Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/lkIYN3EoyJYDzWAaB4xCtP9_jxQ.roa
File: lkIYN3EoyJYDzWAaB4xCtP9_jxQ.roa (raw, json)
Hash identifier: 8WkWxwmnT5Ln0dUuNe05CIGrtOtA0o0JwsURQyd/crM=
Subject key identifier: 96:42:18:37:71:28:C8:96:03:CD:60:1A:07:8C:42:B4:FF:7F:8F:14
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 330757E5
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/lkIYN3EoyJYDzWAaB4xCtP9_jxQ.roa
Signing time: Sat 01 Jan 2022 09:58:39 +0000
ROA not before: Sat 01 Jan 2022 09:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21219
IP address blocks: 77.88.200.0/21 maxlen: 24
195.114.133.0/24 maxlen: 24
5.1.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 856119269 (0x330757e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 1 09:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=964218377128c89603cd601a078c42b4ff7f8f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:79:26:f1:87:25:54:62:f4:fa:56:fe:8f:
1b:11:36:b8:62:b9:12:34:8c:8e:a5:d3:aa:25:e9:
cc:e5:bd:f0:12:9d:68:7c:a7:91:a5:80:eb:70:46:
0f:fc:92:f4:1b:df:c6:2c:40:04:f8:3d:ce:71:6a:
8e:d7:0b:ba:a9:3a:4c:22:d5:8c:7e:19:b0:9e:ea:
37:27:95:79:9b:bf:e1:24:52:b9:9c:e6:6e:7b:8b:
43:4a:e9:04:b0:e6:0f:98:20:b9:10:90:61:19:47:
87:ac:7b:e0:53:ac:b2:61:5d:e4:94:df:c2:25:ff:
00:b0:90:ac:0d:d5:81:43:84:87:96:7f:c5:5b:00:
0c:08:5e:91:8f:df:c0:af:4d:06:b0:6c:d1:a9:df:
92:41:25:e5:11:29:a8:cb:5d:48:81:fa:b5:99:cc:
a7:09:35:de:9f:20:01:7d:39:2c:9b:74:d2:3f:72:
13:d3:ac:49:2d:e3:7b:93:f1:4d:db:0e:bc:b6:3e:
bf:d5:7b:8a:b1:45:72:33:87:db:1d:19:5f:e6:25:
54:ed:8a:9c:ef:e5:cd:05:eb:5d:d2:ea:3b:83:47:
1a:35:9e:91:6c:8d:3c:0a:40:70:9c:5f:68:7c:e0:
6d:df:58:12:46:7c:79:6e:7c:04:38:ba:a6:ba:ee:
1d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:42:18:37:71:28:C8:96:03:CD:60:1A:07:8C:42:B4:FF:7F:8F:14
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/lkIYN3EoyJYDzWAaB4xCtP9_jxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.0.0/19
77.88.200.0/21
195.114.133.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:5f:d4:33:f3:96:ef:03:3d:17:c1:d0:fd:7a:3e:cc:ae:28:
d0:83:c0:51:ac:4a:b9:0c:3d:f4:61:a5:96:3e:aa:ae:e0:c4:
0a:cf:83:ab:2c:fa:5c:84:e4:a6:bf:80:be:15:3f:ed:be:77:
77:5f:fc:3f:f2:78:68:f2:7d:f1:6b:7c:ed:a4:8f:23:ab:57:
16:2a:28:01:bb:8a:14:c9:23:6a:d2:72:e4:2e:80:01:9c:b3:
15:03:b5:30:41:23:c2:6a:06:3d:c3:4c:4e:16:a9:a7:b1:bc:
d4:ec:1e:26:a8:79:4a:f3:cb:ec:34:b8:68:a0:74:b3:c1:31:
22:87:99:89:4e:cd:e7:04:18:72:67:06:11:6a:a2:08:9d:78:
73:75:2e:91:88:a3:69:ab:0b:65:63:67:10:dd:c8:70:fd:e8:
9a:73:f7:ee:9d:00:2b:e5:ea:34:f3:bf:44:d6:57:d8:b0:eb:
1c:14:ac:b7:84:27:50:4b:4c:a4:08:3c:4b:96:2a:a6:29:c2:
a1:55:4d:cb:1c:1e:28:26:de:8b:b8:2b:b0:b7:03:e0:6a:63:
43:48:e4:d1:9a:78:9a:17:2b:a0:4f:49:04:f0:39:82:34:f4:
85:e2:46:19:05:1a:13:61:27:31:a4:30:8d:a7:c9:d5:cd:d1:
99:43:50:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:32 2024 by rpki-client on console-fra.rpki-client.org