Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6vRPs0yrBsRphsaMtxQawaU6iA4.roa
File: 6vRPs0yrBsRphsaMtxQawaU6iA4.roa (raw, json)
Hash identifier: Y6Vd6NWMk1xJDu+j6QWu20YuazBaMlUcRznpWoygzRU=
Subject key identifier: EA:F4:4F:B3:4C:AB:06:C4:69:86:C6:8C:B7:14:1A:C1:A5:3A:88:0E
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1414723A
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6vRPs0yrBsRphsaMtxQawaU6iA4.roa
Signing time: Tue 08 Mar 2022 13:13:13 +0000
ROA not before: Tue 08 Mar 2022 13:13:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 82.115.0.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336884282 (0x1414723a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 8 13:13:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eaf44fb34cab06c46986c68cb7141ac1a53a880e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a1:b9:da:ed:9c:d2:65:86:43:33:40:c8:e9:
64:e3:3d:2a:ce:b1:bd:25:cb:7e:09:90:64:c7:d5:
bb:42:0d:a2:4b:7d:cd:9b:b9:da:7f:7b:e5:f5:ff:
58:31:ec:92:e0:59:cc:78:ad:f8:2d:fa:72:f8:54:
17:d1:84:1b:11:36:43:f5:d4:f2:e5:5d:7c:16:39:
57:f1:b3:a0:3c:c7:ee:b0:53:19:1c:b9:9a:f5:0a:
57:20:e7:a5:e0:4d:de:8f:de:6d:96:67:48:3e:5a:
02:d5:4d:30:a9:ac:1d:59:fa:6c:4d:63:49:24:b0:
48:fa:73:ac:57:2c:85:0e:00:ce:28:e1:53:31:67:
82:54:4d:7a:70:19:b8:bf:95:a5:ab:dd:dd:14:78:
74:c6:d1:2e:55:be:6e:ae:cb:43:2a:ed:15:77:97:
56:b6:5f:1d:d9:d2:38:f3:e7:30:34:6b:a2:23:37:
27:f2:b2:e4:df:a2:f4:ee:4d:93:1e:b0:e1:a4:bb:
24:7f:cd:71:b1:3c:7f:a9:39:9f:a3:1c:db:d8:95:
4f:d2:bb:96:e8:a0:d6:a0:01:63:14:a7:57:04:e5:
30:d7:25:89:58:a2:49:cd:28:c5:ea:1c:58:fe:8f:
94:80:f2:ac:cf:fa:4b:50:64:0c:ef:56:4c:e4:cc:
2d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F4:4F:B3:4C:AB:06:C4:69:86:C6:8C:B7:14:1A:C1:A5:3A:88:0E
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/6vRPs0yrBsRphsaMtxQawaU6iA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.0.0/22
Signature Algorithm: sha256WithRSAEncryption
11:c3:fc:41:ff:90:70:a9:75:8e:9e:81:bb:c2:37:e2:01:10:
b6:74:12:01:66:d7:6a:de:8c:f0:97:5a:81:67:42:fa:cf:28:
aa:f8:42:3e:a3:af:f8:0e:b9:8d:ee:a5:a2:58:e8:14:7c:45:
2c:be:ac:ff:99:54:17:6e:38:9b:b9:78:d6:0e:b8:f5:47:07:
89:d8:c0:ee:f7:49:0d:fd:93:1a:42:8a:08:29:23:27:72:3b:
c5:27:e9:51:6f:f2:56:a8:b7:00:67:7a:cd:c3:18:00:6e:b8:
19:8a:a6:ef:ad:ca:4b:ac:cc:28:b0:bd:fc:fd:bb:de:bb:fe:
84:ff:f4:f1:f5:df:13:09:3f:61:76:d8:30:c5:86:26:44:ff:
19:46:23:17:e5:d5:f3:5e:07:c0:d7:b8:9d:8c:7c:2f:c0:c1:
62:05:31:fa:44:a9:61:48:2e:28:86:c8:5e:83:b0:8c:a5:42:
f8:8b:44:6c:44:cf:ae:20:c1:2a:4e:07:f2:cd:b7:39:f8:cc:
66:b5:a2:00:59:b0:64:b6:3e:df:9e:0c:c5:f7:da:6b:0d:4b:
ab:4b:22:99:39:3e:a3:ab:e5:5e:06:29:08:ea:8a:3d:1e:a2:
de:3d:87:e8:61:82:f0:1a:9c:e1:3c:e5:39:d0:c6:1c:65:31:
da:78:1a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org