Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/1e02fa-f823-41c8-86b2-151cf61de83e/1/elNEtD9YvC6WFhncgsAbup0gEeY.roa
File: elNEtD9YvC6WFhncgsAbup0gEeY.roa (raw, json)
Hash identifier: O4inJiXT40vU5D0x3QEve9Wz81WP9BYTA+TllazHS5E=
Subject key identifier: 7A:53:44:B4:3F:58:BC:2E:96:16:19:DC:82:C0:1B:BA:9D:20:11:E6
Certificate issuer: /CN=2532a5cf2ba18c753edc95ee20b666293df02d5b
Certificate serial: 0201E522
Authority key identifier: 25:32:A5:CF:2B:A1:8C:75:3E:DC:95:EE:20:B6:66:29:3D:F0:2D:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTKlzyuhjHU-3JXuILZmKT3wLVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/1e02fa-f823-41c8-86b2-151cf61de83e/1/elNEtD9YvC6WFhncgsAbup0gEeY.roa
Signing time: Sat 01 Jan 2022 06:58:13 +0000
ROA not before: Sat 01 Jan 2022 06:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35030
IP address blocks: 91.221.83.0/24 maxlen: 24
91.221.82.0/24 maxlen: 24
77.32.227.0/24 maxlen: 24
195.211.13.0/24 maxlen: 24
195.211.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33678626 (0x201e522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2532a5cf2ba18c753edc95ee20b666293df02d5b
Validity
Not Before: Jan 1 06:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a5344b43f58bc2e961619dc82c01bba9d2011e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:be:48:75:61:4e:2c:15:11:35:58:73:32:37:
fb:81:ef:4b:e3:9d:20:28:bb:c2:0b:4a:f8:b7:e7:
e6:37:80:9b:63:ad:3d:ec:fd:24:52:a8:6f:75:57:
80:c1:20:3f:a9:9b:99:1a:2a:00:f5:1e:b4:aa:e5:
50:ba:0f:91:ad:1a:88:16:45:48:d4:e5:7a:86:ff:
51:8a:41:b5:c4:4a:87:dc:4b:b8:10:2d:73:44:53:
0d:c3:82:69:c4:4d:93:94:a2:49:8f:a1:1e:fe:c2:
90:3b:89:af:b4:24:7b:48:0f:d0:1c:7b:81:0d:40:
13:09:b9:76:b0:5b:b9:76:db:46:40:19:06:da:9e:
7a:05:55:a9:2b:5e:0f:46:fd:d4:a9:e0:f8:06:a9:
f6:d0:05:41:06:c2:4f:a8:92:3b:df:70:ce:a1:02:
2e:09:9d:c9:bd:ae:d4:c7:ae:1b:0f:e1:59:5d:d5:
92:24:a5:e0:86:1d:b0:43:c4:95:49:f0:99:3c:23:
1f:4b:90:85:29:98:e7:32:b2:d8:33:d4:43:30:a7:
98:50:1d:fe:23:57:26:ee:fd:74:3d:f6:c3:b7:88:
67:14:e5:85:5c:11:bf:b0:bc:7e:b0:b5:58:88:3e:
fd:14:a6:df:59:63:8b:a4:e7:2f:1d:62:3f:fe:2e:
e1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:53:44:B4:3F:58:BC:2E:96:16:19:DC:82:C0:1B:BA:9D:20:11:E6
X509v3 Authority Key Identifier:
keyid:25:32:A5:CF:2B:A1:8C:75:3E:DC:95:EE:20:B6:66:29:3D:F0:2D:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTKlzyuhjHU-3JXuILZmKT3wLVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1e02fa-f823-41c8-86b2-151cf61de83e/1/elNEtD9YvC6WFhncgsAbup0gEeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1e02fa-f823-41c8-86b2-151cf61de83e/1/JTKlzyuhjHU-3JXuILZmKT3wLVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.32.227.0/24
91.221.82.0/23
195.211.12.0/23
Signature Algorithm: sha256WithRSAEncryption
67:9b:bb:66:eb:ae:18:bd:94:88:2e:f9:d9:21:e6:a9:6c:1b:
85:03:73:87:34:75:e1:e7:85:2d:77:0a:28:c5:f7:dd:43:0e:
69:73:1e:3f:a6:2a:9e:fe:87:a6:95:cd:61:5f:ca:50:24:15:
b3:1b:63:01:6c:14:b3:8f:20:89:24:52:e5:01:82:72:ba:d6:
6c:9d:ce:36:b0:46:b2:45:fc:5d:32:80:7b:d4:29:3d:0b:1c:
ca:b7:d4:b8:8e:64:fd:87:d9:5d:3f:13:8e:9c:f0:fb:74:a5:
ee:23:1c:b3:1c:b4:9d:74:60:4c:e5:c3:d4:b7:81:50:a5:8a:
0a:c9:04:24:fc:0c:81:d0:39:b3:86:8c:46:20:71:c7:6c:2d:
9e:a4:19:cb:6e:c3:c7:25:c2:be:67:55:94:c2:e0:97:4f:e5:
79:c8:8f:b9:ce:d4:6d:b4:59:f9:b8:38:3d:38:81:3a:42:1a:
61:1f:22:80:1b:81:1e:a5:65:2d:d8:65:3e:33:9b:a9:b8:ec:
3f:65:94:5e:cf:2d:d3:bb:90:c5:6a:51:ec:ba:2e:17:ae:38:
83:79:66:55:1a:45:96:b3:28:ea:bb:1f:ee:70:3b:35:f4:5c:
85:51:2c:6f:71:35:4b:fa:43:39:b3:51:a0:6c:d5:56:14:f3:
9a:08:04:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:29 2024 by rpki-client on console-fra.rpki-client.org