Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/D6uXCbgk_VuVfv2nmKxzxyInsuU.roa
File: D6uXCbgk_VuVfv2nmKxzxyInsuU.roa (raw, json)
Hash identifier: bhbvTkwwkUCMo8ZO8gXk7uD3+5vwPEwinYYJVgHPXuk=
Subject key identifier: 0F:AB:97:09:B8:24:FD:5B:95:7E:FD:A7:98:AC:73:C7:22:27:B2:E5
Certificate issuer: /CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Certificate serial: 1500638F
Authority key identifier: 21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/D6uXCbgk_VuVfv2nmKxzxyInsuU.roa
Signing time: Sat 01 Jan 2022 10:59:13 +0000
ROA not before: Sat 01 Jan 2022 10:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201641
IP address blocks: 194.15.212.0/24 maxlen: 24
185.102.100.0/22 maxlen: 24
2001:67c:6e8::/48 maxlen: 48
2a10:a600::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352347023 (0x1500638f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Validity
Not Before: Jan 1 10:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fab9709b824fd5b957efda798ac73c72227b2e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b9:bc:b9:19:38:02:96:24:8c:cc:a2:20:a2:
fc:f2:70:61:24:dd:eb:69:5a:b4:04:71:4c:6f:8e:
ed:13:55:1b:3a:57:fc:4f:ee:f3:71:da:35:a6:a5:
33:75:83:29:66:72:fa:4d:90:d8:ec:95:49:31:ac:
62:e0:65:38:ab:c1:21:86:19:ce:93:8c:95:5e:6a:
a5:9b:3e:c7:49:17:ed:9d:e4:ed:fc:4c:9b:66:46:
cb:bc:d1:31:5d:1c:a3:48:7b:1e:69:49:b3:37:ff:
42:ac:47:fa:28:1e:ce:32:82:cd:8b:fe:d6:97:95:
74:a1:31:e3:a4:96:cb:da:d6:83:7c:4e:b0:da:e9:
e1:a9:5b:8c:6b:55:d8:31:86:88:75:8e:40:e9:86:
25:04:4a:89:ec:4a:37:ed:55:75:64:ec:ad:63:e6:
e8:a1:60:ca:1d:4f:63:bc:7b:07:74:dc:55:3e:37:
1f:16:ac:75:4c:b3:3f:8a:61:87:98:2e:1d:af:ee:
06:69:ba:12:73:ab:d7:2f:ff:61:35:7a:1d:31:93:
96:d6:ea:7c:be:d1:22:21:3b:34:b4:ab:44:aa:c4:
47:27:0a:47:cc:1f:1a:4f:1d:c3:71:cb:c4:2b:54:
47:70:c3:a5:67:24:da:48:8d:a5:d0:61:fe:9d:b1:
f5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:AB:97:09:B8:24:FD:5B:95:7E:FD:A7:98:AC:73:C7:22:27:B2:E5
X509v3 Authority Key Identifier:
keyid:21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/D6uXCbgk_VuVfv2nmKxzxyInsuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.100.0/22
194.15.212.0/24
IPv6:
2001:67c:6e8::/48
2a10:a600::/32
Signature Algorithm: sha256WithRSAEncryption
72:96:27:a5:59:00:11:9f:d4:b1:57:8f:f2:27:4d:6f:5c:fe:
89:75:7c:50:0f:8a:13:de:ec:41:f8:26:5d:0f:1d:9a:2e:15:
02:2b:3f:16:4b:23:7b:1a:1c:72:c7:b3:7e:60:59:4e:df:a0:
a0:c9:1f:c1:42:b9:f6:93:ff:92:e3:b7:f4:62:6b:5a:42:cf:
73:f5:cf:e8:4a:21:b6:37:10:b2:e9:1f:95:56:06:5a:2b:ee:
02:75:18:95:70:ef:b0:d4:39:5f:2a:17:e2:2d:fd:6f:2a:1b:
6d:12:57:b9:4d:5d:8a:47:bd:9f:0c:0e:7b:25:60:8c:9b:be:
fa:74:fa:b4:e4:1e:a6:7b:3e:eb:d6:d3:f8:7f:00:6f:a1:34:
6a:3b:e3:fc:8f:f4:78:a1:96:45:d4:ef:31:8d:c7:86:3c:7b:
ce:a8:f2:35:36:5c:b1:79:a8:5c:5e:5e:2f:36:88:0a:89:95:
15:d7:7d:b0:c1:f3:46:54:a4:5a:14:9b:c6:62:f7:f1:00:be:
9d:ff:c7:90:e8:a7:b1:46:9c:d4:38:a0:b8:99:0c:76:bd:4c:
99:36:a9:54:cf:18:92:ac:98:2a:0f:fe:63:10:5b:76:cc:54:
3b:12:52:a2:86:c0:d1:4d:5d:15:be:ce:e4:43:0e:51:1d:d0:
40:94:ef:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:49 2024 by rpki-client on console-ams.rpki-client.org