Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/kPnc2yZROt2a2siZmjDNa5zV7YM.roa
File: kPnc2yZROt2a2siZmjDNa5zV7YM.roa (raw, json)
Hash identifier: TEFACrCmy1lIGBLX56QBfl+PIaunXIqXCdiRsb1GYnI=
Subject key identifier: 90:F9:DC:DB:26:51:3A:DD:9A:DA:C8:99:9A:30:CD:6B:9C:D5:ED:83
Certificate issuer: /CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Certificate serial: 1C5FAC77
Authority key identifier: 13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/kPnc2yZROt2a2siZmjDNa5zV7YM.roa
Signing time: Sat 01 Jan 2022 06:56:16 +0000
ROA not before: Sat 01 Jan 2022 06:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 185.5.44.0/24 maxlen: 24
185.5.46.0/24 maxlen: 24
185.5.47.0/24 maxlen: 24
2a02:7ac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 476032119 (0x1c5fac77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Validity
Not Before: Jan 1 06:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90f9dcdb26513add9adac8999a30cd6b9cd5ed83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e1:3b:f0:99:ea:ad:2a:6f:58:07:e6:00:6d:
fc:a6:e5:28:09:87:35:49:46:15:bf:64:46:f5:0c:
36:b3:9b:60:ea:6b:d2:78:b0:c9:c2:72:25:d1:64:
ba:e6:c1:4f:fc:99:93:48:51:58:f3:55:4e:ee:f0:
fc:a2:77:5f:d9:ae:64:86:eb:3a:6f:74:93:75:64:
ee:dd:93:d1:92:f6:4f:07:67:b9:5a:59:1f:69:f8:
4b:0f:9b:d2:66:03:71:62:e3:8f:15:e1:71:75:cf:
1a:0b:bb:83:e8:a4:f1:7e:9a:69:ae:54:90:f3:d6:
dc:6b:63:ec:a6:fa:2d:eb:f7:cc:79:0d:24:9a:ea:
f0:d8:a0:82:e1:bb:13:2b:3b:0f:34:33:f4:57:3b:
76:a5:e9:06:34:65:16:a9:e2:33:f7:42:77:c1:54:
ac:47:c3:b7:df:d7:a9:3b:1a:94:65:29:38:93:d3:
e5:39:d7:4c:05:cc:51:80:99:ca:3b:6d:e5:2e:f0:
aa:ef:89:54:93:b8:c6:07:2b:57:f4:f8:6d:09:59:
17:23:bb:68:20:ab:e7:b6:d0:04:34:fc:1a:c7:df:
90:72:7a:5e:59:1e:7b:f6:ef:47:d5:d0:e1:23:48:
d4:86:67:84:68:0d:ec:4d:c9:a0:ce:aa:0c:f2:e9:
1b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F9:DC:DB:26:51:3A:DD:9A:DA:C8:99:9A:30:CD:6B:9C:D5:ED:83
X509v3 Authority Key Identifier:
keyid:13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/kPnc2yZROt2a2siZmjDNa5zV7YM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/EzzXwanHnILu5chqQjwXwdY8NBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.44.0/24
185.5.46.0/23
IPv6:
2a02:7ac0::/32
Signature Algorithm: sha256WithRSAEncryption
c4:17:25:e5:5c:0d:46:c8:59:f4:0e:6b:c7:13:a4:3b:23:42:
e7:6a:be:ea:3a:43:84:e2:db:a8:7e:5c:76:de:ea:73:c0:b3:
90:0d:5e:18:be:63:6a:d8:ea:fb:41:64:ce:6b:01:11:02:06:
87:f3:62:3b:02:84:f7:44:3e:1f:87:cb:b0:30:c3:97:cf:e3:
82:c7:13:8d:b5:25:b7:fa:cb:2e:0b:32:32:d4:e3:bf:ad:34:
2e:78:73:67:40:a5:e6:a9:f4:e7:8a:67:2e:26:a6:33:11:37:
66:b6:fe:c8:13:54:34:69:33:16:2f:df:b4:f7:4b:47:2f:85:
60:5b:32:ec:1a:1f:a5:c3:b2:c0:04:13:7a:45:ce:50:b7:03:
05:d0:26:50:13:c8:66:55:6f:8c:40:d2:d7:8a:29:88:1a:70:
0f:af:28:df:56:6e:82:d5:4a:bc:4c:7a:d8:62:57:b6:25:fa:
b1:10:47:42:6f:36:15:2b:89:c0:5e:b5:e1:4f:ba:ab:49:ba:
12:c1:25:88:90:1e:bb:f0:56:8e:08:ae:ea:0d:f2:80:4a:84:
a2:9f:1f:ca:43:a3:3b:49:3c:5c:1c:c6:e6:bd:94:b3:8c:21:
91:d7:6a:2e:f1:35:f6:43:2a:7b:b6:10:3b:27:10:92:eb:e1:
22:57:f5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:09 2024 by rpki-client on console-fra.rpki-client.org