Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/0U2V028iI2mLA5VxcQikRjNVEt0.roa
File: 0U2V028iI2mLA5VxcQikRjNVEt0.roa (raw, json)
Hash identifier: Jo2hsIU1fm+7vI8+3FE6XLvXJNynBcCiPIKczJQYIos=
Subject key identifier: D1:4D:95:D3:6F:22:23:69:8B:03:95:71:71:08:A4:46:33:55:12:DD
Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93
Certificate serial: 381BE991
Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/0U2V028iI2mLA5VxcQikRjNVEt0.roa
Signing time: Sat 01 Jan 2022 12:06:08 +0000
ROA not before: Sat 01 Jan 2022 12:06:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15922
IP address blocks: 217.18.64.0/20 maxlen: 20
178.255.192.0/21 maxlen: 21
178.255.199.0/24 maxlen: 24
2a00:19c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941353361 (0x381be991)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93
Validity
Not Before: Jan 1 12:06:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d14d95d36f2223698b0395717108a446335512dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:93:dc:05:50:15:b1:3e:93:f7:3f:11:38:
0b:ff:48:92:30:10:38:03:b8:f8:bf:b6:ef:27:07:
b8:56:e7:a2:fa:26:6a:2c:03:26:e2:6f:ba:9d:4f:
e9:77:73:fa:6b:b8:cd:b9:aa:a6:d0:64:a1:9d:cb:
02:e6:70:1a:6d:44:d3:da:0f:1a:89:a5:9d:7a:f7:
a5:d5:a8:4d:b2:5f:70:f7:00:4b:e2:03:38:b4:9c:
53:c1:ff:d3:2f:cb:6f:2a:8c:92:47:39:7c:de:e8:
cb:de:3f:6a:af:b1:f8:dc:96:27:d1:61:9f:fb:36:
ae:27:95:82:cf:f7:4a:d8:b4:43:12:1b:b0:99:85:
d8:5a:07:a3:11:21:df:fb:b4:88:fa:dd:e6:38:59:
6b:a3:5c:d7:84:d3:ba:98:ab:6b:84:9a:2c:fb:2f:
af:84:4e:7c:59:0c:f8:47:44:23:ed:d6:8f:64:39:
d7:ee:f3:4f:0d:e7:1e:b2:ad:54:e6:68:92:ca:b6:
13:d7:35:37:28:24:25:b8:06:1f:46:83:bb:c8:e8:
a5:a2:44:5d:3d:e1:7e:02:74:a9:ff:0f:32:e5:02:
03:2e:83:af:ce:26:62:35:e2:b7:61:ed:45:55:c1:
83:6b:a0:5b:2e:ae:a2:9b:c4:4f:c0:fd:aa:f7:c1:
a1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:4D:95:D3:6F:22:23:69:8B:03:95:71:71:08:A4:46:33:55:12:DD
X509v3 Authority Key Identifier:
keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/0U2V028iI2mLA5VxcQikRjNVEt0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.192.0/21
217.18.64.0/20
IPv6:
2a00:19c0::/32
Signature Algorithm: sha256WithRSAEncryption
84:55:6e:f0:54:97:4f:c3:51:f4:3d:41:78:f5:76:5e:d0:5e:
66:94:92:91:9f:2a:67:85:f8:5f:10:05:14:1f:83:25:4a:0e:
27:96:a8:76:64:66:38:34:03:c6:9f:bc:48:67:03:4f:60:8c:
ad:d2:50:ca:2b:aa:e7:81:ab:98:1c:f5:25:de:43:71:81:83:
20:55:85:15:09:4b:96:e8:5b:c5:87:99:33:e6:27:96:14:8c:
e1:71:a4:fd:74:bd:0b:cf:b4:1e:e5:56:f6:55:c0:5f:d5:c8:
f8:75:98:ea:ab:fc:41:5e:86:a9:fc:9b:da:d7:6a:95:1b:57:
84:75:dd:2e:5b:7f:d1:a4:05:41:35:f3:92:12:02:08:ef:e9:
31:cc:6e:29:79:ba:e5:0b:2b:1f:a6:21:8a:68:c3:27:43:72:
d4:61:14:fb:26:a1:35:5f:d5:d0:a5:08:b0:43:58:33:fa:9f:
e2:9d:8d:37:61:41:88:54:c4:8c:be:c4:6b:6b:84:82:7c:5f:
dc:f4:8e:0d:ff:b4:0c:88:a9:f9:9f:6a:a8:bc:a4:8b:44:ae:
3b:2d:43:0a:73:59:db:29:dc:e4:1e:40:6c:45:49:63:44:53:
ab:de:8a:a7:f6:a8:cd:a1:35:da:4e:f4:58:0a:04:17:89:fc:
04:5f:ff:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:35 2024 by rpki-client on console-fra.rpki-client.org