Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/2zdbJ_o_hFv5CzH4PPdPJ-iNdOI.roa
File: 2zdbJ_o_hFv5CzH4PPdPJ-iNdOI.roa (raw, json)
Hash identifier: tyPiTQrENR/E2waMWchZdSCsT3hvRhRyyFAICYfLs9A=
Subject key identifier: DB:37:5B:27:FA:3F:84:5B:F9:0B:31:F8:3C:F7:4F:27:E8:8D:74:E2
Certificate issuer: /CN=63d92b8256159894d2b9b25f4d85986c172723c3
Certificate serial: 09E3C1
Authority key identifier: 63:D9:2B:82:56:15:98:94:D2:B9:B2:5F:4D:85:98:6C:17:27:23:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y9krglYVmJTSubJfTYWYbBcnI8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/2zdbJ_o_hFv5CzH4PPdPJ-iNdOI.roa
Signing time: Fri 11 Feb 2022 08:41:06 +0000
ROA not before: Fri 11 Feb 2022 08:41:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29033
IP address blocks: 81.20.32.0/20 maxlen: 20
81.20.41.0/24 maxlen: 24
185.129.176.0/22 maxlen: 22
2a00:1fd0:ecc1::/48 maxlen: 48
2a00:1fd0:ecc2::/48 maxlen: 48
2a00:1fd0:ecc0::/48 maxlen: 48
2a00:1fd0:ec00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 648129 (0x9e3c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63d92b8256159894d2b9b25f4d85986c172723c3
Validity
Not Before: Feb 11 08:41:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db375b27fa3f845bf90b31f83cf74f27e88d74e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:12:70:99:7d:92:41:b1:03:89:6c:36:70:0a:
84:47:96:40:3d:44:77:b1:bf:03:9a:3b:d9:be:6a:
dd:ee:05:30:c7:de:97:08:6b:7a:59:2d:c1:a4:42:
0b:e0:38:b9:69:cd:88:79:d3:d2:25:1c:55:d8:51:
43:ef:b8:15:4f:fd:87:f7:c1:0e:53:b2:e3:07:2f:
fd:c9:1e:35:aa:38:72:cd:81:74:8b:05:8a:cf:cf:
88:72:2c:ad:6f:83:fb:ec:9a:80:9b:b2:3c:24:5f:
61:e8:a5:09:9e:f6:01:77:82:9f:66:7d:25:35:66:
85:85:c3:82:f5:e2:8a:1d:80:d3:27:80:b9:1f:8d:
dd:e0:dc:0e:a2:76:bf:2b:ee:01:8f:ed:4f:7e:05:
12:53:bc:44:50:87:ca:a1:0e:dc:e5:e2:65:b0:6f:
5d:1c:4e:9b:02:3d:ff:32:e6:7b:30:51:95:e4:d0:
91:10:38:01:66:82:ef:34:a3:51:c6:44:1c:7e:ea:
74:c0:3b:f1:36:dc:94:e6:07:f4:b5:13:30:6f:e0:
e5:55:2e:03:61:22:4d:0f:62:57:4f:26:52:29:0f:
90:43:34:fb:e8:ac:25:ac:3c:b7:ac:a0:31:b8:56:
55:54:7d:17:9c:fa:7c:68:75:6c:da:54:4f:0c:9b:
e5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:37:5B:27:FA:3F:84:5B:F9:0B:31:F8:3C:F7:4F:27:E8:8D:74:E2
X509v3 Authority Key Identifier:
keyid:63:D9:2B:82:56:15:98:94:D2:B9:B2:5F:4D:85:98:6C:17:27:23:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y9krglYVmJTSubJfTYWYbBcnI8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/2zdbJ_o_hFv5CzH4PPdPJ-iNdOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/Y9krglYVmJTSubJfTYWYbBcnI8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.20.32.0/20
185.129.176.0/22
IPv6:
2a00:1fd0:ec00::/48
2a00:1fd0:ecc0::-2a00:1fd0:ecc2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
83:31:b7:58:6c:bf:85:8a:28:5d:7d:80:75:c4:80:0b:39:42:
17:e8:16:6f:d4:bc:4a:6b:c0:00:e1:df:18:93:71:32:54:c6:
f7:b2:25:53:9d:c0:99:97:bc:53:e8:14:29:69:13:87:5e:07:
7c:4d:0c:67:0a:d6:47:8c:42:31:fc:45:67:2f:4c:4e:b0:28:
60:93:6c:42:31:8e:c6:85:c8:04:07:fe:72:f1:de:f8:8c:a4:
0b:76:90:a6:f2:31:55:58:b8:1b:bc:02:4f:f6:2a:ee:c7:eb:
37:cc:ea:24:a9:fe:21:c4:46:5a:9c:e4:e1:c6:1f:de:33:bb:
8e:ef:de:46:23:e0:3e:89:51:07:3b:12:8b:be:8c:3b:05:ae:
0e:48:a0:4e:0c:97:99:91:69:9e:fe:e3:74:72:bb:c1:80:9b:
d7:7d:6e:c5:f4:60:66:0c:bf:a5:ff:dd:ef:42:31:e4:18:3f:
4f:22:66:fb:45:ad:f2:6d:8b:02:95:1d:39:30:17:2b:55:51:
d6:9a:89:31:93:72:f6:52:c6:8b:d9:01:30:07:0f:d5:73:e4:
fa:9f:2d:5e:f9:d6:5f:99:dc:89:bd:1b:84:0d:3f:74:3f:40:
06:9d:37:22:39:4e:b1:20:c0:a7:00:47:87:49:49:c9:92:c0:
4b:ac:d7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:18 2024 by rpki-client on console-ams.rpki-client.org