Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/Q9vTzYGcOKAuMWbVSFG2O24WLRM.roa
File: Q9vTzYGcOKAuMWbVSFG2O24WLRM.roa (raw, json)
Hash identifier: dYyQA9PibDE11lj2oJ+mLkXlb7ojmkSRrGiZwA7TgUs=
Subject key identifier: 43:DB:D3:CD:81:9C:38:A0:2E:31:66:D5:48:51:B6:3B:6E:16:2D:13
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 08725889
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/Q9vTzYGcOKAuMWbVSFG2O24WLRM.roa
Signing time: Sat 01 Jan 2022 00:53:30 +0000
ROA not before: Sat 01 Jan 2022 00:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50065
IP address blocks: 82.135.216.0/24 maxlen: 24
195.12.182.0/24 maxlen: 24
2a00:1eb8:c001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141711497 (0x8725889)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43dbd3cd819c38a02e3166d54851b63b6e162d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3e:3a:d8:4b:7f:c0:3c:8e:6f:a9:0d:1f:90:
f3:7f:17:90:58:05:58:3f:52:4f:2c:b6:cc:1d:cf:
1f:9a:5c:77:ed:32:c6:cb:26:0b:6e:e3:94:dc:d0:
77:5f:9f:9f:a5:23:fc:7a:b0:c6:b4:28:d0:af:a5:
53:70:6c:b6:ad:6d:09:db:76:c7:64:fe:5f:27:c7:
5c:53:74:d8:72:62:e7:c8:fc:4d:b0:7e:bd:8c:33:
cb:0b:70:6f:aa:07:d1:bc:7a:3c:25:61:30:c4:cc:
37:65:3f:af:7e:74:72:14:d1:0f:03:d1:df:e1:1c:
54:46:2e:6d:04:ab:a3:90:87:8e:90:88:9a:76:22:
75:fd:66:46:c2:b0:e0:73:0a:98:79:98:40:7d:af:
6c:2b:99:c1:93:57:92:04:ed:c1:c9:cc:96:e6:1d:
0f:b6:f0:bb:ee:a8:55:2b:5c:f5:27:38:c7:a3:57:
d1:f4:51:15:e0:44:79:4b:f8:73:c9:3c:79:81:5a:
09:5c:3b:1f:87:0c:e2:73:ea:cb:1d:06:a5:6b:dc:
21:ac:7c:eb:09:72:c4:79:e5:4d:09:a4:0c:5b:29:
1f:fa:88:e8:3f:57:d5:88:45:02:0e:ae:6a:31:8e:
ee:d1:cc:83:4d:96:03:e4:35:61:c6:9c:f1:5a:fb:
5f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DB:D3:CD:81:9C:38:A0:2E:31:66:D5:48:51:B6:3B:6E:16:2D:13
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/Q9vTzYGcOKAuMWbVSFG2O24WLRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.135.216.0/24
195.12.182.0/24
IPv6:
2a00:1eb8:c001::/48
Signature Algorithm: sha256WithRSAEncryption
57:c1:ba:5e:6c:e1:da:72:85:ab:61:ab:6f:87:4e:59:96:48:
61:7d:e4:f7:cd:4d:c6:3b:3a:d1:b9:44:16:8c:2a:e4:60:83:
f9:ae:ae:e0:9f:f6:0f:f8:28:96:81:b1:7d:69:f5:0b:07:fd:
52:65:90:0b:ff:e0:ef:d4:8d:f5:a3:39:16:24:0e:81:6d:68:
30:65:38:63:78:0b:29:13:ad:6a:4d:29:3e:59:8a:4f:0a:40:
25:48:d7:ea:0c:08:9e:ef:55:be:73:3e:49:3b:70:d8:d1:0a:
f8:20:77:8a:c9:2e:a8:f1:d7:b4:11:13:de:0e:32:f2:45:64:
6e:93:d8:f1:71:1a:5c:10:1a:cb:49:ad:b7:59:1f:a4:75:bd:
22:47:7d:1f:45:b0:a9:a8:db:2f:ce:72:ef:84:e6:36:17:78:
e5:9e:1b:c5:5b:62:4d:af:d8:7e:cc:7f:8a:34:ff:40:2f:77:
0b:88:32:10:d7:8f:43:74:ab:0e:be:cb:81:ba:55:3f:b3:5a:
5c:ad:61:9c:0c:21:ba:63:d4:98:04:86:38:93:59:4b:7e:fc:
fa:8f:43:3c:ff:9b:83:31:dd:fc:de:28:99:0a:d2:c7:e5:fc:
04:db:d0:8e:5b:93:75:a2:59:b9:46:f9:44:44:d0:b9:d1:6c:
77:2c:90:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:18 2024 by rpki-client on console-fra.rpki-client.org