Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/R7PwUkCCa3h8qGz3jMOBfCooMcI.roa
File: R7PwUkCCa3h8qGz3jMOBfCooMcI.roa (raw, json)
Hash identifier: M3BQFZ9vSAv6eIQFbnmlZkre+ydCE8a/zxdpBLsRoJA=
Subject key identifier: 47:B3:F0:52:40:82:6B:78:7C:A8:6C:F7:8C:C3:81:7C:2A:28:31:C2
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 36AFACBA
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/R7PwUkCCa3h8qGz3jMOBfCooMcI.roa
Signing time: Mon 23 May 2022 07:50:50 +0000
ROA not before: Mon 23 May 2022 07:50:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210097
IP address blocks: 84.124.62.0/24 maxlen: 24
82.159.153.0/24 maxlen: 24
62.82.51.0/24 maxlen: 24
95.39.61.0/24 maxlen: 24
5.40.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 917482682 (0x36afacba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: May 23 07:50:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47b3f05240826b787ca86cf78cc3817c2a2831c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9e:26:98:b0:22:70:1d:94:9f:c2:f9:74:0c:
e4:48:de:03:61:18:f8:8d:cb:d4:2b:91:10:2c:38:
0c:2e:bc:65:16:2a:60:af:7e:58:94:f9:3f:a1:b0:
c2:dd:eb:db:89:0e:0d:0d:6b:86:0a:eb:dd:35:81:
ae:16:28:92:57:16:d7:ed:b5:4d:4e:d9:a3:ea:03:
3c:c5:45:7b:9a:e0:9f:ee:c5:d5:ef:90:d8:11:c4:
cb:20:c8:c8:0f:0e:ac:89:64:d5:a3:16:98:4a:44:
30:22:ab:76:33:9b:e6:e9:37:f5:74:23:40:90:37:
2b:0c:52:ba:f4:f8:9f:40:27:db:f3:d5:c3:d3:39:
38:e6:2b:d1:9e:fb:26:c1:21:79:f7:db:ac:5d:73:
67:80:5d:de:08:af:d0:c4:f6:e7:69:44:72:3e:92:
6f:b3:a1:67:56:fd:e6:05:1a:e6:4b:a1:fd:38:73:
31:11:67:7c:30:d3:29:98:6e:54:a7:8e:bb:ec:c8:
60:ec:3b:4a:ae:78:70:a8:e1:36:68:6c:c0:de:4d:
8c:65:0f:63:76:73:bb:28:01:e1:de:ef:12:6c:a0:
76:93:89:ed:8c:9c:5a:f4:23:76:56:59:1c:56:1e:
d1:6d:ef:50:2f:62:e4:7b:32:70:4e:fd:44:27:dc:
af:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B3:F0:52:40:82:6B:78:7C:A8:6C:F7:8C:C3:81:7C:2A:28:31:C2
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/R7PwUkCCa3h8qGz3jMOBfCooMcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.40.136.0/24
62.82.51.0/24
82.159.153.0/24
84.124.62.0/24
95.39.61.0/24
Signature Algorithm: sha256WithRSAEncryption
00:ac:63:f4:79:82:9e:43:05:b5:42:cd:ae:85:16:61:af:73:
cc:9d:12:b8:03:2a:9e:5d:ac:b2:aa:fc:c1:01:6d:95:ec:8d:
2e:b9:05:6e:6b:97:40:1c:f7:6a:20:a7:29:0a:a6:ed:b2:a6:
7b:56:a1:ea:96:fe:36:9a:bc:3c:76:6f:11:08:5e:c7:73:9b:
48:97:d1:08:fa:cd:dd:5b:57:f9:d6:9a:e4:40:bf:06:53:72:
f0:d6:eb:9a:10:db:82:47:6a:d6:f5:5d:44:9c:2d:de:ef:ca:
0c:83:e2:fd:f1:e4:dd:ed:0b:bc:1a:d6:9c:89:a1:31:27:a1:
ad:15:46:4b:09:28:be:e0:d7:7e:11:71:be:8c:5e:65:aa:45:
9b:6b:0b:6a:d3:a3:ba:12:1e:89:1c:da:44:ef:50:fb:29:13:
01:c6:65:55:1c:c0:ae:70:98:66:52:1d:5b:a3:3c:17:ce:03:
f4:20:5b:26:e5:ea:c7:0a:f6:d6:72:81:d4:ee:b9:e5:f3:27:
99:6f:89:4c:4a:3e:5c:d5:a1:55:e0:94:b7:22:4f:8b:85:06:
50:9a:34:83:fd:c8:3d:fb:99:f6:31:6b:01:b3:0d:00:3d:80:
e3:3a:ff:eb:18:47:48:ef:78:88:64:de:bb:6d:0b:1b:90:3f:
8b:6b:ca:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:48 2023 by rpki-client on console-ams.rpki-client.org