Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kTazCQIj06Nyy5NCnFFrkoJXCSI.roa
File: kTazCQIj06Nyy5NCnFFrkoJXCSI.roa (raw, json)
Hash identifier: wGtPGLEHmN16ST1hbUnG/6De5Ulsq5cO0+TcwC8nqaI=
Subject key identifier: 91:36:B3:09:02:23:D3:A3:72:CB:93:42:9C:51:6B:92:82:57:09:22
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 086F6629
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kTazCQIj06Nyy5NCnFFrkoJXCSI.roa
Signing time: Sat 01 Jan 2022 00:53:28 +0000
ROA not before: Sat 01 Jan 2022 00:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39007
IP address blocks: 82.135.160.0/21 maxlen: 21
212.59.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141518377 (0x86f6629)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9136b3090223d3a372cb93429c516b9282570922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9b:32:4b:0a:0b:a2:fd:74:37:fe:04:9f:20:
17:fe:32:4d:5f:84:14:0e:ed:f5:36:7f:6f:c2:e5:
25:51:67:ac:1c:a6:62:d1:0a:49:2d:8b:95:1a:35:
c4:ed:ee:f7:35:20:35:a9:b3:a4:f5:9e:35:3a:d1:
80:2f:56:e8:46:0c:1f:a7:d2:f9:32:97:ab:68:d2:
ce:6e:46:e4:b9:81:ff:50:2f:bd:65:9f:77:45:54:
9d:51:05:ca:49:ca:43:8e:7e:35:69:6e:0c:53:72:
9e:e5:02:f9:ff:1f:1b:b5:a1:ff:0d:ca:45:80:72:
90:99:77:31:cf:64:e5:2d:c9:9d:c9:a6:4f:6c:1e:
6d:1c:6c:f2:f4:d8:31:ca:07:92:8e:97:52:d3:86:
ff:a7:ba:de:3f:7f:28:1c:93:53:32:c6:93:bf:09:
33:77:bf:f1:41:c4:89:43:f2:33:69:71:2a:43:f4:
e8:ef:01:1a:9e:0b:72:7c:52:a9:cd:43:7b:6c:90:
9a:4e:dd:c0:d0:86:82:02:5a:cd:ee:01:7e:ac:7b:
73:c3:45:e3:62:ae:b8:bf:bd:66:2b:de:d8:e8:19:
25:99:3a:24:9e:20:dc:ff:3a:41:71:7d:e0:6e:f4:
37:89:0c:ff:80:ed:fa:39:c8:4c:e9:91:94:53:8e:
96:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:36:B3:09:02:23:D3:A3:72:CB:93:42:9C:51:6B:92:82:57:09:22
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/kTazCQIj06Nyy5NCnFFrkoJXCSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.135.160.0/21
212.59.18.0/24
Signature Algorithm: sha256WithRSAEncryption
39:a6:d4:ba:7e:ae:be:1c:aa:fe:fe:73:fe:00:a4:b4:86:0a:
8f:8f:cb:d5:10:41:f6:ca:cc:0e:06:64:ac:96:22:66:6f:3a:
eb:a4:44:3a:a5:f7:19:82:6c:ae:d1:6d:ac:d1:5e:cb:e5:6c:
b3:31:27:87:77:c0:e4:d4:6a:ae:7f:7f:d2:b9:09:40:77:d9:
f8:c9:d8:d0:1d:9e:90:35:8f:2e:16:4f:7b:b8:35:a3:e9:6e:
f6:df:08:c7:86:cd:d1:29:2f:62:5b:35:1a:0c:6f:87:b9:4d:
b0:03:7e:cf:90:66:d1:cf:93:39:9c:dc:2a:78:4a:0f:ce:ba:
67:0b:64:56:95:e9:3b:ce:e4:bb:b4:3a:5c:1c:0e:be:1a:9a:
ef:d6:5c:4e:07:a7:33:a8:d5:c0:dc:a3:e7:ca:12:94:28:57:
ad:93:6a:e6:6d:dd:d5:6a:79:06:39:1c:3a:53:51:1b:66:01:
1c:e0:75:0a:30:1e:ea:e1:3e:de:98:b2:24:45:3a:fb:56:29:
79:66:61:b0:17:2f:57:c3:2f:3a:a9:77:0b:d1:0f:30:cc:9c:
db:eb:14:1a:5f:6e:db:28:95:6c:2b:b7:c7:aa:5b:f2:61:7e:
c9:ac:49:7f:2f:40:16:6e:11:59:67:c4:52:bb:9f:87:8f:d3:
f0:b3:26:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:18 2024 by rpki-client on console-fra.rpki-client.org