Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2f5931-05a8-436b-9273-cd7b6edbfcf5/1/pKPJiy5aXxs-0cM28whhhyIbzGw.roa
File: pKPJiy5aXxs-0cM28whhhyIbzGw.roa (raw, json)
Hash identifier: CWz789mUcE8HseOhqnIL3sfzuTkMAtkZJLZUVX+a8yw=
Subject key identifier: A4:A3:C9:8B:2E:5A:5F:1B:3E:D1:C3:36:F3:08:61:87:22:1B:CC:6C
Certificate issuer: /CN=51e2be139ae779cd3d4feebccd368281a1f5e7a0
Certificate serial: 018414EC1064301D018163494E6FD65459AB
Authority key identifier: 51:E2:BE:13:9A:E7:79:CD:3D:4F:EE:BC:CD:36:82:81:A1:F5:E7:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeK-E5rnec09T-68zTaCgaH156A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2f5931-05a8-436b-9273-cd7b6edbfcf5/1/pKPJiy5aXxs-0cM28whhhyIbzGw.roa
Signing time: Wed 26 Oct 2022 15:32:05 +0000
ROA not before: Wed 26 Oct 2022 15:32:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5539
IP address blocks: 185.5.184.0/23 maxlen: 23
2a02:7c40::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:14:ec:10:64:30:1d:01:81:63:49:4e:6f:d6:54:59:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e2be139ae779cd3d4feebccd368281a1f5e7a0
Validity
Not Before: Oct 26 15:32:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4a3c98b2e5a5f1b3ed1c336f3086187221bcc6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5b:39:d1:ea:8e:e5:9c:e6:1a:98:e7:65:5d:
a9:d1:86:a7:d4:16:00:b5:f3:cb:62:25:36:ab:df:
38:fe:7d:0b:39:17:ca:a5:45:b5:58:f1:e8:6b:8e:
aa:37:7d:6d:5e:4a:42:cd:c1:be:ac:90:e2:eb:6e:
77:a4:37:30:6e:f1:3f:39:60:c9:1c:0a:15:38:62:
dc:17:d8:e5:6e:48:e0:a1:9c:79:6e:3c:4d:68:0f:
70:a9:6f:ec:82:e5:62:b6:b4:c3:56:44:7e:4b:3d:
73:29:49:fe:23:f2:46:6d:aa:33:10:e2:fb:d3:8b:
c7:84:4d:bf:99:a3:6f:ae:f9:ad:c1:44:3c:0b:bf:
63:e5:95:1a:46:5c:6e:14:90:f8:77:42:71:0f:1c:
09:3f:60:1c:b1:df:fe:5f:59:7e:45:73:e0:78:2e:
67:37:76:0d:76:8e:fb:91:bf:ec:98:ba:4d:bc:8c:
9d:21:65:ce:22:65:ba:95:c4:39:97:be:10:9c:6b:
5f:ac:5c:a9:d0:c7:63:da:e4:c8:08:2c:6c:a8:3a:
15:d0:62:42:19:ae:83:ef:1c:66:57:c4:7b:4c:52:
fd:35:38:88:37:c6:8e:5e:49:d3:0f:4e:7d:e9:35:
87:8d:76:79:3f:fa:ff:b7:1b:44:0b:39:5a:ad:ac:
6f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A3:C9:8B:2E:5A:5F:1B:3E:D1:C3:36:F3:08:61:87:22:1B:CC:6C
X509v3 Authority Key Identifier:
keyid:51:E2:BE:13:9A:E7:79:CD:3D:4F:EE:BC:CD:36:82:81:A1:F5:E7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeK-E5rnec09T-68zTaCgaH156A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2f5931-05a8-436b-9273-cd7b6edbfcf5/1/pKPJiy5aXxs-0cM28whhhyIbzGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2f5931-05a8-436b-9273-cd7b6edbfcf5/1/UeK-E5rnec09T-68zTaCgaH156A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.184.0/23
IPv6:
2a02:7c40::/33
Signature Algorithm: sha256WithRSAEncryption
71:19:08:44:d5:42:b6:84:b9:53:82:a6:8c:8a:c0:ee:54:96:
72:c8:99:d6:12:62:1b:58:af:c4:89:5c:89:36:4c:f6:1b:17:
33:de:17:fa:55:3b:07:5b:02:d7:2f:80:41:31:47:2e:29:2a:
52:9e:d2:8a:02:bd:ec:71:21:47:42:32:92:2d:e3:95:36:cb:
cc:37:35:e0:b0:e5:24:e5:92:f7:c0:48:65:af:7d:d8:79:9c:
06:9f:13:f6:13:1c:84:1d:03:86:d2:77:51:17:38:50:f1:5f:
25:00:df:1f:81:5d:89:61:6c:cf:5b:c0:16:ab:1f:02:ee:d4:
5f:77:06:12:76:26:51:7d:b9:6b:cb:16:0d:37:13:1e:a3:99:
6e:89:77:cc:8c:a7:50:cd:f5:74:51:fe:19:94:ca:1c:e8:bf:
f0:c3:df:a9:25:b2:12:4e:ea:07:05:9d:a8:19:9d:0c:86:8d:
a6:ff:31:bf:6d:d5:ae:ba:47:08:38:fb:55:56:a8:1e:76:c6:
e9:be:a9:fb:ec:ec:8e:e0:00:29:0e:5f:8a:da:8a:64:79:f3:
4b:bd:c7:19:a9:09:39:2b:65:8b:52:79:c2:65:55:23:b4:b6:
f7:77:73:ad:5f:cc:fa:e4:5b:7f:f1:dd:e0:75:5a:40:e1:85:
6b:90:d3:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:23 2024 by rpki-client on console-fra.rpki-client.org