7a:5d:9e:f3:bc:ee:04:6b:a9:25:a1:43:
de:3d:36:4b:b2:cc:10:37:c3:ff:6d:37:c5:ca:a3:c0:bd:aa:
ba:e8:d5:78:12:9c:89:89:42:02:74:25:42:49:ea:2a:8f:fe:
76:8d:43:8e:40:35:3e:26:f4:8f:f1:97:8c:c5:f6:56:56:fa:
ac:82:48:57:11:65:f9:55:e8:94:f8:a4:26:d3:eb:71:53:b1:
57:7b:ff:6c:a5:42:1b:59:87:d9:c9:53:b5:ad:c3:41:4c:6a:
41:c8:d2:48:7c:1b:6c:2d:38:88:0b:77:47:04:0e:7a:f6:61:
a0:0b:f7:6a:7b:59:08:ab:00:eb:64:a8:f5:2d:79:8a:39:ef:
a9:41:c9:9d:b1:38:d7:0f:1d:7f:32:05:69:f1:07:3d:7c:4a:
04:e5:e4:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:13 2024 by rpki-client on console-fra.rpki-client.org