Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/IRmB4dSBmzwnpR1doFpskE7v4kk.roa
File: IRmB4dSBmzwnpR1doFpskE7v4kk.roa (raw, json)
Hash identifier: 8S4zlsboSKOu/DcnGFukn4hu5b5nRs9We24zQs2LCMc=
Subject key identifier: 21:19:81:E1:D4:81:9B:3C:27:A5:1D:5D:A0:5A:6C:90:4E:EF:E2:49
Certificate issuer: /CN=12c889964b35b51ba8e5e679a15b19a31f133578
Certificate serial: 098DDD1F
Authority key identifier: 12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/IRmB4dSBmzwnpR1doFpskE7v4kk.roa
Signing time: Sat 01 Jan 2022 15:05:04 +0000
ROA not before: Sat 01 Jan 2022 15:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24634
IP address blocks: 91.245.248.0/22 maxlen: 24
82.146.160.0/19 maxlen: 24
2a0d:b3c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160292127 (0x98ddd1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c889964b35b51ba8e5e679a15b19a31f133578
Validity
Not Before: Jan 1 15:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=211981e1d4819b3c27a51d5da05a6c904eefe249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9a:50:e6:b2:aa:c1:4a:c5:82:39:ee:29:8a:
03:ed:e1:dd:39:7a:bb:99:da:b8:bf:5c:9f:da:2c:
2d:2d:b9:91:68:0f:05:5f:45:7d:23:b9:7f:f2:4b:
d1:33:1d:cd:71:49:40:f6:a7:b6:01:74:9a:20:b3:
3c:e3:8c:1a:ce:86:b9:8e:32:7a:2f:ba:e6:5d:05:
d7:db:b8:e7:a0:ed:67:d4:ab:55:46:66:4c:f4:eb:
3d:36:1e:79:12:63:77:e8:80:97:ba:26:bc:d7:9c:
0b:c4:9b:7c:d0:94:99:84:16:62:18:aa:47:56:ed:
b5:04:69:f8:a0:1a:6c:e6:03:e1:41:0b:8f:37:9d:
a0:3e:b1:15:7d:87:51:49:30:e6:ab:81:17:b5:3a:
b8:5f:8a:5a:9a:e1:05:e7:15:43:21:44:be:dc:5d:
b6:09:a4:04:4a:08:2f:7e:1d:d9:01:b5:56:e9:71:
be:14:c8:0d:1d:1c:ab:4f:ba:68:d2:99:9c:95:c3:
09:05:f3:44:ea:56:6f:f1:69:c6:2d:8e:a8:64:b6:
7c:83:35:bb:8b:0b:20:2e:21:72:be:0e:9e:e5:5a:
96:d1:a4:54:ea:9c:8c:26:7c:56:78:f8:b3:e2:6b:
db:d3:d3:ca:c7:5f:80:14:ca:61:49:06:60:be:c4:
ed:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:19:81:E1:D4:81:9B:3C:27:A5:1D:5D:A0:5A:6C:90:4E:EF:E2:49
X509v3 Authority Key Identifier:
keyid:12:C8:89:96:4B:35:B5:1B:A8:E5:E6:79:A1:5B:19:A3:1F:13:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsiJlks1tRuo5eZ5oVsZox8TNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/IRmB4dSBmzwnpR1doFpskE7v4kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/16b02c-833a-48f0-ba56-ad6f0bf88438/1/EsiJlks1tRuo5eZ5oVsZox8TNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.146.160.0/19
91.245.248.0/22
IPv6:
2a0d:b3c0::/29
Signature Algorithm: sha256WithRSAEncryption
0b:14:d3:69:f0:e3:34:ac:7a:00:be:43:a6:8f:be:f2:41:10:
f4:c4:b3:22:3b:a4:95:fa:3c:de:4b:46:c1:af:bd:2e:87:a0:
d9:e1:2f:7f:33:b4:fb:a2:1c:3f:31:98:8d:c8:80:39:fe:ce:
16:50:c5:ad:16:d9:7e:fe:30:de:03:57:06:92:ec:4a:c7:b9:
d9:4e:ab:a6:8d:36:9f:c5:10:0b:e0:c9:06:c0:41:73:cb:09:
1d:5d:67:61:04:36:87:56:a0:87:c9:12:03:c7:a7:ba:59:74:
47:d8:cd:9a:83:4c:75:1c:cf:7c:83:3d:70:48:91:00:e9:52:
35:19:d9:62:8c:ee:6a:27:df:09:99:51:de:f4:34:55:4a:03:
17:96:dd:20:78:7d:df:2f:a2:71:82:5f:a2:10:16:ee:07:04:
d8:f0:68:03:b5:b8:1c:06:5f:ba:f9:66:56:d4:4d:43:1c:eb:
61:0f:81:7e:0d:8a:81:fe:db:f0:44:bf:0c:1e:cf:3b:64:56:
1e:3a:5d:4b:4b:a8:02:14:a9:08:0c:f7:67:a4:f0:88:70:09:
f4:a1:00:6f:84:70:57:ee:65:95:b2:0b:ec:6c:1e:ce:c4:5e:
97:09:cb:10:d0:a1:90:74:a2:74:d9:94:37:82:29:28:6e:89:
13:0e:af:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:16 2024 by rpki-client on console-ams.rpki-client.org