Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/fLkqBHuCAVJVJ1ZrNe_awMP8J8A.roa
File: fLkqBHuCAVJVJ1ZrNe_awMP8J8A.roa (raw, json)
Hash identifier: u4cJS1wU4U1SLz+vEnHhtkMtToq2F3rbiMqvbbMj+00=
Subject key identifier: 7C:B9:2A:04:7B:82:01:52:55:27:56:6B:35:EF:DA:C0:C3:FC:27:C0
Certificate issuer: /CN=6eebaf15233d98eb8ef062c245f917362e632656
Certificate serial: 0B468021
Authority key identifier: 6E:EB:AF:15:23:3D:98:EB:8E:F0:62:C2:45:F9:17:36:2E:63:26:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/buuvFSM9mOuO8GLCRfkXNi5jJlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/fLkqBHuCAVJVJ1ZrNe_awMP8J8A.roa
Signing time: Sat 01 Jan 2022 06:00:15 +0000
ROA not before: Sat 01 Jan 2022 06:00:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50630
IP address blocks: 195.8.194.0/24 maxlen: 24
109.95.57.0/24 maxlen: 24
109.95.58.0/24 maxlen: 24
2.56.4.0/24 maxlen: 24
2.56.6.0/24 maxlen: 24
2.56.5.0/24 maxlen: 24
2.56.7.0/24 maxlen: 24
2a0d:4d40::/44 maxlen: 48
2a0d:4d40:18::/48 maxlen: 48
2a0d:4d40:13::/48 maxlen: 48
2a0d:4d40:11::/48 maxlen: 48
2a0d:4d40:17::/48 maxlen: 48
2a0d:4d40:12::/48 maxlen: 48
2a0d:4d40:15::/48 maxlen: 48
2a0d:4d40:10::/48 maxlen: 48
2a0d:4d40:16::/48 maxlen: 48
2a0d:4d40:14::/48 maxlen: 48
2a0d:4d40:1a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189169697 (0xb468021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eebaf15233d98eb8ef062c245f917362e632656
Validity
Not Before: Jan 1 06:00:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cb92a047b8201525527566b35efdac0c3fc27c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:5a:7e:e0:13:cd:28:55:82:1c:4b:07:da:20:
25:10:cc:64:49:80:78:15:9f:d0:11:1a:16:b2:e9:
90:55:2a:3f:63:a6:95:99:89:c2:8b:6e:d8:38:f0:
58:9a:e3:50:8b:cb:c0:d1:a2:7e:8d:ac:45:1f:1a:
c6:63:8f:a6:f2:a8:81:ab:89:98:d1:df:34:1b:cb:
ea:f8:11:b2:e4:6b:92:bd:ea:66:64:ee:83:b3:94:
c4:30:ce:42:47:b5:43:31:d3:f8:ab:65:78:fd:3f:
ff:5a:1a:f2:70:e2:70:23:31:69:86:8f:75:20:cb:
ee:a2:65:5e:c0:dc:00:4d:07:8d:24:c2:0a:f1:cf:
2a:d8:a3:07:fb:23:ad:31:4e:9a:99:c6:06:2e:19:
42:b9:c7:cf:b1:ef:0f:7c:b3:cb:ab:9a:c3:bc:df:
6c:9d:90:f1:7b:a2:3d:1a:2d:0f:e1:d1:b2:a2:05:
4a:eb:fd:3c:5a:83:ad:be:31:27:e5:87:80:49:2a:
3e:d2:35:eb:58:16:be:f2:a9:a2:2d:fd:c0:69:6a:
05:47:55:fc:87:af:23:f0:20:06:ad:f3:c1:25:6b:
ce:9c:6c:9b:56:b7:f0:9b:ca:5b:84:0c:82:11:3c:
64:d7:23:68:db:22:c5:8d:d1:94:0d:0b:75:33:86:
42:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B9:2A:04:7B:82:01:52:55:27:56:6B:35:EF:DA:C0:C3:FC:27:C0
X509v3 Authority Key Identifier:
keyid:6E:EB:AF:15:23:3D:98:EB:8E:F0:62:C2:45:F9:17:36:2E:63:26:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/buuvFSM9mOuO8GLCRfkXNi5jJlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/fLkqBHuCAVJVJ1ZrNe_awMP8J8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/buuvFSM9mOuO8GLCRfkXNi5jJlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.4.0/22
109.95.57.0-109.95.58.255
195.8.194.0/24
IPv6:
2a0d:4d40::-2a0d:4d40:18:ffff:ffff:ffff:ffff:ffff
2a0d:4d40:1a::/48
Signature Algorithm: sha256WithRSAEncryption
1b:4f:6b:42:d8:b6:66:c9:8b:4a:c7:77:5c:d9:a1:bd:9f:0c:
e6:56:fb:48:cc:fe:b8:2c:25:39:74:47:d4:ea:e4:78:02:79:
d8:66:30:ac:b6:c2:e1:38:c9:ad:e0:9a:71:f2:12:54:86:61:
3b:b9:61:44:85:92:92:59:57:22:5b:d4:dd:0f:57:aa:02:d7:
98:1e:3d:fd:21:78:9d:38:f8:c0:0f:9d:67:74:71:97:bf:ff:
5a:40:1b:30:24:36:b2:e6:66:eb:62:66:26:cd:dc:04:02:f1:
9c:6c:d0:70:ca:15:6a:ad:2b:c9:cd:16:3f:fd:2e:93:cf:b4:
40:d6:92:a4:75:da:c5:0c:3c:d0:57:fe:55:66:95:2d:0a:17:
40:52:b2:e0:18:9f:50:4d:4e:4a:d6:c7:30:15:88:dc:4c:11:
93:a4:59:4f:44:df:b4:15:f6:fc:68:75:e7:86:38:7f:24:cb:
c8:8a:fa:46:cd:a9:df:31:77:fd:42:44:7d:2b:63:22:13:46:
8d:99:43:93:c7:1e:83:2f:39:80:40:b5:af:ef:f7:bb:0c:5e:
aa:9a:da:68:8e:e5:4e:bb:98:19:e3:c7:c8:c9:37:61:bb:dd:
0a:f8:b8:a7:f0:9c:1e:3c:e2:25:00:f5:e6:ff:ca:09:5d:84:
0b:3c:c2:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org