Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/1Qr26gBDXpoSgOUbNa6iBekzX4E.roa
File: 1Qr26gBDXpoSgOUbNa6iBekzX4E.roa (raw, json)
Hash identifier: 8bWnr4aiAnuzu8LungO7eBIsmrLfn+2i+vOHA3TvKqw=
Subject key identifier: D5:0A:F6:EA:00:43:5E:9A:12:80:E5:1B:35:AE:A2:05:E9:33:5F:81
Certificate issuer: /CN=764928a97be955377013d382c62940e950dd212b
Certificate serial: 0200B471
Authority key identifier: 76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/1Qr26gBDXpoSgOUbNa6iBekzX4E.roa
Signing time: Sat 01 Jan 2022 05:02:56 +0000
ROA not before: Sat 01 Jan 2022 05:02:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9211
IP address blocks: 87.253.190.0/24 maxlen: 24
185.205.216.0/22 maxlen: 24
31.24.96.0/21 maxlen: 24
87.253.160.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33600625 (0x200b471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764928a97be955377013d382c62940e950dd212b
Validity
Not Before: Jan 1 05:02:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d50af6ea00435e9a1280e51b35aea205e9335f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2b:d9:43:e4:95:7e:5d:88:1f:1b:d9:4e:a2:
59:68:61:e7:5b:8e:51:32:b0:81:83:78:79:6f:d6:
3c:58:59:14:f8:29:1e:eb:7d:c5:ef:32:c8:e6:3f:
7d:01:80:15:7c:b6:a5:43:7c:b3:a5:8a:2f:3b:20:
df:e7:45:e2:79:76:d2:56:f1:05:c0:a7:9f:74:58:
72:88:8f:2f:1b:2b:3b:f4:e3:a6:bf:9a:e4:f6:cd:
a5:03:fa:d2:14:28:bd:5b:0a:22:2e:95:f7:fc:7f:
99:b0:63:25:cb:70:41:25:ec:6e:bf:09:f0:b7:4a:
71:a1:57:19:12:80:90:0b:f3:11:b5:14:5b:7d:47:
65:0b:d7:b0:87:e5:d6:27:3e:23:82:37:60:df:4b:
02:1f:64:5d:e9:1e:37:71:a5:d5:c4:6b:86:58:be:
09:92:1c:26:20:d2:0e:f6:1d:03:b3:af:e9:f5:b4:
86:60:d1:7c:a9:bd:f0:ff:3d:90:1c:77:a4:6a:fe:
55:23:35:65:fe:1b:4b:ad:f0:e1:81:d1:37:af:c6:
bc:97:d5:f8:87:62:4f:d6:a1:74:60:11:f7:2b:fd:
58:ea:9a:22:91:ab:b4:48:b5:99:25:02:03:5e:c3:
04:70:09:37:d9:a5:21:b6:70:50:5c:d3:c1:c6:78:
31:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0A:F6:EA:00:43:5E:9A:12:80:E5:1B:35:AE:A2:05:E9:33:5F:81
X509v3 Authority Key Identifier:
keyid:76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/1Qr26gBDXpoSgOUbNa6iBekzX4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.96.0/21
87.253.160.0/20
87.253.190.0/24
185.205.216.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:4b:8b:f9:4a:ab:48:7c:64:73:4a:77:1a:b9:e1:04:df:e6:
f6:45:7f:d5:e1:35:6c:f7:a7:5a:cd:d3:16:dc:53:d4:fc:d8:
48:6d:d6:80:47:7e:6b:a4:02:f5:34:53:86:05:f2:f0:f7:65:
09:bc:62:74:34:f4:e7:79:3f:7e:de:5e:1c:5f:10:52:24:2c:
4e:90:19:e3:2a:25:42:7d:b1:5a:d6:33:ec:06:c6:96:da:b3:
5e:b3:98:55:48:db:d3:b7:f0:b6:98:b2:0b:5b:32:b8:ab:d3:
e1:1c:32:ba:af:1d:1e:7b:71:04:65:92:9b:c9:c5:1f:7b:f3:
1e:7d:f6:0b:09:63:e6:7c:39:85:ca:9f:b7:ca:9a:3d:8d:39:
97:d9:b8:41:73:ec:4e:bf:3b:f1:34:50:a6:05:a1:a7:67:8b:
71:2a:02:d3:36:e3:93:41:a5:d1:0d:05:c1:5f:78:38:4f:b7:
de:14:91:9a:1f:38:8b:f7:61:68:c0:ec:7a:fa:0c:07:91:f4:
c8:c1:97:d1:b6:5c:15:d8:b3:9a:39:5b:37:d8:9f:71:72:97:
63:cb:c0:98:30:49:5a:e5:21:65:3d:59:d9:98:04:61:72:77:
87:ce:7d:55:36:02:3b:de:7f:89:3e:31:54:a7:cf:60:0f:2a:
1c:44:a8:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:41 2024 by rpki-client on console-fra.rpki-client.org