Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/u6EBFhmGj4ovjFvGBfiBGvNQmjE.roa
File: u6EBFhmGj4ovjFvGBfiBGvNQmjE.roa (raw, json)
Hash identifier: AQ+Yzi9aT6UeNfxRbYK6+u3xY+u5xbwkc68Y6Xq1/7E=
Subject key identifier: BB:A1:01:16:19:86:8F:8A:2F:8C:5B:C6:05:F8:81:1A:F3:50:9A:31
Certificate issuer: /CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Certificate serial: 050FBE23
Authority key identifier: 5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/u6EBFhmGj4ovjFvGBfiBGvNQmjE.roa
Signing time: Sat 01 Jan 2022 12:03:27 +0000
ROA not before: Sat 01 Jan 2022 12:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31216
IP address blocks: 89.30.0.0/17 maxlen: 24
83.243.16.0/21 maxlen: 24
194.126.217.0/24 maxlen: 24
2a01:8200::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84917795 (0x50fbe23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Validity
Not Before: Jan 1 12:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bba1011619868f8a2f8c5bc605f8811af3509a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:19:20:81:cd:cc:53:c8:3f:19:3d:60:0b:0c:
4b:98:ed:95:9f:25:8d:24:49:aa:12:58:38:98:b4:
d1:de:3d:65:14:5b:07:e5:ab:0b:eb:d1:32:a3:e0:
56:1e:a5:6f:28:cf:74:84:02:4b:df:6d:6f:d5:c2:
d0:e5:d6:e5:87:29:d8:49:ff:b9:7a:6c:5c:06:0b:
52:6d:2d:ee:8b:41:f9:a7:c3:b5:e8:3c:0d:a8:f6:
77:bd:ee:40:5e:c8:8e:29:11:91:d4:90:10:6f:8f:
82:ee:80:04:a1:03:a3:c4:ec:d3:16:48:b7:70:07:
06:d0:22:19:ce:66:60:99:60:53:eb:73:e9:47:5c:
04:65:4e:df:dd:01:ea:e6:c9:b3:dd:60:91:41:78:
31:55:57:f9:81:b8:27:26:cb:c3:a5:9e:78:22:20:
ed:4c:61:c9:61:c9:00:f9:28:59:2f:49:9b:5c:82:
7a:5b:84:0b:10:15:3e:a1:f6:5a:ec:a3:ab:00:5d:
23:cd:40:ad:49:84:25:e1:3d:36:55:88:9d:6f:35:
6e:ab:06:61:1e:ca:f6:6a:2e:cb:4a:e2:85:c2:f0:
e1:ca:b7:fc:82:2d:d0:f3:ec:44:db:cf:a3:8a:75:
bb:4f:1a:9c:c7:27:a8:bc:a0:89:d9:4d:71:73:5d:
09:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A1:01:16:19:86:8F:8A:2F:8C:5B:C6:05:F8:81:1A:F3:50:9A:31
X509v3 Authority Key Identifier:
keyid:5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/u6EBFhmGj4ovjFvGBfiBGvNQmjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.243.16.0/21
89.30.0.0/17
194.126.217.0/24
IPv6:
2a01:8200::/32
Signature Algorithm: sha256WithRSAEncryption
86:3f:a5:bc:31:93:32:45:e8:d9:be:b1:ac:3f:d8:c8:8d:18:
7e:41:b0:8f:fb:94:04:18:94:71:12:e1:e1:66:bf:10:47:1b:
eb:5e:9a:0c:cf:f0:e2:f0:53:95:12:0d:24:c8:e7:af:b4:68:
4c:39:7d:0e:28:ce:ba:6c:af:64:ae:d9:d9:7c:32:db:d5:da:
3d:d2:38:26:44:f2:b7:38:ae:31:b3:86:9d:8a:1a:18:a1:47:
3a:60:58:87:01:2a:47:f0:21:59:2f:41:3e:0f:80:66:5e:f5:
88:33:44:98:31:3f:4b:2d:e5:c3:88:90:6c:83:5d:6a:18:56:
23:f5:d4:2e:f6:e2:54:a4:c8:67:29:2a:ce:a6:e0:39:ec:64:
e3:c7:df:73:2e:50:28:07:08:5f:93:3a:b6:6e:1e:3d:d7:93:
d3:22:29:0d:ff:a1:80:df:33:f8:27:ba:a4:65:83:17:32:86:
95:ec:73:3e:68:c1:0e:e3:ed:c1:0d:7f:2f:cb:bd:e2:50:cb:
50:4c:17:80:fb:89:74:77:67:44:fb:88:a0:b7:65:aa:15:18:
69:ff:d8:88:eb:9e:36:82:5e:f3:c5:45:c6:25:c1:bf:bd:e0:
47:36:75:36:0e:62:b5:14:e1:d2:e5:06:50:bb:a0:40:51:45:
20:ee:ee:ec
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:02 2024 by rpki-client on console-fra.rpki-client.org