Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/2DiStUOFQpXA4FgeAB-4gLBfKok.roa
File: 2DiStUOFQpXA4FgeAB-4gLBfKok.roa (raw, json)
Hash identifier: gclfGAx1hn6KcuKm43r++d0PVxcPIclsg/sjp9FYkBk=
Subject key identifier: D8:38:92:B5:43:85:42:95:C0:E0:58:1E:00:1F:B8:80:B0:5F:2A:89
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 0FFB45A6
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/2DiStUOFQpXA4FgeAB-4gLBfKok.roa
Signing time: Sat 01 Jan 2022 08:53:43 +0000
ROA not before: Sat 01 Jan 2022 08:53:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44152
IP address blocks: 82.98.90.0/24 maxlen: 24
82.98.75.80/29 maxlen: 32
82.98.94.120/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268125606 (0xffb45a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 1 08:53:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d83892b543854295c0e0581e001fb880b05f2a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c3:46:f4:aa:f1:05:93:b3:4e:84:56:6f:39:
2a:53:31:67:a1:f7:8d:7d:ad:8b:94:95:68:cc:27:
3d:d7:dd:29:15:93:ee:b3:2a:53:cf:32:a4:65:0b:
12:5c:01:b5:bc:41:47:9d:bf:ff:21:a4:34:5f:16:
66:18:0b:c2:2b:00:51:6c:e2:ea:9a:0b:b6:97:98:
ce:33:8c:07:98:c8:39:b8:82:2b:5f:8f:32:de:e4:
a9:34:30:8a:80:0d:f7:57:6b:9b:0a:84:9c:8d:65:
c5:85:f4:c1:05:7a:0f:8e:74:d9:68:7b:61:85:ae:
5a:5c:e6:bb:bd:ef:98:da:1a:32:e0:19:b7:a3:8d:
b8:6b:38:2f:b0:5d:f1:9e:03:82:c8:44:43:de:de:
96:1c:2e:2f:38:2e:cd:9b:d6:cd:b4:bb:aa:e9:3d:
cf:3c:f0:55:cc:ab:0b:8c:73:96:e7:77:89:a9:9d:
08:95:7c:54:a0:4f:18:79:2b:8c:28:66:11:b7:90:
c1:83:c7:f6:42:87:70:fd:5f:5b:23:36:a6:ec:be:
14:c5:1d:36:14:2d:36:45:d0:13:15:bf:40:5f:b1:
10:f4:3a:59:ba:fb:26:79:71:81:bf:97:81:a7:91:
0f:a5:9f:43:e9:bc:b8:3c:3f:e3:ac:6f:73:29:70:
e3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:38:92:B5:43:85:42:95:C0:E0:58:1E:00:1F:B8:80:B0:5F:2A:89
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/2DiStUOFQpXA4FgeAB-4gLBfKok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.75.80/29
82.98.90.0/24
82.98.94.120/29
Signature Algorithm: sha256WithRSAEncryption
ba:0c:6a:2b:82:7e:cf:be:e5:68:44:c7:2f:b3:70:b7:a4:84:
7e:83:52:04:40:7a:9e:16:a6:43:62:95:02:2a:0d:08:1a:48:
4f:24:1c:17:7b:42:b8:36:a8:c1:b6:33:15:3e:56:79:93:ae:
bd:d9:da:2f:91:8e:0f:4f:1b:3f:44:44:a6:6d:61:0f:30:6a:
29:51:02:2e:79:91:24:2c:5f:e2:f0:1e:2a:5d:18:16:83:2c:
98:bd:15:71:82:de:8b:82:37:ab:3f:6b:49:cd:3f:49:04:f6:
df:52:12:35:64:d3:3b:e3:4c:5f:e5:24:93:76:49:aa:34:2c:
6f:9a:27:76:98:bc:70:b9:b6:ae:c9:47:2f:dd:a3:df:a8:d3:
d3:3b:80:5a:e2:b0:be:74:95:15:42:5b:6f:c6:07:4e:31:ce:
e8:bc:25:ae:e7:72:ca:88:0b:dd:4e:68:c0:fe:72:ae:ad:5a:
69:d0:c7:11:0a:f8:fe:46:7f:8c:b0:73:e9:22:f0:c5:b8:04:
b7:fa:af:fd:66:c3:2e:78:14:44:22:1d:c9:a1:cf:a4:db:c2:
b9:c2:f1:dd:e6:3f:54:01:0c:77:89:2c:32:bb:96:bd:29:03:
e7:ae:a4:8b:07:d6:3c:49:58:b3:18:7d:f4:0c:35:85:69:0f:
b9:0c:8d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:36 2024 by rpki-client on console-ams.rpki-client.org