Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/a40070-aa17-42fe-86dd-b9ae57394189/1/puIJgXg_qLjVVcCvvSSfSSWKLAE.roa
File: puIJgXg_qLjVVcCvvSSfSSWKLAE.roa (raw, json)
Hash identifier: Mr+Vw2jTA8asMZ2t4ZCp+q1FF/yZOJ3PMKl2y5m8OiQ=
Subject key identifier: A6:E2:09:81:78:3F:A8:B8:D5:55:C0:AF:BD:24:9F:49:25:8A:2C:01
Certificate issuer: /CN=6de2aab077c9eef103f97984f309d891e5a19983
Certificate serial: 07DE7B58
Authority key identifier: 6D:E2:AA:B0:77:C9:EE:F1:03:F9:79:84:F3:09:D8:91:E5:A1:99:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/beKqsHfJ7vED-XmE8wnYkeWhmYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/a40070-aa17-42fe-86dd-b9ae57394189/1/puIJgXg_qLjVVcCvvSSfSSWKLAE.roa
Signing time: Sat 01 Jan 2022 02:01:51 +0000
ROA not before: Sat 01 Jan 2022 02:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205516
IP address blocks: 89.223.4.0/24 maxlen: 24
89.223.11.0/24 maxlen: 24
45.86.80.0/22 maxlen: 24
185.215.160.0/22 maxlen: 24
2a0b:abc0::/29 maxlen: 48
2a0e:db80::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132021080 (0x7de7b58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6de2aab077c9eef103f97984f309d891e5a19983
Validity
Not Before: Jan 1 02:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6e20981783fa8b8d555c0afbd249f49258a2c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:66:84:d6:a7:93:29:db:bb:7a:b9:7f:b5:56:
49:94:aa:d9:bb:25:77:8a:56:90:d6:2d:01:29:d6:
9b:30:df:2b:a9:a7:8b:d7:54:4b:ae:83:8e:7f:b7:
56:af:77:c1:3a:fe:de:57:87:f9:d8:9b:94:f0:f0:
c6:dd:c4:8d:15:0f:1b:94:ed:8b:8d:54:60:25:e6:
28:34:11:28:78:43:0e:6f:57:57:db:9b:1c:4e:db:
08:28:87:5f:3b:dd:10:3c:d5:e9:d6:34:c9:c1:96:
b1:d9:7a:ec:44:3d:66:a1:cd:20:bd:3c:4a:4e:3b:
80:ec:c7:53:47:65:b3:f3:98:2e:27:f6:1e:fc:43:
b1:70:05:a3:6a:e5:b8:92:0b:61:d5:94:43:0c:75:
27:67:21:18:a0:d0:14:c5:4a:0b:d6:95:49:fb:82:
3e:ca:ac:1d:20:c6:d0:ab:24:82:6c:a3:e4:f9:ba:
92:81:6d:f5:85:40:2f:fb:96:4d:92:7e:79:7e:76:
f0:22:d0:8f:ca:17:e5:74:f8:02:5f:8b:c2:89:8d:
41:92:56:2f:77:da:a2:05:e3:80:73:3e:9a:7e:ca:
72:dd:c3:10:47:3f:e8:b6:17:b8:5e:c5:ee:0c:a5:
49:97:a1:c7:e2:ca:a6:b8:20:48:73:47:2c:17:d8:
42:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E2:09:81:78:3F:A8:B8:D5:55:C0:AF:BD:24:9F:49:25:8A:2C:01
X509v3 Authority Key Identifier:
keyid:6D:E2:AA:B0:77:C9:EE:F1:03:F9:79:84:F3:09:D8:91:E5:A1:99:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/beKqsHfJ7vED-XmE8wnYkeWhmYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/a40070-aa17-42fe-86dd-b9ae57394189/1/puIJgXg_qLjVVcCvvSSfSSWKLAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/a40070-aa17-42fe-86dd-b9ae57394189/1/beKqsHfJ7vED-XmE8wnYkeWhmYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.80.0/22
89.223.4.0/24
89.223.11.0/24
185.215.160.0/22
IPv6:
2a0b:abc0::/29
2a0e:db80::/29
Signature Algorithm: sha256WithRSAEncryption
58:03:8b:d3:76:3a:ad:d8:b8:73:f3:cf:47:0e:0f:92:6e:b3:
f4:8c:df:ad:37:2b:de:11:07:b2:36:91:f0:b9:44:e9:a2:92:
da:f0:7d:05:2f:75:04:ad:3b:fd:3b:50:5c:69:3f:a3:75:2c:
cb:c1:59:e7:1f:28:4c:46:ec:02:19:25:d5:20:ab:58:e1:76:
e8:9e:93:a1:15:38:d9:dc:95:02:c7:df:d1:66:47:c4:f5:de:
d5:c0:7d:41:4f:18:a9:5a:49:e0:97:43:5c:84:f4:38:74:1e:
df:13:3f:65:3c:96:73:0e:49:4e:97:b8:7e:a5:0b:53:a6:2c:
f1:e5:13:03:cb:86:48:1f:47:fa:6d:76:91:4d:d5:90:d3:b7:
bd:b8:0d:a1:12:5c:51:8e:dc:7b:8f:43:fd:2f:01:00:c2:09:
55:36:55:c0:be:3f:ff:9a:f0:e7:7f:93:b7:55:46:95:5b:60:
45:8f:5c:d0:e8:01:9f:87:c5:0d:2c:eb:3b:3f:0e:e0:7c:39:
71:5b:2c:9a:39:52:e7:c4:33:a6:57:ed:68:00:72:7b:41:a8:
cc:d1:17:9c:bc:01:d7:6a:3d:84:f9:59:69:66:f2:75:98:bb:
58:c3:8e:77:2b:c9:c0:6b:66:10:c8:f9:40:4f:bc:ba:ae:db:
9e:c4:e6:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org