Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/Rbf0eaXuKUt9mn-Ky-hhp4TNJQM.roa
File: Rbf0eaXuKUt9mn-Ky-hhp4TNJQM.roa (raw, json)
Hash identifier: 0uy/EA8JmSpfGpTBd9dc/G3OofohNnE7a5dklJK+MuY=
Subject key identifier: 45:B7:F4:79:A5:EE:29:4B:7D:9A:7F:8A:CB:E8:61:A7:84:CD:25:03
Certificate issuer: /CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Certificate serial: 0182F85CBA908FD81318109D6F7CEE4DDDE5
Authority key identifier: 58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/Rbf0eaXuKUt9mn-Ky-hhp4TNJQM.roa
Signing time: Thu 01 Sep 2022 09:23:22 +0000
ROA not before: Thu 01 Sep 2022 09:23:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29180
IP address blocks: 82.132.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:5c:ba:90:8f:d8:13:18:10:9d:6f:7c:ee:4d:dd:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Validity
Not Before: Sep 1 09:23:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45b7f479a5ee294b7d9a7f8acbe861a784cd2503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8b:66:f6:71:3a:c5:5e:c7:2e:4b:f0:f9:ca:
0a:f6:4f:cd:f6:86:ff:b1:71:fe:fe:d1:97:8a:02:
dd:fe:25:24:08:cb:9f:6d:80:ff:86:8b:f0:a2:79:
01:4b:86:81:a1:af:a5:a8:15:e6:27:d4:b8:91:a3:
fe:63:a1:78:a3:9a:14:c7:8c:1b:00:83:56:76:c9:
a2:aa:c1:52:0c:00:b4:2c:f1:b0:da:6f:62:70:2b:
df:7e:1f:cd:b9:7d:f4:ed:72:3d:ad:97:a2:29:a2:
c8:45:17:20:95:5a:94:16:8d:b3:dc:ae:f1:26:8e:
a1:07:d7:20:50:3a:ad:4e:1d:f9:95:f4:8a:2e:fa:
7e:a4:0e:76:1c:2c:78:3a:ab:20:85:2c:1a:2d:0f:
fa:80:af:d2:2d:74:9e:5d:18:05:dd:c0:d0:c6:83:
6f:4d:c6:14:a9:8b:bb:fb:aa:ba:84:2d:29:9a:b2:
ba:55:6b:fd:39:c3:f4:2e:4a:35:b9:d4:4c:5e:a1:
01:ef:b4:b9:df:55:e2:cd:97:46:c2:dc:9b:ff:95:
00:ca:9d:91:ed:0a:d1:9f:d7:ff:73:05:4d:39:1f:
4e:58:ce:ff:53:8c:70:94:18:b7:6f:ca:60:7d:1b:
af:a7:ad:5f:5c:86:b1:a0:23:2c:fd:39:6a:0b:65:
94:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:B7:F4:79:A5:EE:29:4B:7D:9A:7F:8A:CB:E8:61:A7:84:CD:25:03
X509v3 Authority Key Identifier:
keyid:58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/Rbf0eaXuKUt9mn-Ky-hhp4TNJQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/WLKee4oN25w2xuDj9JV3gXsOo6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.132.128.0/22
Signature Algorithm: sha256WithRSAEncryption
59:f6:6e:10:2e:6f:32:28:4d:e1:cc:23:6a:0d:fb:ca:02:58:
8d:25:1e:74:a6:3c:2f:33:33:55:3d:94:e6:88:47:22:1d:4b:
9b:40:50:ca:9b:31:35:27:16:0e:d8:79:2a:71:19:63:df:85:
2b:66:1c:16:50:23:db:b0:80:1c:b9:92:9e:85:fe:8a:64:64:
01:9e:df:49:e9:4d:07:cb:9c:5b:6e:41:4e:90:03:e1:b8:a5:
74:7c:92:67:ae:c8:ed:6f:33:4b:53:3c:68:99:22:2c:c8:9e:
28:34:88:68:7d:91:05:ea:d8:eb:84:42:0f:7f:e6:e2:0b:9c:
ca:d2:23:c3:cc:55:b2:70:46:fa:8a:21:48:9f:ee:2a:8a:fe:
b4:ee:1d:50:d3:11:69:5d:de:83:53:8a:1c:40:28:32:b1:3d:
71:91:5b:75:29:fe:0f:ae:47:ff:24:11:4c:b0:7c:45:ae:e1:
ef:63:b3:10:d2:81:df:49:9e:69:0e:96:2c:34:32:88:69:4a:
bc:8a:47:4e:01:5b:50:2b:56:4f:08:b6:c8:65:6a:21:cd:a7:
9f:38:bc:1b:a7:93:13:01:15:2e:9e:8b:e7:3f:cc:f3:1b:7b:
39:24:c3:f3:92:e7:88:f6:b1:c8:59:b6:9e:28:78:de:3e:ff:
40:89:9d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:10 2024 by rpki-client on console-fra.rpki-client.org