Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6e44b7-baff-45f3-a4e9-17f881f771cb/1/AL6BDkut77eWPjItK0HswYHQiuk.roa
File: AL6BDkut77eWPjItK0HswYHQiuk.roa (raw, json)
Hash identifier: JURZ1hh8IoZbKSLFwy1k3xsn9Gj57MQPXSjOiKpGNcQ=
Subject key identifier: 00:BE:81:0E:4B:AD:EF:B7:96:3E:32:2D:2B:41:EC:C1:81:D0:8A:E9
Certificate issuer: /CN=56641d162079efd3c560a5de9e9226b2f2f0b097
Certificate serial: CC8E6F
Authority key identifier: 56:64:1D:16:20:79:EF:D3:C5:60:A5:DE:9E:92:26:B2:F2:F0:B0:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmQdFiB579PFYKXenpImsvLwsJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6e44b7-baff-45f3-a4e9-17f881f771cb/1/AL6BDkut77eWPjItK0HswYHQiuk.roa
Signing time: Sat 01 Jan 2022 05:53:47 +0000
ROA not before: Sat 01 Jan 2022 05:53:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 188.214.157.0/24 maxlen: 24
86.105.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13405807 (0xcc8e6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56641d162079efd3c560a5de9e9226b2f2f0b097
Validity
Not Before: Jan 1 05:53:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00be810e4badefb7963e322d2b41ecc181d08ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a1:42:63:c2:ed:11:8d:7b:b8:2a:fb:3e:b1:
c6:ba:72:3d:15:f7:04:d9:d2:91:8c:50:c9:93:37:
46:58:db:07:37:cb:65:d8:e2:3b:b7:83:8a:77:ad:
c9:8b:1c:eb:62:69:06:8e:04:c9:bc:90:03:7b:57:
91:6e:cb:ea:cb:38:44:31:2a:f8:0b:67:1f:c1:b4:
1a:9b:29:c6:9c:2c:ba:8f:a3:5f:8a:a2:a4:d2:9b:
d5:d8:2e:aa:ae:b1:2b:c1:84:9e:61:fd:99:ec:db:
e7:4a:76:43:86:f4:61:57:8d:b6:fe:76:b8:28:6b:
bc:27:5b:30:df:43:f0:02:80:29:08:bb:32:35:17:
c0:3d:05:4d:5f:e7:34:74:7d:7c:67:72:15:09:16:
95:39:a6:59:72:a9:96:07:c0:c7:77:5f:9a:3e:25:
01:75:ff:ed:5b:a9:4f:78:8c:ad:24:81:9e:6d:50:
3b:9e:ef:47:4b:50:59:24:27:d5:b7:71:cb:42:ad:
1a:d9:41:94:b3:a6:47:26:76:6c:d1:0d:b1:00:cf:
a8:57:09:0f:a5:43:49:29:a0:20:32:11:9f:6c:79:
9d:aa:94:ed:67:82:f6:5f:f3:11:3c:e8:55:72:f1:
bf:96:14:3b:dc:3a:a2:11:aa:91:13:32:01:77:f8:
a8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BE:81:0E:4B:AD:EF:B7:96:3E:32:2D:2B:41:EC:C1:81:D0:8A:E9
X509v3 Authority Key Identifier:
keyid:56:64:1D:16:20:79:EF:D3:C5:60:A5:DE:9E:92:26:B2:F2:F0:B0:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmQdFiB579PFYKXenpImsvLwsJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6e44b7-baff-45f3-a4e9-17f881f771cb/1/AL6BDkut77eWPjItK0HswYHQiuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6e44b7-baff-45f3-a4e9-17f881f771cb/1/VmQdFiB579PFYKXenpImsvLwsJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.182.0/24
188.214.157.0/24
Signature Algorithm: sha256WithRSAEncryption
96:1f:89:62:ba:b8:d9:bb:bd:69:f3:11:31:c0:97:a4:e0:a7:
e4:47:09:fc:13:39:d3:e9:8c:86:58:06:69:e5:c0:8c:d5:83:
a3:65:6e:d6:92:0c:a3:42:df:54:f5:c0:7d:c1:3d:8c:d0:c5:
55:27:47:9b:25:6d:ce:5f:fd:67:40:f0:ba:ee:4a:58:77:84:
8c:ea:ea:90:ba:63:59:a9:11:18:27:dd:6e:72:45:68:a6:2e:
7d:46:54:f6:01:5c:0c:fd:62:e4:db:b5:96:16:9e:0c:39:6e:
b6:cf:70:54:fd:7f:2d:d6:33:ed:57:c0:90:ec:90:ca:83:d9:
85:38:b6:9c:13:6f:bd:cf:5a:e3:23:b7:a7:fc:ad:12:90:d2:
e4:78:c0:5a:d9:47:8d:29:d4:9f:9d:9d:e5:f9:35:0e:52:d4:
42:2f:7b:2e:c0:ba:42:47:d5:a9:b7:c7:97:ab:16:79:fe:ca:
06:ee:3e:1d:18:8d:69:f4:c1:b8:e8:9e:43:f3:60:7f:d4:4f:
8d:5f:6d:71:a3:74:98:a3:b3:80:ce:fe:92:6d:0d:90:2c:72:
e0:bb:f5:54:b8:4f:01:cb:df:de:e5:f6:a0:20:7c:01:ac:3a:
ce:3a:33:2f:c2:ec:ac:2d:b5:f9:da:ba:95:2e:fe:14:69:bc:
2b:72:c5:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:48 2023 by rpki-client on console-ams.rpki-client.org