Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d4d2f8-8dc1-4070-977e-a6cec04595f8/1/5ZX6WduZqgafXlbcqmJXccw0qTY.roa
File: 5ZX6WduZqgafXlbcqmJXccw0qTY.roa (raw, json)
Hash identifier: U0CBwybuw3i9kzF/6XvleFaNofX/wUAe/qWokUTAAeI=
Subject key identifier: E5:95:FA:59:DB:99:AA:06:9F:5E:56:DC:AA:62:57:71:CC:34:A9:36
Certificate issuer: /CN=83e2340ef5c4a4952eb413d288c29d9378342232
Certificate serial: 01134AA9
Authority key identifier: 83:E2:34:0E:F5:C4:A4:95:2E:B4:13:D2:88:C2:9D:93:78:34:22:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-I0DvXEpJUutBPSiMKdk3g0IjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d4d2f8-8dc1-4070-977e-a6cec04595f8/1/5ZX6WduZqgafXlbcqmJXccw0qTY.roa
Signing time: Sat 01 Jan 2022 01:57:36 +0000
ROA not before: Sat 01 Jan 2022 01:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60022
IP address blocks: 178.212.231.0/24 maxlen: 24
2a11:e680::/32 maxlen: 48
2a11:e686::/32 maxlen: 48
2a11:e685::/32 maxlen: 48
2a11:e682::/32 maxlen: 48
2a11:e681::/32 maxlen: 48
2a11:e683::/32 maxlen: 48
2a11:e684::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18041513 (0x1134aa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e2340ef5c4a4952eb413d288c29d9378342232
Validity
Not Before: Jan 1 01:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e595fa59db99aa069f5e56dcaa625771cc34a936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:84:1d:50:ef:80:b9:17:41:a4:bb:33:2f:8d:
a0:94:6b:9f:d1:49:d9:e5:52:ee:ec:aa:dc:b8:77:
ef:eb:af:60:f0:0a:f8:b4:c7:fe:47:56:de:e2:59:
55:fb:a2:ed:44:08:8a:a0:d8:8e:74:dd:43:44:7f:
58:5b:4b:d2:b5:75:3a:f5:d2:db:33:21:64:07:59:
ab:1d:97:a3:14:d3:bc:63:d9:17:40:8b:74:a5:3a:
13:e7:16:05:d5:01:c4:b7:24:3e:60:40:1b:25:0d:
f6:96:c5:2a:08:b1:0a:e3:c3:cd:52:16:0d:3d:88:
50:c2:24:eb:02:22:91:3a:57:c7:cb:8f:d2:d4:be:
c9:55:1e:97:35:15:67:d0:04:18:4b:23:12:07:8b:
46:48:52:55:d2:3a:24:ea:1f:02:74:8e:15:65:4d:
a6:a1:c7:53:5a:d6:53:eb:5f:5d:48:a6:32:5d:b7:
b5:21:1e:25:79:64:82:99:f4:14:73:23:46:7c:2a:
78:2e:ad:ff:59:5c:ac:5f:4e:86:31:75:e5:72:6c:
04:9c:05:f5:1f:7d:e3:f9:99:ad:c6:15:99:b7:25:
1b:5c:c5:bc:6f:ae:16:78:d5:2b:02:36:4a:d4:91:
45:d6:b7:82:40:13:2b:43:4b:e8:ab:3f:17:81:1b:
19:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:95:FA:59:DB:99:AA:06:9F:5E:56:DC:AA:62:57:71:CC:34:A9:36
X509v3 Authority Key Identifier:
keyid:83:E2:34:0E:F5:C4:A4:95:2E:B4:13:D2:88:C2:9D:93:78:34:22:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-I0DvXEpJUutBPSiMKdk3g0IjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d4d2f8-8dc1-4070-977e-a6cec04595f8/1/5ZX6WduZqgafXlbcqmJXccw0qTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d4d2f8-8dc1-4070-977e-a6cec04595f8/1/g-I0DvXEpJUutBPSiMKdk3g0IjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.231.0/24
IPv6:
2a11:e680::-2a11:e686:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6d:66:33:1d:73:22:a4:6d:65:24:5a:31:ac:c8:67:47:f6:ae:
60:bb:01:c1:fe:3c:d4:c2:9c:e3:96:52:6a:a7:c3:1c:d4:0b:
6d:2e:25:d2:0e:e7:27:23:e4:32:fd:97:20:ca:f0:e3:88:bc:
83:2a:16:76:ec:fb:ca:33:d9:ed:b1:df:ff:6a:49:8e:fd:77:
24:ec:5d:a2:73:a3:2f:fb:6b:01:ed:df:95:88:31:27:4d:3e:
44:34:65:a4:29:fe:82:c1:b1:be:53:d7:46:58:51:e0:b9:45:
fd:72:01:de:62:95:4d:26:c6:4f:ac:fd:19:26:46:f0:41:29:
78:4b:30:4c:29:4c:a7:9d:3f:db:25:56:94:01:b8:1d:f0:3e:
14:fd:ea:4c:50:d0:14:ba:4a:2b:dc:ab:da:ad:b6:bc:3f:42:
92:a7:e5:20:38:66:b3:3b:cb:4a:a2:89:0e:38:21:8e:5f:79:
26:43:4f:77:c8:3f:cb:6c:81:08:3a:4f:c4:11:0d:d5:e5:26:
22:85:fd:4b:30:4b:bc:9c:21:c5:43:13:31:38:0c:41:b4:65:
3c:1a:f5:67:31:a7:fe:5f:38:9a:21:f4:f7:43:d1:f2:3b:7e:
37:d9:aa:c0:80:80:37:6b:f9:12:2f:fa:77:1a:f9:9e:d8:04:
ba:23:2e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:47 2024 by rpki-client on console-fra.rpki-client.org