Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/327a54-6db2-4291-9434-ffc7f2a3198c/1/5BZFdyND9t1H5YOyzgL7BcC1ANM.roa
File: 5BZFdyND9t1H5YOyzgL7BcC1ANM.roa (raw, json)
Hash identifier: btzqy2nctJlTwINjEaZtF/9QqIKzNUD5Kb3pxv1hGrc=
Subject key identifier: E4:16:45:77:23:43:F6:DD:47:E5:83:B2:CE:02:FB:05:C0:B5:00:D3
Certificate issuer: /CN=0c5be6056eb0c3650b8fe21e2d726c1b83ec82b3
Certificate serial: 01828CD4F13B0D492C557107B0EAC76F30E9
Authority key identifier: 0C:5B:E6:05:6E:B0:C3:65:0B:8F:E2:1E:2D:72:6C:1B:83:EC:82:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFvmBW6ww2ULj-IeLXJsG4PsgrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/327a54-6db2-4291-9434-ffc7f2a3198c/1/5BZFdyND9t1H5YOyzgL7BcC1ANM.roa
Signing time: Thu 11 Aug 2022 12:15:41 +0000
ROA not before: Thu 11 Aug 2022 12:15:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15456
IP address blocks: 62.116.128.0/18 maxlen: 24
62.116.128.0/19 maxlen: 24
85.236.32.0/19 maxlen: 24
62.116.160.0/19 maxlen: 24
185.91.244.0/22 maxlen: 24
2001:4178::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:d4:f1:3b:0d:49:2c:55:71:07:b0:ea:c7:6f:30:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5be6056eb0c3650b8fe21e2d726c1b83ec82b3
Validity
Not Before: Aug 11 12:15:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e41645772343f6dd47e583b2ce02fb05c0b500d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:07:9d:b9:c6:c4:89:5c:f9:f3:7d:98:5e:3d:
d0:49:66:50:26:a0:c1:80:cd:cc:ec:47:50:b7:75:
2a:2f:68:e4:34:c0:1c:56:aa:01:f6:f7:3d:00:4c:
47:05:f1:b1:24:75:16:0c:d8:3f:46:32:b4:2d:fe:
2b:18:eb:5f:fb:f5:a1:1b:ad:fb:c1:60:ac:e4:63:
d8:63:ef:71:38:d9:60:19:ad:7b:20:ab:6a:a2:4c:
33:43:94:a0:34:eb:02:30:33:cb:85:e2:3b:cd:0f:
76:29:d8:31:43:70:d0:1c:7e:39:1e:1d:f9:08:13:
68:0d:7a:35:77:ab:fd:c0:ba:91:cc:96:60:7a:99:
08:f0:e2:f5:4d:1a:17:74:13:15:a8:19:4b:bf:82:
6e:09:fc:4b:21:bb:6f:19:4b:05:56:0b:13:b9:98:
1a:2d:c1:cb:23:7d:6c:68:7f:13:67:4f:6e:9d:1f:
8a:07:10:63:30:ed:3f:11:39:be:68:73:f7:4d:5e:
d0:64:00:ba:c8:b8:12:f9:b2:fd:21:1c:ff:fe:d3:
11:c2:36:5a:b2:b3:a8:5b:54:20:8f:13:3c:bc:18:
3f:80:0e:7f:7e:d3:4c:b9:64:e3:2c:fb:cd:6c:92:
a2:21:63:02:3b:3d:1e:7c:da:6c:81:34:f3:02:94:
cd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:16:45:77:23:43:F6:DD:47:E5:83:B2:CE:02:FB:05:C0:B5:00:D3
X509v3 Authority Key Identifier:
keyid:0C:5B:E6:05:6E:B0:C3:65:0B:8F:E2:1E:2D:72:6C:1B:83:EC:82:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFvmBW6ww2ULj-IeLXJsG4PsgrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/327a54-6db2-4291-9434-ffc7f2a3198c/1/5BZFdyND9t1H5YOyzgL7BcC1ANM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/327a54-6db2-4291-9434-ffc7f2a3198c/1/DFvmBW6ww2ULj-IeLXJsG4PsgrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.116.128.0/18
85.236.32.0/19
185.91.244.0/22
IPv6:
2001:4178::/29
Signature Algorithm: sha256WithRSAEncryption
42:03:30:b0:af:ad:1f:06:79:11:47:38:76:b5:20:76:d5:26:
ca:53:21:02:4d:3f:09:7a:8a:df:3f:86:c4:92:7b:c5:8e:86:
75:1e:c3:82:29:ca:c6:92:c3:fc:22:9b:4b:c6:b5:18:f7:d1:
66:23:d3:28:98:48:34:3e:7b:cb:7c:a6:fd:4c:b2:84:05:a6:
92:08:c4:06:5f:bc:5e:e2:87:84:f6:8f:2f:86:17:77:f6:a6:
fc:82:d3:8d:f0:65:85:e8:aa:56:77:17:09:75:7b:31:5c:15:
38:6b:93:0f:63:a5:b6:b1:e3:91:82:55:c9:4d:17:fd:4e:aa:
b3:96:25:e4:6a:32:0b:aa:c0:39:d2:3f:55:c2:c4:26:dc:d3:
fa:c2:a3:01:51:52:9a:bc:e7:78:44:65:42:de:49:b9:7b:3b:
10:9f:a3:56:4b:1d:74:9a:9e:41:e1:94:a6:e1:8b:cb:bf:35:
18:09:3b:94:26:cd:7b:a0:7a:89:85:f1:58:a4:71:46:2f:df:
fa:54:76:cd:15:46:2c:d7:ce:21:86:c7:09:92:80:54:bc:94:
ab:ef:4b:b9:4e:46:d3:47:99:f9:26:62:a6:18:88:a1:df:3b:
9b:7c:87:8d:4c:50:16:e9:0b:4f:e4:81:2c:49:c0:b2:fc:75:
05:8e:d5:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:26 2024 by rpki-client on console-fra.rpki-client.org