Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/2OFfi6QsneOd-zYmfITxxS250ew.roa
File: 2OFfi6QsneOd-zYmfITxxS250ew.roa (raw, json)
Hash identifier: Ckq4tOnY3kZtQ4C+Y1oRSGznartLvuG1sUeCHBynFO4=
Subject key identifier: D8:E1:5F:8B:A4:2C:9D:E3:9D:FB:36:26:7C:84:F1:C5:2D:B9:D1:EC
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 7AD4DB
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/2OFfi6QsneOd-zYmfITxxS250ew.roa
Signing time: Sat 01 Jan 2022 02:52:46 +0000
ROA not before: Sat 01 Jan 2022 02:52:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59729
IP address blocks: 185.82.216.0/22 maxlen: 22
195.123.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8049883 (0x7ad4db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Jan 1 02:52:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8e15f8ba42c9de39dfb36267c84f1c52db9d1ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:40:cf:6a:21:b3:a2:91:97:79:07:37:fe:52:
79:88:70:ee:03:36:df:bf:91:78:4a:39:36:e9:30:
f6:ec:01:92:fb:c6:be:bb:82:0c:0f:98:b0:ae:de:
a5:cd:1e:2b:97:a2:a7:71:f0:8b:e7:31:96:c7:58:
4e:31:07:24:1c:9f:36:ca:07:ab:be:1a:87:cb:7d:
13:31:52:fd:a1:03:89:97:7a:47:49:a7:da:7a:72:
a9:4d:d0:08:3b:bd:c0:64:9b:ae:1a:2d:ca:f8:4f:
bf:4c:db:f1:7f:58:c3:f5:13:3c:cd:78:62:8e:7e:
0b:3f:31:9c:e3:c4:d2:7f:5f:0b:8b:fe:3e:f2:5a:
60:cf:f6:e8:6f:20:93:5a:09:c4:cb:f9:8e:02:39:
9a:b8:6e:97:1a:e7:67:30:5e:7e:d4:e1:38:b4:16:
2a:0f:00:8c:45:f0:13:57:5d:0a:49:93:85:db:57:
5a:7d:85:fa:f1:fe:1f:bc:9f:ca:8a:b5:1a:b8:82:
1e:b3:32:4a:66:d0:10:f7:58:43:ee:4b:a5:10:f9:
8c:43:b6:83:7d:96:59:a8:cc:a1:43:32:0b:2a:c5:
0f:4a:a5:49:49:0e:cb:07:77:f6:71:2d:60:cf:b6:
b9:70:c6:6a:31:03:4d:2f:73:2c:95:5f:a8:ec:9a:
5b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E1:5F:8B:A4:2C:9D:E3:9D:FB:36:26:7C:84:F1:C5:2D:B9:D1:EC
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/2OFfi6QsneOd-zYmfITxxS250ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.216.0/22
195.123.224.0/21
Signature Algorithm: sha256WithRSAEncryption
51:04:40:7b:25:4f:f5:0b:a1:1e:1a:89:ba:80:62:55:52:e5:
35:bd:a8:39:31:ed:80:f9:4b:f5:61:12:9d:6c:38:d5:2c:d0:
28:7c:bb:5c:90:91:2e:23:cf:76:71:33:8a:4c:71:77:f2:e2:
8f:6d:85:21:f0:d1:8d:e8:c1:07:1e:0f:2e:4b:44:26:1b:b4:
2f:d4:7f:43:df:66:ec:7f:aa:94:96:f1:d1:d7:ca:aa:45:84:
49:97:b6:e6:d0:d6:35:a0:c3:97:62:2a:68:f2:75:19:d2:7a:
67:af:a9:25:fb:bc:5f:a4:cd:d7:4e:37:77:1b:19:b5:64:35:
3c:86:0d:02:5f:9b:4d:61:d2:ba:d9:a7:5b:5c:32:74:62:90:
fb:b3:fd:02:c5:6a:20:6d:49:a7:f7:cb:95:e9:ca:31:7a:56:
7d:15:91:2c:02:7d:9c:08:14:30:d6:16:46:f3:28:53:9e:b3:
79:0b:5f:1a:a0:60:bd:f4:26:51:88:b8:6a:4c:29:81:bd:ed:
d2:e3:8b:6a:8a:46:04:44:7c:2d:44:42:d6:a2:18:3d:94:15:
26:16:57:a8:f2:ce:70:b8:51:f0:67:63:32:86:82:4b:dc:58:
9c:a2:92:f8:d1:6a:a3:ab:e4:5f:ef:c6:2e:65:03:bd:c5:44:
10:7a:cb:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:52 2024 by rpki-client on console-fra.rpki-client.org