Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/a0As3vVT0PfCT-Bskko1EgPKwoM.roa
File: a0As3vVT0PfCT-Bskko1EgPKwoM.roa (raw, json)
Hash identifier: GjwtG4rz2FrawCT4+YCPrXMfis9lvuQ8s4j4EMzZcl4=
Subject key identifier: 6B:40:2C:DE:F5:53:D0:F7:C2:4F:E0:6C:92:4A:35:12:03:CA:C2:83
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 42A625CB
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/a0As3vVT0PfCT-Bskko1EgPKwoM.roa
Signing time: Sat 01 Jan 2022 06:05:04 +0000
ROA not before: Sat 01 Jan 2022 06:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44467
IP address blocks: 83.239.44.0/22 maxlen: 22
83.239.46.0/23 maxlen: 23
83.239.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1118184907 (0x42a625cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 1 06:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b402cdef553d0f7c24fe06c924a351203cac283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:84:24:83:df:93:c3:d6:a5:fd:2a:e8:d6:74:
47:a0:1e:50:9d:4d:f7:b1:6e:89:b5:74:9f:7e:12:
9e:8a:ff:78:e4:08:53:5b:41:d5:ff:1e:26:60:b0:
fa:f3:d8:a9:e2:9c:67:de:38:9e:40:f6:ef:65:92:
be:4d:82:50:3a:4c:77:98:87:45:6b:8c:4d:22:b1:
88:74:92:3e:7b:f3:5a:24:24:a5:fb:2c:3d:df:ed:
1e:56:dd:7e:53:4e:34:0f:17:2d:46:1f:be:40:db:
3b:18:75:4f:d3:23:f6:c9:b7:ef:b4:b0:c8:38:f7:
1e:d8:f5:c9:84:6d:45:c9:77:52:10:63:e8:6e:ed:
81:db:b8:96:67:92:5b:83:39:6d:4d:15:03:68:7c:
91:86:c5:80:82:7e:67:45:be:dc:90:be:32:63:97:
d3:9b:f8:f5:ec:46:07:d8:2c:a8:9d:6b:45:86:74:
5f:9c:aa:b1:5a:34:cd:06:ee:09:f8:7c:bf:9a:23:
bf:bb:3f:49:4b:0e:fc:41:48:7b:64:5d:c2:07:9b:
a4:75:0e:32:33:88:90:e2:1f:e9:fe:51:29:28:00:
51:e0:3d:39:9c:4e:76:a8:0c:07:36:de:cf:01:63:
c9:dc:ee:7b:cb:f8:b3:e2:08:01:d2:04:3b:4a:11:
be:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:40:2C:DE:F5:53:D0:F7:C2:4F:E0:6C:92:4A:35:12:03:CA:C2:83
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/a0As3vVT0PfCT-Bskko1EgPKwoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.239.44.0/22
Signature Algorithm: sha256WithRSAEncryption
85:20:d6:92:55:70:ec:1c:d5:8c:53:82:b3:14:5a:07:e0:63:
f6:a5:11:db:b2:98:8f:e2:01:e1:b5:a5:73:85:5d:43:e3:5e:
24:5a:0b:1a:d7:d1:0f:02:a0:de:96:4d:1b:e7:f6:eb:f7:20:
85:18:65:40:83:e3:25:c5:62:66:70:8a:56:ef:ad:d5:69:4b:
62:10:53:cf:ed:6a:c8:02:e7:98:17:f5:53:b0:fb:8c:f2:70:
4d:5a:e6:71:c2:57:07:b7:9f:9b:5d:b6:ed:57:b4:6b:7f:f0:
ae:26:0a:81:da:e8:77:bb:ee:f3:8b:12:4e:67:73:7c:f6:59:
75:35:4c:10:6d:ec:40:cd:b8:d4:d7:e1:62:65:d8:6f:1f:fa:
f3:05:1f:e2:ce:db:8e:74:64:d3:1b:bc:39:86:bb:74:1e:bd:
b4:61:e8:a5:ea:3f:d4:fb:ae:eb:f1:6f:2c:43:5c:b6:5d:d2:
04:23:06:95:1a:05:80:73:d7:84:ff:85:da:e8:51:f3:54:50:
86:26:30:93:2b:b2:1e:67:78:91:20:50:2f:ec:40:bc:2b:19:
14:52:d0:e3:40:26:0e:e7:a4:13:19:ec:38:0e:d4:8e:d9:de:
8b:46:a3:d1:35:b9:ec:8c:a7:9f:29:e6:2b:0c:2d:2a:b0:58:
cf:9d:d0:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:56 2024 by rpki-client on console-fra.rpki-client.org