Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/02c5ec-7c6f-4ae2-9897-3059c89b72ea/1/gzKq2tMrBCreLLWnIZRiI7WnjFc.roa
File: gzKq2tMrBCreLLWnIZRiI7WnjFc.roa (raw, json)
Hash identifier: yDkQPR3mVL5zv04nY+KWETFwIBpWiG9TMimyK+UvZ2I=
Subject key identifier: 83:32:AA:DA:D3:2B:04:2A:DE:2C:B5:A7:21:94:62:23:B5:A7:8C:57
Certificate issuer: /CN=4c54ecce6cbc9c54929eaa4b22b337b0fd9b36bf
Certificate serial: 1B6B6503
Authority key identifier: 4C:54:EC:CE:6C:BC:9C:54:92:9E:AA:4B:22:B3:37:B0:FD:9B:36:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TFTszmy8nFSSnqpLIrM3sP2bNr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/02c5ec-7c6f-4ae2-9897-3059c89b72ea/1/gzKq2tMrBCreLLWnIZRiI7WnjFc.roa
Signing time: Sat 01 Jan 2022 05:03:49 +0000
ROA not before: Sat 01 Jan 2022 05:03:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33941
IP address blocks: 195.82.96.0/24 maxlen: 24
195.82.107.0/24 maxlen: 24
83.136.120.0/21 maxlen: 21
212.85.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460023043 (0x1b6b6503)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c54ecce6cbc9c54929eaa4b22b337b0fd9b36bf
Validity
Not Before: Jan 1 05:03:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8332aadad32b042ade2cb5a721946223b5a78c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:16:6f:e2:b8:9b:df:5a:64:60:cb:e1:bd:d1:
69:e2:48:e5:61:34:34:92:34:61:f3:e1:7d:59:fd:
8f:1f:6d:ce:6c:71:27:29:58:cc:23:f9:d9:c5:55:
d3:96:75:0e:40:9d:2c:a8:ac:f3:a4:e9:8d:f7:6d:
44:06:a5:6b:42:55:b2:7a:43:a0:84:d7:c0:c8:21:
e6:ed:e8:f3:c1:41:96:04:4d:08:88:22:90:54:f9:
5d:1b:f0:45:ca:1f:56:06:d4:d2:d5:db:3f:8b:c7:
e5:55:1e:3e:39:7c:f8:d1:3c:87:cd:02:8c:99:57:
aa:db:06:80:9f:26:43:a8:b1:9d:f8:ec:e1:1b:d5:
5c:e7:96:11:36:46:cf:ab:59:4e:59:a0:00:90:dc:
88:d8:91:69:33:f2:f6:9b:50:d3:57:7e:5a:68:d3:
97:42:2d:8f:26:99:0e:75:3d:0d:af:ea:44:c2:40:
7d:b1:68:61:69:ff:99:a6:1f:18:ab:0d:64:3c:b6:
0f:b0:3a:ca:20:7c:18:9d:dc:a2:5e:29:8d:10:02:
28:47:32:50:12:2b:09:77:62:eb:f3:2a:ab:00:f4:
89:75:04:f9:e9:27:a5:bc:0a:0f:e9:e1:a0:78:bb:
14:38:fa:a2:50:e8:13:ae:5b:6d:60:6c:be:bb:52:
d6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:32:AA:DA:D3:2B:04:2A:DE:2C:B5:A7:21:94:62:23:B5:A7:8C:57
X509v3 Authority Key Identifier:
keyid:4C:54:EC:CE:6C:BC:9C:54:92:9E:AA:4B:22:B3:37:B0:FD:9B:36:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TFTszmy8nFSSnqpLIrM3sP2bNr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/02c5ec-7c6f-4ae2-9897-3059c89b72ea/1/gzKq2tMrBCreLLWnIZRiI7WnjFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/02c5ec-7c6f-4ae2-9897-3059c89b72ea/1/TFTszmy8nFSSnqpLIrM3sP2bNr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.120.0/21
195.82.96.0/24
195.82.107.0/24
212.85.248.0/22
Signature Algorithm: sha256WithRSAEncryption
c1:ab:c7:85:73:22:23:bb:08:61:04:5c:5f:89:ce:2a:08:1e:
36:ad:11:ba:3a:89:4d:d1:6b:7f:c0:58:c0:ee:7d:0a:ef:28:
75:32:08:fa:8b:ad:66:e6:99:2f:86:c0:ac:af:b6:a7:62:76:
a2:0c:63:df:e6:b8:6d:2a:63:53:0b:d8:46:e4:c2:8e:32:8f:
08:d3:da:49:50:56:c8:a6:18:27:47:5d:33:8f:99:9a:12:00:
d6:d1:7e:72:8a:31:32:2a:c0:8f:c7:91:79:56:22:09:a6:f8:
d9:f8:aa:f3:82:49:af:dc:98:21:1c:de:cf:71:cf:e2:d7:32:
02:59:67:93:90:74:46:24:c0:32:fe:8a:a0:f5:cd:3a:23:0c:
a8:14:da:bc:87:90:e6:04:81:ba:61:cc:02:09:b8:6b:90:e9:
4a:c0:02:3f:1b:37:a2:ac:f2:fc:96:8f:ec:3c:03:a4:a8:d4:
13:c2:c3:ea:58:9f:a2:57:54:c1:b2:fa:3c:f6:6f:2a:c1:ee:
6b:ad:fa:63:da:1f:aa:49:f0:f4:85:ea:f8:16:d7:b6:e8:06:
fd:b2:a1:06:6f:2f:7c:9f:f9:73:ca:6d:a0:5e:eb:cc:66:f5:
b3:8d:f3:22:96:0a:72:10:10:ff:a5:3c:ff:be:c9:ae:1f:c3:
3b:20:a5:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:09 2024 by rpki-client on console-ams.rpki-client.org