Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/yQWb_Te1qH_ahpV8GjCaDHF-Lb0.roa
File: yQWb_Te1qH_ahpV8GjCaDHF-Lb0.roa (raw, json)
Hash identifier: vwT45CcpxdqecRh2+FCf4jBJQZGPG2TOLsNL9YwfwxI=
Subject key identifier: C9:05:9B:FD:37:B5:A8:7F:DA:86:95:7C:1A:30:9A:0C:71:7E:2D:BD
Certificate issuer: /CN=fb987244611b5230536744b6a89f044f32f462ea
Certificate serial: 0870629F
Authority key identifier: FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/yQWb_Te1qH_ahpV8GjCaDHF-Lb0.roa
Signing time: Sat 01 Jan 2022 00:53:29 +0000
ROA not before: Sat 01 Jan 2022 00:53:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43463
IP address blocks: 82.135.228.0/22 maxlen: 22
82.135.156.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141583007 (0x870629f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb987244611b5230536744b6a89f044f32f462ea
Validity
Not Before: Jan 1 00:53:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9059bfd37b5a87fda86957c1a309a0c717e2dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:08:49:a5:3a:12:69:2a:63:ff:b2:30:c1:6d:
28:c6:c7:e3:02:b7:81:94:a5:f3:50:22:38:84:22:
60:1f:96:48:0e:7a:f9:2d:eb:ab:19:f0:ab:0a:9d:
d1:b9:2b:21:d1:56:b6:92:1f:75:a8:73:27:97:fa:
f0:b6:25:52:23:a4:39:1c:f7:e9:85:5d:de:08:2f:
aa:fc:74:90:76:c8:23:fa:17:21:27:3a:29:93:cd:
3b:59:42:60:e5:32:53:59:06:23:d8:c9:dc:90:21:
8f:c8:95:31:c3:2c:5c:62:3c:e2:fb:1f:1a:4e:5c:
ec:77:eb:3c:07:fa:3a:10:8e:98:ce:52:df:5b:d0:
81:e6:9d:f7:19:28:3c:cc:d4:48:e1:35:05:b3:a2:
1c:34:38:d6:3e:27:a0:77:33:79:e9:9d:04:b4:aa:
ad:13:71:60:63:6c:b2:ba:0e:a8:d3:87:b0:24:63:
88:e5:aa:c6:7f:1f:18:78:1e:00:c2:c3:87:91:e9:
18:bf:61:94:f1:91:a8:e4:26:bc:51:0c:56:08:0c:
ae:b9:70:d1:ae:09:db:71:a4:8b:16:ce:4a:9d:dc:
9e:60:d3:f3:8a:ae:a2:2e:25:6e:02:ae:54:e0:1c:
ba:9e:52:43:e5:7a:ab:71:fb:6c:f4:b0:fa:01:15:
a6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:05:9B:FD:37:B5:A8:7F:DA:86:95:7C:1A:30:9A:0C:71:7E:2D:BD
X509v3 Authority Key Identifier:
keyid:FB:98:72:44:61:1B:52:30:53:67:44:B6:A8:9F:04:4F:32:F4:62:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/yQWb_Te1qH_ahpV8GjCaDHF-Lb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/319d7c-7e76-4308-bc00-be5832d5f7aa/1/1-5hyRGEbUjBTZ0S2qJ8ETzL0Yuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.135.156.0/23
82.135.228.0/22
Signature Algorithm: sha256WithRSAEncryption
50:85:ac:73:ee:e4:36:fe:76:c1:ef:77:56:51:e0:54:d4:97:
96:68:96:42:40:7a:fb:05:26:8d:08:5b:86:c4:8f:7b:f6:41:
b7:7d:e9:6f:99:58:cc:d9:7e:0f:1e:ae:f8:e3:8e:26:06:bd:
46:bb:d2:bc:cb:2d:8f:a8:be:49:ba:8e:87:3f:eb:55:a4:08:
ff:00:41:73:87:49:d0:26:bd:ce:a3:5b:23:f5:04:65:7c:d3:
68:2b:da:95:8f:54:85:23:ea:6f:38:43:87:0e:8b:db:88:01:
17:95:6f:6f:1c:0c:8e:e9:69:40:d7:81:ce:b3:23:85:03:55:
5f:9e:a1:04:7a:fe:64:47:08:7b:4e:41:eb:80:4a:1b:3c:06:
31:aa:d7:93:8a:0e:b3:5b:d5:d8:2f:f5:29:6b:55:e1:8e:1c:
77:7a:f9:44:9c:7e:81:5c:ba:c8:cb:b6:9b:eb:b0:69:c3:80:
af:23:76:85:bc:66:a3:b2:57:46:da:74:13:94:02:3e:63:80:
30:ca:62:a5:bc:4c:b6:6a:fd:55:e1:e9:9f:ea:0b:e5:1b:c6:
fa:b5:36:24:b3:23:b5:2a:ca:6d:70:36:c4:fe:5f:47:c6:13:
07:32:d8:79:97:32:b9:fb:e6:57:15:ed:a4:22:1d:67:43:25:
f5:28:46:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:18 2024 by rpki-client on console-fra.rpki-client.org