Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/jr9nVZFCYYx8qCdQ25jc3172p5A.roa
File: jr9nVZFCYYx8qCdQ25jc3172p5A.roa (raw, json)
Hash identifier: F/HSa/B4DbiKGYbg5NS+012Xq7fbpKZ/qkS6kAS5yXU=
Subject key identifier: 8E:BF:67:55:91:42:61:8C:7C:A8:27:50:DB:98:DC:DF:5E:F6:A7:90
Certificate issuer: /CN=573104ff3568cb99b7f5024e73ff2aea0563ce6a
Certificate serial: 03509335
Authority key identifier: 57:31:04:FF:35:68:CB:99:B7:F5:02:4E:73:FF:2A:EA:05:63:CE:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VzEE_zVoy5m39QJOc_8q6gVjzmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/jr9nVZFCYYx8qCdQ25jc3172p5A.roa
Signing time: Tue 10 May 2022 19:09:42 +0000
ROA not before: Tue 10 May 2022 19:09:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211960
IP address blocks: 193.228.137.0/24 maxlen: 24
2a04:1ac1:1::/48 maxlen: 48
2a04:1ac1:11::/48 maxlen: 48
2001:67c:2924::/48 maxlen: 48
2a04:1ac0:fff3::/48 maxlen: 48
2a04:1ac1:2::/48 maxlen: 48
2a04:1ac0:fff4::/48 maxlen: 48
2a04:1ac1:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55612213 (0x3509335)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=573104ff3568cb99b7f5024e73ff2aea0563ce6a
Validity
Not Before: May 10 19:09:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ebf67559142618c7ca82750db98dcdf5ef6a790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ba:8d:9b:6a:f0:a1:ae:25:c4:2b:b3:b1:fc:
76:0d:42:66:8d:6b:22:f1:4e:a6:f6:a1:a0:3f:0e:
02:04:5d:de:79:55:0f:c7:38:ab:e5:d7:2a:1e:81:
60:41:d4:02:38:e8:12:54:4d:6f:fe:8c:3c:79:69:
63:1f:f7:2a:2e:5b:e2:a4:ed:c5:2f:ea:09:65:43:
9c:47:25:29:36:6d:85:63:6f:e6:2b:a9:30:64:f4:
de:ea:8a:e2:72:37:5b:9f:01:09:02:14:3c:9d:2d:
28:1f:d1:03:44:48:1e:0f:ab:ef:aa:7d:80:3c:a9:
3e:4c:0e:fb:41:4f:43:41:6a:8b:b2:17:11:d2:df:
de:95:82:cf:e3:f0:df:ca:da:94:58:d0:30:10:1b:
ed:7c:54:42:d1:6b:e4:3b:74:09:3e:a0:b9:36:14:
0e:07:84:3f:20:1d:dc:cd:5a:c8:b8:9d:86:db:80:
20:80:91:14:83:b2:c7:77:44:f6:e3:17:d4:e4:1d:
e8:10:f7:2d:20:50:4a:66:48:95:d2:63:af:43:86:
f1:fe:7d:71:da:62:b2:1b:ba:95:27:ee:41:31:d7:
e6:7e:3f:d7:95:07:7b:19:78:0c:1e:6f:e3:3b:3a:
8a:d8:e3:bc:39:fb:8c:66:8e:b2:43:8f:78:77:04:
09:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:BF:67:55:91:42:61:8C:7C:A8:27:50:DB:98:DC:DF:5E:F6:A7:90
X509v3 Authority Key Identifier:
keyid:57:31:04:FF:35:68:CB:99:B7:F5:02:4E:73:FF:2A:EA:05:63:CE:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VzEE_zVoy5m39QJOc_8q6gVjzmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/jr9nVZFCYYx8qCdQ25jc3172p5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/VzEE_zVoy5m39QJOc_8q6gVjzmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.137.0/24
IPv6:
2001:67c:2924::/48
2a04:1ac0:fff3::-2a04:1ac0:fff4:ffff:ffff:ffff:ffff:ffff
2a04:1ac1:1::-2a04:1ac1:2:ffff:ffff:ffff:ffff:ffff
2a04:1ac1:10::/47
Signature Algorithm: sha256WithRSAEncryption
5e:52:41:e6:5b:79:62:8b:e4:0f:5e:ee:1d:ec:9d:ad:3c:f7:
b9:ff:56:7b:9a:08:8c:4d:19:cf:9d:fe:8a:b0:80:1e:bb:56:
b4:0f:76:b9:f3:7a:05:d7:e9:f0:a1:5b:37:89:04:4c:7d:49:
e6:40:11:bb:ef:71:01:d9:54:bd:09:5b:47:e5:8c:80:50:32:
dd:03:97:fd:25:5a:a5:a5:0e:2f:69:b6:f1:62:51:db:94:c7:
6d:d8:5e:4d:0c:ab:61:3b:f7:1a:98:57:20:96:7e:8f:af:44:
b5:ab:81:f1:25:e6:61:c7:a8:65:1d:f7:f0:54:c9:a3:a8:7f:
21:65:e1:6c:a2:f3:b3:19:49:0d:00:40:15:dc:53:57:b3:c0:
02:fd:a4:53:2c:2b:0f:b4:68:82:70:0c:90:2d:e1:2a:09:1d:
ef:4e:33:a2:c8:5d:91:50:ea:3c:af:93:8a:6a:d3:96:59:11:
07:43:d1:f2:24:47:be:30:cd:8d:1f:cb:f3:8b:d7:4d:74:3d:
8a:f8:24:12:44:26:79:1c:85:6a:a3:a2:0f:df:a0:f0:06:9c:
dd:d0:0d:6b:0f:6a:10:c2:d1:26:78:f5:a4:2f:f6:08:7f:eb:
bc:94:ab:7d:4c:76:f0:2c:9f:14:ad:14:b8:5d:4b:7e:de:f9:
59:a4:fd:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:36 2024 by rpki-client on console-fra.rpki-client.org