Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/IEfuuyThDZZ7ZSWm0p8jY92DZ7A.roa
File: IEfuuyThDZZ7ZSWm0p8jY92DZ7A.roa (raw, json)
Hash identifier: m3h72uN1BEa1OcXjc/h06cOqILZQviBsqFzpJKfp3h0=
Subject key identifier: 20:47:EE:BB:24:E1:0D:96:7B:65:25:A6:D2:9F:23:63:DD:83:67:B0
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B53E76C
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/IEfuuyThDZZ7ZSWm0p8jY92DZ7A.roa
Signing time: Tue 04 Jan 2022 13:28:23 +0000
ROA not before: Tue 04 Jan 2022 13:28:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31017
IP address blocks: 86.104.128.0/22 maxlen: 22
89.43.136.0/22 maxlen: 22
2a05:b680:6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190048108 (0xb53e76c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 4 13:28:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2047eebb24e10d967b6525a6d29f2363dd8367b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5d:e6:4d:19:e3:1e:69:7e:00:78:97:3d:db:
1c:a8:49:c9:c4:e1:e1:9d:3b:eb:a4:10:99:5f:ed:
33:11:4f:b4:d0:2d:59:44:c1:7a:73:5c:db:e5:d7:
51:08:cd:a5:dc:91:be:84:da:02:cf:a7:91:0e:ba:
32:7e:a1:f3:b8:16:ba:3b:d7:14:c6:0c:b1:a6:ac:
40:da:75:fc:39:2b:0c:b5:58:cf:d1:b9:de:14:e3:
7c:0d:80:b7:73:cb:e0:78:b4:8c:a9:8a:ca:ed:bb:
c1:3b:c4:2f:78:0e:b6:45:47:22:3a:e3:13:ee:b5:
23:0e:fe:52:f6:3f:61:12:f0:cf:97:78:f8:21:ef:
53:c1:88:eb:2a:b6:16:34:c9:11:ea:ca:c8:dd:54:
56:21:85:d5:95:78:1f:72:fc:45:1b:25:65:7b:79:
39:ae:c2:25:17:5c:7a:4a:6c:d3:62:d9:e1:d0:1d:
ab:2d:ae:6a:c4:22:6a:e3:3d:bd:a1:8f:02:59:b4:
fa:77:44:cf:72:13:f6:29:08:d0:ec:07:7e:c4:50:
07:1c:5c:bc:f4:c2:2a:4b:b0:0e:30:e2:03:98:9d:
7c:ff:12:0d:4f:7a:26:f7:f7:ff:df:a8:c9:57:7f:
2c:3d:3e:b7:14:1c:bc:7b:6f:d4:51:8f:b7:f3:91:
bf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:47:EE:BB:24:E1:0D:96:7B:65:25:A6:D2:9F:23:63:DD:83:67:B0
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/IEfuuyThDZZ7ZSWm0p8jY92DZ7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.128.0/22
89.43.136.0/22
IPv6:
2a05:b680:6::/48
Signature Algorithm: sha256WithRSAEncryption
07:8c:01:b2:7e:2d:cc:7e:35:b6:6f:2f:57:dc:b3:30:af:34:
e3:ae:9d:74:cc:20:b0:0f:db:3c:6a:49:06:d1:34:6d:09:08:
f2:21:bf:f4:31:2d:1b:4b:54:63:16:ed:69:d1:d1:86:f9:fe:
0a:9f:d6:97:5e:34:81:d0:71:c5:fd:9a:d4:43:91:f7:c7:94:
d3:4e:33:79:74:a7:06:f9:01:37:dc:72:9d:af:1f:89:60:42:
b2:17:57:e7:f8:b0:da:d1:79:64:6c:31:94:10:41:2f:c3:47:
b4:2f:65:8c:29:15:22:24:45:46:87:8c:63:68:88:d5:c6:f9:
4b:71:3a:4e:9a:94:83:8c:41:3b:0d:72:81:c4:bc:ee:5e:4a:
d3:04:c9:9a:66:a5:c9:52:4b:78:11:87:ec:73:21:1f:81:a0:
18:f3:b8:1e:9d:2c:7b:09:60:af:76:51:80:0d:e8:2c:a6:9a:
12:7a:90:03:b9:7a:81:ec:9d:d3:25:13:47:2e:7f:5d:4c:fd:
2f:31:d9:1f:a8:ef:58:67:46:bb:71:c3:2c:2b:33:80:6b:7d:
c4:2d:a6:6d:72:78:c2:f1:5d:1f:36:45:1d:52:4e:50:3f:52:
b4:c1:09:71:50:aa:36:2a:5a:f2:33:26:24:7f:fb:a6:14:06:
b9:61:d0:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org