Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/cpr0jQBjp677cLRirYerR26R37U.roa
File: cpr0jQBjp677cLRirYerR26R37U.roa (raw, json)
Hash identifier: vSo02lTb7JZ0Q3Z0Cmpz2WZLwlEHwwPULppyX6lpWNM=
Subject key identifier: 72:9A:F4:8D:00:63:A7:AE:FB:70:B4:62:AD:87:AB:47:6E:91:DF:B5
Certificate issuer: /CN=af935603e52e831537716d458b360192f99a3689
Certificate serial: 0182C58BE43491897AEFB4BD88E933B4490B
Authority key identifier: AF:93:56:03:E5:2E:83:15:37:71:6D:45:8B:36:01:92:F9:9A:36:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5NWA-UugxU3cW1FizYBkvmaNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/cpr0jQBjp677cLRirYerR26R37U.roa
Signing time: Mon 22 Aug 2022 12:34:15 +0000
ROA not before: Mon 22 Aug 2022 12:34:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202152
IP address blocks: 185.49.132.0/23 maxlen: 23
185.49.134.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:8b:e4:34:91:89:7a:ef:b4:bd:88:e9:33:b4:49:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af935603e52e831537716d458b360192f99a3689
Validity
Not Before: Aug 22 12:34:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=729af48d0063a7aefb70b462ad87ab476e91dfb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:47:76:d0:3c:26:b5:da:f2:35:7e:33:f0:80:
7f:14:1e:7e:f7:80:94:b8:17:6c:11:b4:ef:c6:8b:
d0:9e:2d:6a:3f:79:76:53:bf:76:fb:a3:ce:d5:5b:
90:c3:ef:cb:e8:35:2a:8d:e1:21:3d:0e:63:a2:4a:
1f:f1:73:56:da:ec:5b:51:38:91:eb:d9:46:18:1f:
91:28:e7:27:52:c2:e0:08:d3:d3:78:cc:78:52:fe:
a8:a9:58:6b:f4:03:1e:e0:28:42:03:a5:ed:d6:91:
5b:cd:87:c2:13:65:ea:e7:8d:25:48:6a:a6:c7:68:
98:fa:b6:0c:79:4f:7a:7e:fd:f3:20:0d:12:6c:a2:
7c:a6:7d:4e:f8:98:2e:4d:4e:be:a8:e9:12:0c:02:
b7:79:c6:fe:d2:c9:10:65:56:77:1e:94:69:da:23:
5c:39:2e:97:bf:f2:85:14:97:dc:93:3d:c3:53:9d:
06:1d:53:c9:b8:66:24:7e:91:82:a0:66:78:19:21:
9a:83:2d:ae:83:0b:9e:9c:53:4e:90:5c:67:b8:c5:
4f:a6:2c:ad:34:90:da:4a:f7:ea:26:cd:cf:87:49:
dd:d0:6d:ba:30:0f:38:c3:a8:c7:58:56:6a:b9:2e:
52:42:36:6c:17:81:81:c6:ae:59:68:90:a9:ef:a2:
6f:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9A:F4:8D:00:63:A7:AE:FB:70:B4:62:AD:87:AB:47:6E:91:DF:B5
X509v3 Authority Key Identifier:
keyid:AF:93:56:03:E5:2E:83:15:37:71:6D:45:8B:36:01:92:F9:9A:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5NWA-UugxU3cW1FizYBkvmaNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/cpr0jQBjp677cLRirYerR26R37U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3001ad-de90-4360-811f-0a0d05ed0c6b/1/r5NWA-UugxU3cW1FizYBkvmaNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.132.0/22
Signature Algorithm: sha256WithRSAEncryption
59:bb:d4:b7:1b:19:65:f6:0a:9f:a0:44:5f:6e:70:5b:9d:b1:
2b:74:6c:8b:86:14:51:4b:c3:c1:fc:ad:88:a0:83:d1:cf:2b:
dd:fa:8e:4a:d9:72:e7:7d:2a:cb:0c:57:e4:37:ee:10:ed:04:
0d:7d:a7:5b:95:ae:43:d8:a4:31:d4:22:f1:dc:1f:35:5c:3f:
36:b9:8f:5a:82:14:3d:90:55:c5:12:5d:91:0c:5b:f6:d5:17:
9e:aa:8f:5e:ef:67:fc:d6:c3:2a:10:64:09:de:4a:82:c4:4d:
8e:aa:a3:c3:9d:3d:d0:f1:e5:be:a3:61:6e:41:b8:b9:9f:a3:
b8:b3:16:d8:43:a5:21:04:ef:7f:8c:b7:ab:2c:af:da:c8:29:
1e:ac:5e:35:78:92:14:cc:2e:b7:b0:8a:50:88:1f:4b:99:6d:
0a:0c:c6:b2:74:44:2b:52:51:2e:22:0f:55:11:cd:03:37:42:
68:c7:7e:8b:2e:77:6f:3c:94:ec:73:86:63:c0:47:14:10:8a:
99:71:ae:09:71:c8:40:d7:2b:e2:54:95:c8:ed:ca:8c:2d:81:
06:b4:52:06:54:c5:02:cb:68:6b:e0:d7:43:61:22:e2:16:e4:
58:52:e6:04:2f:f2:bb:ac:fa:95:11:15:c8:d9:d5:c6:65:c7:
50:8c:a6:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:43 2024 by rpki-client on console-fra.rpki-client.org