Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/gVwohPQYuAKgauAOArQsRt5y4iI.roa
File: gVwohPQYuAKgauAOArQsRt5y4iI.roa (raw, json)
Hash identifier: zxtLjb8IlSCO6duCoF++8C3vQdUam8Dv1NrIOOfIqAU=
Subject key identifier: 81:5C:28:84:F4:18:B8:02:A0:6A:E0:0E:02:B4:2C:46:DE:72:E2:22
Certificate issuer: /CN=4f99e4eae48a01c781faad11f6d81a91ea33bdff
Certificate serial: 381CA11D
Authority key identifier: 4F:99:E4:EA:E4:8A:01:C7:81:FA:AD:11:F6:D8:1A:91:EA:33:BD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5nk6uSKAceB-q0R9tgakeozvf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/gVwohPQYuAKgauAOArQsRt5y4iI.roa
Signing time: Sat 01 Jan 2022 12:55:30 +0000
ROA not before: Sat 01 Jan 2022 12:55:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57752
IP address blocks: 185.54.36.0/22 maxlen: 22
109.205.64.0/21 maxlen: 21
2a03:dc00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941400349 (0x381ca11d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f99e4eae48a01c781faad11f6d81a91ea33bdff
Validity
Not Before: Jan 1 12:55:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=815c2884f418b802a06ae00e02b42c46de72e222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2a:43:cd:0c:9d:4e:96:e3:72:c5:c1:69:c4:
c6:b4:19:7f:d1:87:8a:aa:7e:66:40:42:f8:65:22:
14:90:60:46:83:17:9a:ed:4b:64:45:0b:3d:6b:19:
f2:6a:48:20:00:2c:58:42:6b:68:96:41:2f:56:94:
af:c9:c0:2e:ec:d7:cd:ff:8f:3d:58:dd:b7:80:cd:
b5:54:23:43:1d:7f:7a:b9:3a:10:70:59:ec:5b:f7:
15:c7:5a:58:8e:74:10:02:c2:17:b6:0a:ec:74:d2:
85:1e:17:8c:75:1b:f3:24:f7:4e:f9:bc:88:99:95:
ea:02:0a:b7:57:c5:be:5e:a8:bb:81:28:5e:a6:66:
7e:12:83:9d:a7:3f:ed:ed:46:9c:3f:46:77:86:c5:
1b:b6:67:21:0b:34:40:a8:6a:bb:f2:8a:44:ff:17:
10:dd:95:3c:06:c6:b7:5d:0c:4c:fb:0c:fa:58:78:
bc:59:c4:41:24:43:66:87:3b:64:1b:7d:9e:9b:b5:
6b:30:6c:bd:d9:dd:d9:a4:57:e3:74:09:ec:3c:39:
3b:34:19:e0:d6:4f:7a:c9:c7:8c:15:e7:d8:fb:71:
41:d3:c2:f2:b2:8c:84:13:f9:dc:cc:17:05:04:f9:
89:87:61:d3:1a:8e:bc:4d:2c:8e:49:af:0a:cb:98:
f6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5C:28:84:F4:18:B8:02:A0:6A:E0:0E:02:B4:2C:46:DE:72:E2:22
X509v3 Authority Key Identifier:
keyid:4F:99:E4:EA:E4:8A:01:C7:81:FA:AD:11:F6:D8:1A:91:EA:33:BD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5nk6uSKAceB-q0R9tgakeozvf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/gVwohPQYuAKgauAOArQsRt5y4iI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/T5nk6uSKAceB-q0R9tgakeozvf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.64.0/21
185.54.36.0/22
IPv6:
2a03:dc00::/32
Signature Algorithm: sha256WithRSAEncryption
8d:77:33:61:3b:b3:77:d4:b2:f6:94:b1:9f:5b:b9:f8:61:e8:
fe:55:51:c5:b0:0b:a6:bc:c1:d4:d8:f3:f7:b6:2d:9f:b7:b8:
7e:fc:a2:da:c2:f5:23:2f:d0:47:5f:de:ad:ff:d5:96:f1:fa:
b0:30:58:b9:4e:2f:be:f0:34:04:9a:94:fb:4f:c0:b4:50:65:
7f:05:41:00:38:3f:e0:94:dc:dc:2a:6b:26:f4:bb:6d:0f:5d:
0b:59:ca:59:9f:4f:d6:f3:ab:90:8f:70:1a:a7:86:f4:fe:ec:
2f:aa:33:ac:71:b9:7c:21:58:94:d4:34:64:bf:fd:be:40:b0:
ba:df:f0:02:e6:5f:0e:42:1b:03:12:31:ca:25:d8:f8:c9:af:
dd:5d:5d:c0:bc:b1:c4:0c:b0:d9:dc:8f:8f:bb:ac:a9:5f:f4:
ca:1b:08:56:bc:9d:7c:14:18:76:92:42:e8:d2:0c:85:8d:bf:
7f:b2:e2:41:9d:41:1e:65:2a:fd:40:e7:25:e1:95:59:61:d3:
81:c2:b0:d3:93:7a:0b:95:5c:a5:05:30:0b:36:e8:d6:d9:e0:
b1:67:35:52:f7:b1:a5:4d:a4:2e:a8:86:39:96:e4:c9:e2:59:
bd:86:7d:84:cb:0d:2b:38:6e:ab:9a:23:37:dd:cc:a1:30:b5:
f7:67:2c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:04 2023 by rpki-client on console.sobornost.net