Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/4012a4-3d58-4dd0-80b4-be317b531c2e/1/e-dKOKfoa-fYmBaTc_DczJaU6bg.roa
File: e-dKOKfoa-fYmBaTc_DczJaU6bg.roa (raw, json)
Hash identifier: ULuEjnQv8ewhi4MsKbwpHrXAzjrUrDC8kqKcqS6bjUU=
Subject key identifier: 7B:E7:4A:38:A7:E8:6B:E7:D8:98:16:93:73:F0:DC:CC:96:94:E9:B8
Certificate issuer: /CN=ea827b9556d540da536b8046c65ff95b06ee4963
Certificate serial: 1BE6DF99
Authority key identifier: EA:82:7B:95:56:D5:40:DA:53:6B:80:46:C6:5F:F9:5B:06:EE:49:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6oJ7lVbVQNpTa4BGxl_5WwbuSWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/4012a4-3d58-4dd0-80b4-be317b531c2e/1/e-dKOKfoa-fYmBaTc_DczJaU6bg.roa
Signing time: Sat 01 Jan 2022 06:01:59 +0000
ROA not before: Sat 01 Jan 2022 06:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8523
IP address blocks: 164.40.176.0/21 maxlen: 21
80.76.144.0/20 maxlen: 20
2a00:1d28::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468115353 (0x1be6df99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea827b9556d540da536b8046c65ff95b06ee4963
Validity
Not Before: Jan 1 06:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7be74a38a7e86be7d898169373f0dccc9694e9b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:af:05:14:78:92:4c:d8:76:c4:61:55:da:04:
a7:7d:ad:94:a9:15:84:c4:09:6a:38:47:3e:16:86:
2e:d9:97:03:4d:bd:b0:b7:56:95:87:fa:81:f3:86:
0c:4e:e6:96:32:dc:f9:8c:57:d6:73:a0:e8:77:23:
95:68:ab:58:3b:f8:bc:7d:86:28:9a:18:d9:17:33:
4d:83:5b:f4:4f:f3:24:b8:8f:40:22:ff:8b:61:78:
0a:0c:63:80:8d:5c:dc:42:e1:32:1f:6b:76:70:a4:
c2:2d:9f:a9:54:74:86:1f:34:7a:da:ab:12:c7:41:
03:7b:ae:9c:61:67:34:f5:8e:a8:2d:e1:12:6f:54:
d0:53:e0:80:dc:2c:2f:a1:49:93:09:de:10:9c:c0:
59:c3:f9:91:cf:97:b9:56:0c:39:14:dd:bd:2d:5f:
2a:85:87:44:73:bc:c3:21:5b:f8:ed:0f:68:51:52:
55:95:ed:9a:dc:4f:dd:c0:06:07:ff:01:87:ed:f1:
26:65:4b:51:ca:6a:18:10:5e:52:ac:c2:c8:91:59:
1b:bb:d1:40:13:49:b8:60:ff:53:92:22:5a:62:60:
84:e7:5f:13:18:6e:b0:67:d4:1c:24:84:5b:be:59:
e3:7f:08:0e:a4:b8:ba:3e:a6:8b:51:fb:9a:b1:b1:
be:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E7:4A:38:A7:E8:6B:E7:D8:98:16:93:73:F0:DC:CC:96:94:E9:B8
X509v3 Authority Key Identifier:
keyid:EA:82:7B:95:56:D5:40:DA:53:6B:80:46:C6:5F:F9:5B:06:EE:49:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6oJ7lVbVQNpTa4BGxl_5WwbuSWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/4012a4-3d58-4dd0-80b4-be317b531c2e/1/e-dKOKfoa-fYmBaTc_DczJaU6bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/4012a4-3d58-4dd0-80b4-be317b531c2e/1/6oJ7lVbVQNpTa4BGxl_5WwbuSWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.144.0/20
164.40.176.0/21
IPv6:
2a00:1d28::/32
Signature Algorithm: sha256WithRSAEncryption
6f:56:6e:82:00:32:cb:ec:b5:fd:f1:5a:84:27:8c:fc:ff:f5:
34:c5:b1:e8:d3:19:80:1e:ba:c7:37:b4:dd:68:4c:4f:7b:e2:
6d:d3:36:29:ea:67:db:e3:1a:7d:98:22:4e:99:bf:4c:aa:79:
8b:a9:19:ed:f0:98:ed:e4:c6:bd:0b:d4:59:97:da:67:bd:1c:
9c:3c:17:3f:10:83:2d:45:d4:0b:52:21:01:e3:ce:33:0a:01:
85:7d:2a:19:b0:ea:bc:2b:8e:ec:b3:b9:14:08:b8:fc:45:09:
8d:5d:c1:55:cc:1d:c5:70:29:59:60:4f:24:62:79:d1:cd:90:
72:80:a0:64:55:de:7a:ad:51:43:28:50:0b:4e:68:ea:60:29:
5e:cc:7c:c1:21:fe:eb:0f:a1:3e:5e:8e:7c:1a:aa:6d:e5:70:
13:ed:09:19:19:11:9a:c2:b3:7d:d0:f3:6d:a8:00:24:0a:83:
7c:86:06:07:e4:a9:fd:42:42:3d:12:5b:54:82:10:5a:4d:30:
bb:b8:db:f0:2c:e3:d8:c3:0d:cb:db:a1:9b:ac:00:13:33:27:
11:2a:2c:99:8b:4d:71:59:cb:d7:15:49:8f:4a:69:bf:76:8b:
eb:18:55:cd:2b:f0:db:dd:c4:05:61:d1:a2:45:4e:a4:ba:aa:
b7:33:96:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:48 2024 by rpki-client on console-fra.rpki-client.org