Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/EF2cKFhUzksS_zgYZ-5WChgGs8k.roa
File: EF2cKFhUzksS_zgYZ-5WChgGs8k.roa (raw, json)
Hash identifier: 0+KDN5p4N/ixTIjKNGx7qT9VczQUtJ6+m3acO20Xjfw=
Subject key identifier: 10:5D:9C:28:58:54:CE:4B:12:FF:38:18:67:EE:56:0A:18:06:B3:C9
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0AAA8C62
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/EF2cKFhUzksS_zgYZ-5WChgGs8k.roa
Signing time: Sat 01 Jan 2022 08:57:44 +0000
ROA not before: Sat 01 Jan 2022 08:57:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41341
IP address blocks: 37.114.16.0/20 maxlen: 32
81.18.130.0/23 maxlen: 32
89.28.192.0/21 maxlen: 32
91.211.128.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178949218 (0xaaa8c62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Jan 1 08:57:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=105d9c285854ce4b12ff381867ee560a1806b3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c8:ff:ea:92:d5:c0:69:52:17:42:68:7c:fe:
9b:20:89:a4:57:f6:55:b8:ea:b1:31:eb:e4:df:5e:
d1:fa:fb:ca:7c:3d:43:33:17:ea:f1:83:9b:23:ea:
5a:3f:86:1d:59:ac:a2:a4:6e:40:92:ec:84:a5:f9:
7b:61:59:22:0a:19:07:a8:64:50:fa:77:9c:c3:f0:
02:10:87:db:12:98:75:f6:44:ec:e4:f7:18:a4:40:
4c:09:b9:1a:65:bb:f8:88:59:8b:eb:a0:82:61:fb:
b1:08:db:5d:32:0b:b3:60:a2:08:e9:5e:a8:49:98:
a8:4b:e1:60:f3:0d:20:90:8b:16:5b:1b:0d:f6:c1:
bd:60:54:7e:52:97:04:db:eb:a1:05:c2:47:9b:94:
38:fa:c8:23:fa:bc:63:89:fa:cc:4a:5e:b6:1b:45:
56:d5:e5:f6:c3:8d:bf:e4:21:b8:50:3a:ac:53:9a:
09:8b:d0:18:ae:07:44:89:59:b6:bb:83:8a:ff:e3:
26:d1:0a:ff:c9:df:f8:6f:58:24:1e:56:c2:53:64:
a9:93:0d:12:94:b2:8b:0e:97:bd:54:c1:07:de:9d:
f6:08:6a:b2:b1:5d:d4:e1:59:13:5c:b8:88:2b:d2:
12:26:c8:08:e5:6d:a8:d2:c8:a5:12:25:4e:db:58:
69:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:5D:9C:28:58:54:CE:4B:12:FF:38:18:67:EE:56:0A:18:06:B3:C9
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/EF2cKFhUzksS_zgYZ-5WChgGs8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.16.0/20
81.18.130.0/23
89.28.192.0/21
91.211.128.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:b1:0d:7a:b5:44:08:f9:95:3a:ed:ea:74:e9:29:7f:ac:f4:
bd:41:b6:9b:cd:8d:23:30:4e:fd:eb:57:8c:ee:b0:45:eb:d6:
9c:da:78:37:77:0e:1e:b0:fe:81:36:17:ed:12:61:d0:4b:d3:
d4:fa:82:19:f8:fe:64:24:a1:14:c2:d4:b4:a7:da:59:c4:26:
e7:c2:25:af:a7:67:8c:f3:48:69:93:24:21:45:42:29:78:27:
a9:4a:ea:36:3c:47:41:b2:ab:d9:42:93:b6:d1:1d:c1:5c:55:
c0:cd:bc:aa:9d:0e:8c:98:0e:ca:e1:04:50:4b:b8:1e:20:2e:
ac:38:b1:8b:6c:10:cc:35:96:8b:ba:e6:0b:c0:6e:66:ae:6b:
40:19:92:6f:43:c5:f4:7c:13:4b:60:96:9f:c1:1f:a9:d9:63:
92:ad:8b:3c:9c:4d:72:75:5d:58:aa:85:9d:fc:6e:15:7c:b2:
ed:87:02:c3:c7:25:9f:b9:47:ed:90:c9:9d:7d:84:be:26:c8:
fe:1c:64:2c:00:84:02:97:0d:39:df:8b:7c:18:10:16:7f:c6:
85:30:cb:83:87:88:c0:6f:95:0c:8f:3c:02:16:c7:b0:60:d1:
c8:5b:d0:f4:2e:d7:f0:65:7c:23:36:30:8a:3e:f5:eb:46:0c:
8f:3a:80:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org