Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/8d7c02-b38d-4d65-af35-837d0031b3d1/1/E2ndgrLi-TcZ6-B4m62NAFwT6Vs.roa
File: E2ndgrLi-TcZ6-B4m62NAFwT6Vs.roa (raw, json)
Hash identifier: XWKUycmOk2ByPbVTkuASwDWM/g8yafsM8QyKWn1Kc6E=
Subject key identifier: 13:69:DD:82:B2:E2:F9:37:19:EB:E0:78:9B:AD:8D:00:5C:13:E9:5B
Certificate issuer: /CN=4a222ed1b8a533858f4658c5d2539faf52abdaa7
Certificate serial: 0F33B7E8
Authority key identifier: 4A:22:2E:D1:B8:A5:33:85:8F:46:58:C5:D2:53:9F:AF:52:AB:DA:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiIu0bilM4WPRljF0lOfr1Kr2qc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/8d7c02-b38d-4d65-af35-837d0031b3d1/1/E2ndgrLi-TcZ6-B4m62NAFwT6Vs.roa
Signing time: Sat 01 Jan 2022 02:00:55 +0000
ROA not before: Sat 01 Jan 2022 02:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49952
IP address blocks: 185.197.208.0/24 maxlen: 24
91.213.224.0/24 maxlen: 24
2a00:e4a0:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255047656 (0xf33b7e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a222ed1b8a533858f4658c5d2539faf52abdaa7
Validity
Not Before: Jan 1 02:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1369dd82b2e2f93719ebe0789bad8d005c13e95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8d:70:91:76:46:c0:af:c4:be:bf:8b:b7:bb:
2a:fe:55:9a:64:9a:3e:ce:02:10:17:67:31:25:5c:
64:50:fe:cf:17:47:a6:36:07:46:30:1d:af:9c:e9:
bb:7d:b4:1c:2f:5f:dd:00:95:0a:02:c5:40:9b:51:
8e:2a:ab:5c:1d:0f:7d:23:63:d5:26:d3:4f:54:99:
50:b2:94:7b:4f:22:13:52:16:42:34:83:64:94:33:
c9:58:de:a1:6f:ef:14:9e:5a:27:37:39:fd:a6:ce:
be:f1:4b:ce:73:24:3a:4d:46:0a:89:9e:5d:b3:18:
96:45:2b:11:32:03:fc:40:90:07:76:f3:df:c2:97:
49:28:66:66:35:45:43:20:46:f2:01:8f:04:b5:78:
35:2f:fc:b0:10:71:d6:32:1c:07:ec:bc:67:f6:d3:
b8:53:a1:8a:59:da:90:28:07:6f:cf:30:8b:57:1d:
e0:54:87:72:38:2a:ec:57:da:a1:f4:b8:aa:20:70:
13:e2:db:5d:c3:0e:74:97:b5:63:ed:81:61:76:b7:
fb:e2:e8:a4:e7:6a:e5:34:90:e5:5d:38:d1:7b:46:
be:5d:a4:f7:6c:e2:b1:69:d1:40:56:f4:4c:ce:e7:
34:13:dd:25:31:23:81:30:3b:cd:ab:a9:08:96:12:
f8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:69:DD:82:B2:E2:F9:37:19:EB:E0:78:9B:AD:8D:00:5C:13:E9:5B
X509v3 Authority Key Identifier:
keyid:4A:22:2E:D1:B8:A5:33:85:8F:46:58:C5:D2:53:9F:AF:52:AB:DA:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiIu0bilM4WPRljF0lOfr1Kr2qc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/8d7c02-b38d-4d65-af35-837d0031b3d1/1/E2ndgrLi-TcZ6-B4m62NAFwT6Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/8d7c02-b38d-4d65-af35-837d0031b3d1/1/SiIu0bilM4WPRljF0lOfr1Kr2qc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.224.0/24
185.197.208.0/24
IPv6:
2a00:e4a0:100::/40
Signature Algorithm: sha256WithRSAEncryption
5c:3f:9c:40:53:64:52:c6:34:d0:06:a9:ca:3f:10:0e:35:13:
d4:e2:21:4b:ab:c5:f9:3d:cf:aa:ce:2e:e6:d3:02:ef:8f:dd:
22:b1:d7:a3:18:ae:f4:b9:8b:3c:11:f0:62:30:60:86:41:cc:
42:d3:01:cf:89:8a:55:41:e0:e7:93:e5:af:b6:b7:da:54:77:
62:a3:5d:12:a5:65:32:42:4c:75:08:a4:6f:d3:da:0f:de:f2:
19:76:fd:47:c5:54:85:11:fe:97:40:3f:ca:81:36:4e:bb:16:
b3:95:e0:89:cc:77:36:26:ff:f0:6e:4d:fd:f5:69:19:d4:74:
6d:76:9c:c7:a0:5d:7c:f6:58:65:c2:69:ce:12:59:e1:de:48:
a7:06:84:15:69:91:91:2a:2f:4d:cb:d9:b3:bd:c0:ce:cd:6f:
55:e1:cb:96:78:fb:36:45:e0:9f:17:ca:25:bb:7e:ca:4e:26:
08:7b:57:86:e4:fe:7f:a4:28:2b:e3:81:b0:0f:28:29:d4:97:
44:91:5b:f1:b1:bc:4b:78:ba:5e:13:d7:72:4b:34:70:80:29:
1e:42:56:7d:76:0b:04:8e:24:6e:b0:35:73:23:4b:dc:c9:76:
66:cd:dc:73:45:31:8d:b6:ac:0d:c5:8a:09:89:19:12:41:e6:
dc:69:c5:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:44:34 2023 by rpki-client on console.sobornost.net