Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/ipbIUfYtwJhDiazvfgJzKigsuWk.roa
File: ipbIUfYtwJhDiazvfgJzKigsuWk.roa (raw, json)
Hash identifier: QOsDLvkzLO3RsDfT0RqhVtxrXcVJfbhCwnaBgsv7tJE=
Subject key identifier: 8A:96:C8:51:F6:2D:C0:98:43:89:AC:EF:7E:02:73:2A:28:2C:B9:69
Certificate issuer: /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial: 1C937F9B
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/ipbIUfYtwJhDiazvfgJzKigsuWk.roa
Signing time: Tue 17 May 2022 15:00:10 +0000
ROA not before: Tue 17 May 2022 15:00:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199485
IP address blocks: 82.196.27.0/24 maxlen: 24
88.212.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 479428507 (0x1c937f9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
Validity
Not Before: May 17 15:00:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a96c851f62dc0984389acef7e02732a282cb969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bf:67:74:99:65:13:58:31:a3:56:b2:15:ab:
fb:9e:0d:59:91:fd:96:df:2a:39:5c:af:27:84:8c:
58:b4:af:27:e4:d2:37:01:f0:ca:9a:33:22:85:4f:
7c:f5:d2:54:52:c3:ca:73:a4:60:2e:c0:29:08:89:
b0:ed:5a:85:f2:a8:28:7e:34:8a:fd:a0:22:16:7a:
e3:28:33:48:69:10:e4:e6:ad:df:a9:fb:a8:bb:7a:
5a:15:76:4d:f7:44:5d:45:1b:38:3e:19:a8:62:bf:
6b:11:dc:ad:9f:d3:23:9f:c4:9e:23:eb:b7:78:20:
00:a7:8f:3e:0f:d2:dc:c5:aa:36:a7:2f:c1:3e:dc:
47:05:eb:da:0a:c9:6a:43:3a:f8:1b:aa:2c:97:1f:
95:4e:7a:6e:6a:92:00:a5:87:f0:27:1d:ec:90:84:
d5:aa:08:a0:d1:06:61:9d:1a:2c:56:f6:c7:9f:b6:
28:84:a9:73:e2:32:69:70:78:27:ee:32:57:1d:aa:
f9:d8:e7:69:06:8d:68:ac:af:15:49:1f:d8:ff:c8:
68:59:0b:30:da:3a:ff:ea:3d:0f:61:ac:02:4c:5a:
b5:6f:a6:21:8b:ba:1c:fb:f3:32:97:39:eb:56:fb:
52:2e:a1:9d:5a:68:07:cb:32:6a:54:65:d9:66:c1:
ea:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:96:C8:51:F6:2D:C0:98:43:89:AC:EF:7E:02:73:2A:28:2C:B9:69
X509v3 Authority Key Identifier:
keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/ipbIUfYtwJhDiazvfgJzKigsuWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.196.27.0/24
88.212.144.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:f6:40:17:cd:ca:b3:68:e3:c9:78:f9:08:32:02:9e:2d:e5:
3d:1e:b2:63:c2:10:c9:38:38:2d:8f:1e:53:32:2f:da:7c:00:
02:32:b0:9a:d1:2f:50:0a:65:cd:d8:98:5f:05:bc:78:7b:6f:
74:35:ec:e2:d8:f5:72:c2:1f:4b:b8:c8:57:bf:47:e3:fe:c7:
de:6b:ef:15:3e:a7:23:1e:f0:4f:e4:9e:bb:09:1f:5d:5a:be:
30:0f:1f:e7:12:72:6c:d5:04:00:e3:00:de:49:11:74:7e:c1:
54:8c:d4:e4:1a:d9:09:16:98:ca:8d:f7:96:38:4f:c1:45:96:
43:6d:69:90:22:1f:7f:90:00:b2:22:87:e2:2b:ee:41:12:ed:
14:88:d4:bf:bd:d2:c5:2a:d9:03:12:cd:d8:dd:00:f8:bb:c6:
b5:68:6b:44:ca:99:7d:35:0c:fa:e4:3e:05:6e:19:2b:1d:2b:
27:6b:fa:78:9c:11:1e:d0:cc:9d:e9:8a:a0:f3:44:06:fa:cd:
55:27:2c:25:63:fe:1f:f4:97:56:89:f9:02:c0:e9:13:86:06:
88:b0:a7:be:59:03:dc:7e:aa:bd:22:5b:93:84:9a:7d:1a:29:
86:1a:44:8d:6b:cb:c5:61:6f:d3:94:06:bb:c2:24:2e:a0:9e:
10:83:3a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org