Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/inetwu7qAIPMvW2O4LBANQgTGTE.roa
File: inetwu7qAIPMvW2O4LBANQgTGTE.roa (raw, json)
Hash identifier: ButdSR2h3Ah1EdtvefQW08J0xRww+cM03F+Tjs+xxmA=
Subject key identifier: 8A:77:AD:C2:EE:EA:00:83:CC:BD:6D:8E:E0:B0:40:35:08:13:19:31
Certificate issuer: /CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Certificate serial: 37644EE7
Authority key identifier: 11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/inetwu7qAIPMvW2O4LBANQgTGTE.roa
Signing time: Sat 01 Jan 2022 13:00:11 +0000
ROA not before: Sat 01 Jan 2022 13:00:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43647
IP address blocks: 82.148.0.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 929320679 (0x37644ee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11b69b59d19f2987e49f1852d60bb1777f80a301
Validity
Not Before: Jan 1 13:00:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a77adc2eeea0083ccbd6d8ee0b0403508131931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:97:4c:96:bb:62:b5:fa:57:f8:50:bb:9c:ba:
cc:89:00:97:ee:14:77:f2:60:1f:96:38:11:f5:a1:
1e:c7:03:f7:00:b1:c1:59:ec:cf:86:02:4c:82:1c:
aa:1c:e3:07:fa:d3:07:d6:aa:c9:75:b7:18:ca:86:
8d:ab:a6:a3:41:11:77:e8:2f:e2:5e:6f:62:83:fa:
6d:2a:0c:47:7e:f6:7f:24:cc:16:9b:d6:48:3f:6c:
aa:a6:45:a9:15:53:19:d5:76:32:a1:05:9c:6d:d0:
6b:bf:dd:04:c5:bb:c9:24:d0:81:72:27:d7:77:ec:
51:43:04:70:6b:13:0a:8e:9f:2c:c9:a5:9a:e7:c2:
a0:3c:c9:f7:92:fa:7d:f6:b8:ef:5a:0f:a1:6e:3a:
fa:cf:91:0f:fb:60:3e:95:0f:36:cc:05:14:0e:90:
bb:22:51:59:3d:eb:be:69:4c:e4:62:b3:03:ae:69:
4d:61:6d:ef:29:04:75:49:b3:d5:ed:15:77:c8:6e:
38:88:40:90:bd:0b:66:96:a4:f0:53:17:73:cd:2f:
66:fa:1d:d4:5b:5a:31:58:97:f8:71:48:71:16:c0:
5f:9a:d2:ea:b5:da:75:f0:f2:34:7e:a6:63:c8:5e:
fb:f8:c4:36:d9:7e:90:e1:bb:f2:21:af:5b:ec:a6:
5b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:77:AD:C2:EE:EA:00:83:CC:BD:6D:8E:E0:B0:40:35:08:13:19:31
X509v3 Authority Key Identifier:
keyid:11:B6:9B:59:D1:9F:29:87:E4:9F:18:52:D6:0B:B1:77:7F:80:A3:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EbabWdGfKYfknxhS1guxd3-AowE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/inetwu7qAIPMvW2O4LBANQgTGTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/5edf7a-ab9a-45e7-a612-d169c088b412/1/EbabWdGfKYfknxhS1guxd3-AowE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.148.0.0/21
Signature Algorithm: sha256WithRSAEncryption
96:e4:53:32:82:91:1e:c0:50:e4:c7:29:f5:9a:51:d7:ed:d8:
87:85:f5:80:dc:3f:47:fe:0b:8c:48:e3:0f:00:e8:53:81:16:
74:16:5b:54:3b:88:c5:4a:1c:f0:f0:51:ad:2a:2e:a3:e3:3b:
6f:01:7d:e0:5a:1f:ec:7c:bc:d5:2a:74:0d:c5:55:89:4d:7f:
4d:af:af:9b:1c:b4:42:67:d6:32:be:70:97:f0:d9:1c:4c:3f:
71:93:04:50:92:b9:da:c1:81:7d:5d:5e:16:83:35:b5:41:e5:
c8:9c:c8:6f:dc:3b:2b:a3:88:c2:31:3e:a1:1e:fb:60:ec:13:
e5:f6:02:10:0c:3e:aa:27:5b:81:ba:36:d1:05:40:fe:07:da:
5d:36:b2:c0:40:8b:05:5a:55:27:89:d1:5a:6d:86:9c:99:c8:
2f:fe:bc:d9:87:d7:f5:a9:f6:9b:9c:ad:d5:eb:b0:93:21:e5:
ab:67:f0:55:7f:65:b4:a2:de:e9:f8:e8:15:55:71:02:89:e3:
86:f8:bd:39:6b:04:f2:92:d0:87:fc:57:7e:60:f0:d3:60:28:
8a:04:4c:1b:93:d7:b5:79:7a:4a:6b:96:7d:7d:88:12:1c:34:
4b:81:66:69:b1:dc:bf:bd:5f:40:fd:8c:26:aa:7a:26:7a:d8:
3f:c3:8e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:37 2024 by rpki-client on console-fra.rpki-client.org