Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/adcff5-b2b1-48df-b756-6fb4bee99e63/1/2EgC2wduz4Sa7ZhqpnrXZDhDP-0.roa
File: 2EgC2wduz4Sa7ZhqpnrXZDhDP-0.roa (raw, json)
Hash identifier: 3e6PcgEZ8n4eG1oOIkh8bWbI5lHVKxnoOI99MFvPij0=
Subject key identifier: D8:48:02:DB:07:6E:CF:84:9A:ED:98:6A:A6:7A:D7:64:38:43:3F:ED
Certificate issuer: /CN=8ffdfaeb5a94eb027ec838af530f3c10b39b1cd9
Certificate serial: 046A7E7C
Authority key identifier: 8F:FD:FA:EB:5A:94:EB:02:7E:C8:38:AF:53:0F:3C:10:B3:9B:1C:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_3661qU6wJ-yDivUw88ELObHNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/adcff5-b2b1-48df-b756-6fb4bee99e63/1/2EgC2wduz4Sa7ZhqpnrXZDhDP-0.roa
Signing time: Sat 01 Jan 2022 05:00:13 +0000
ROA not before: Sat 01 Jan 2022 05:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28933
IP address blocks: 212.101.128.0/18 maxlen: 18
195.47.197.0/24 maxlen: 24
2a00:1368::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74088060 (0x46a7e7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ffdfaeb5a94eb027ec838af530f3c10b39b1cd9
Validity
Not Before: Jan 1 05:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d84802db076ecf849aed986aa67ad76438433fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:db:4e:a7:d3:9d:b7:34:c2:e7:03:90:81:d8:
c7:c5:0c:d9:04:22:9f:45:41:34:af:cb:ef:9b:3c:
f6:80:4b:b6:bb:da:98:6c:ba:fa:80:8c:71:fa:9e:
83:be:2e:85:e5:b8:72:e8:9d:7c:ec:f6:89:1a:39:
c8:bf:4d:89:c8:f7:74:8a:73:b6:58:59:d4:ef:16:
e9:fa:5c:df:c7:8b:05:47:22:d4:d6:79:1a:31:d3:
de:2b:2a:95:27:a9:11:33:13:77:c0:eb:a5:fc:8f:
27:5a:e4:32:40:2d:ac:8c:ab:0a:ea:db:42:78:f9:
85:87:1f:c3:18:63:9c:2c:58:37:f4:a2:12:ec:e5:
07:84:68:a0:d0:e7:75:55:49:82:3a:8f:d1:63:23:
6c:f5:80:36:1e:ca:0c:c0:fa:3a:a4:eb:48:3e:1c:
53:1d:f6:5d:24:e2:c5:6c:f4:fc:21:f4:d2:32:e3:
79:07:1d:59:87:a6:ea:6b:15:30:73:c5:35:2e:6e:
e8:37:2a:68:2f:c6:92:13:96:d2:03:6a:4a:84:95:
0c:98:c6:70:f6:c3:1e:37:a8:03:5a:f8:59:33:8e:
5e:5a:2d:b4:00:42:f7:d6:70:62:8d:b3:b9:d9:d0:
e1:ff:81:5b:e5:97:8e:e4:a9:c5:08:67:f4:b4:56:
18:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:48:02:DB:07:6E:CF:84:9A:ED:98:6A:A6:7A:D7:64:38:43:3F:ED
X509v3 Authority Key Identifier:
keyid:8F:FD:FA:EB:5A:94:EB:02:7E:C8:38:AF:53:0F:3C:10:B3:9B:1C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_3661qU6wJ-yDivUw88ELObHNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/adcff5-b2b1-48df-b756-6fb4bee99e63/1/2EgC2wduz4Sa7ZhqpnrXZDhDP-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/adcff5-b2b1-48df-b756-6fb4bee99e63/1/j_3661qU6wJ-yDivUw88ELObHNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.47.197.0/24
212.101.128.0/18
IPv6:
2a00:1368::/32
Signature Algorithm: sha256WithRSAEncryption
a2:35:42:4b:e7:3f:d4:b0:80:b2:49:68:c9:c6:0d:2b:aa:93:
cf:68:2d:d6:f3:54:e9:8c:c9:59:2a:a0:03:a6:77:ae:44:58:
28:39:f7:eb:a7:2f:a7:16:3c:c3:65:23:6c:7f:16:49:b9:4f:
4b:29:08:44:a2:61:6d:aa:24:dc:65:74:b6:26:8a:d1:b6:fc:
5f:f5:9c:dd:0f:7b:cd:4a:34:5d:1e:a0:8e:6d:3e:46:1b:0b:
73:14:04:d2:a7:8d:4e:ea:8a:f7:1d:d8:a3:4f:1b:f2:c2:94:
c4:2a:99:2c:85:2b:86:8e:7c:67:1b:ce:2d:97:f5:6d:e0:37:
13:86:1b:42:ad:a0:44:dc:bd:98:17:12:3b:1b:eb:9b:07:b8:
97:62:17:26:0f:4c:a3:c0:c4:70:f5:66:d2:7f:38:d6:c3:aa:
90:92:da:80:31:a1:82:33:48:b5:47:b1:66:ee:2b:50:b9:0e:
53:78:7c:0a:b3:4c:64:ae:27:ec:2e:d8:b8:15:91:5f:7f:ee:
2a:7a:b8:59:e8:af:79:84:aa:49:24:3f:9a:84:0e:80:e7:db:
fe:70:c8:2c:11:27:8d:5d:d1:06:75:45:72:30:fe:f1:be:83:
c1:77:80:98:d2:38:43:30:ac:68:88:6c:7d:ef:9e:1e:38:c8:
41:37:3c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:28 2024 by rpki-client on console-ams.rpki-client.org