Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/sZ9u6wJN7TALiOcnaNsTpbo9tkM.roa
File: sZ9u6wJN7TALiOcnaNsTpbo9tkM.roa (raw, json)
Hash identifier: wUPB7v8FP8cmYEfOdLKIU4EfHIEX19x2yB1fv7bbovQ=
Subject key identifier: B1:9F:6E:EB:02:4D:ED:30:0B:88:E7:27:68:DB:13:A5:BA:3D:B6:43
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 02920AFB
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/sZ9u6wJN7TALiOcnaNsTpbo9tkM.roa
Signing time: Sat 01 Jan 2022 06:59:03 +0000
ROA not before: Sat 01 Jan 2022 06:59:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3285
IP address blocks: 95.140.144.0/21 maxlen: 24
80.90.176.0/22 maxlen: 24
2a00:1818::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43125499 (0x2920afb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Jan 1 06:59:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b19f6eeb024ded300b88e72768db13a5ba3db643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e8:4c:a4:0b:bd:aa:0c:fd:0f:31:dd:20:45:
5b:a7:2a:5d:29:75:6d:45:0f:95:01:d4:9f:55:b5:
f1:51:94:e8:bb:68:75:6c:f5:3e:9b:74:bb:44:56:
ee:36:da:70:ee:52:51:0f:b4:1e:30:f9:48:44:e9:
0a:38:c0:47:42:4f:87:b5:3f:65:3c:75:2e:92:93:
e8:f1:fe:8d:30:65:d0:89:28:44:d1:ef:53:4f:33:
b9:3b:4b:17:1f:40:2a:74:b9:fd:15:e2:dc:60:bf:
da:35:c4:22:fc:39:5e:fb:05:f7:67:be:b5:b1:cb:
dd:c9:d9:73:a2:f4:c5:c2:5e:35:fc:e0:8c:69:96:
4d:ee:05:af:6d:64:29:58:78:2e:c6:60:01:47:eb:
91:82:dc:a1:21:b3:03:1c:bb:f5:4e:4f:22:2c:c6:
72:a2:da:89:ce:c8:9e:30:8a:ef:e4:8d:c3:df:d5:
df:fd:45:f3:aa:7f:8e:ae:f3:33:76:a5:75:19:bb:
82:ca:0d:f0:90:93:da:b1:28:18:db:64:53:83:68:
ee:b9:a9:db:6f:a6:af:b1:a3:bf:04:e6:47:e2:19:
6b:5d:3b:05:7c:9e:01:ad:ac:ea:00:f6:4a:4a:5f:
4f:f1:7f:d9:d5:c3:8a:da:78:fd:9a:20:ab:9e:1c:
ba:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9F:6E:EB:02:4D:ED:30:0B:88:E7:27:68:DB:13:A5:BA:3D:B6:43
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/sZ9u6wJN7TALiOcnaNsTpbo9tkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.176.0/22
95.140.144.0/21
IPv6:
2a00:1818::/32
Signature Algorithm: sha256WithRSAEncryption
3f:f0:8c:f0:ad:03:66:be:13:88:f9:36:66:c8:83:04:86:1b:
4a:01:78:70:ed:9e:b5:30:d4:c7:f5:6a:7b:5b:eb:59:82:ad:
71:31:fb:99:54:e1:47:ce:fe:e1:42:34:a3:0e:e5:a1:25:81:
a5:b4:20:ec:74:69:83:2e:8a:ad:02:ea:3d:64:94:ec:5e:56:
d9:ed:b6:40:de:71:03:12:ae:91:14:c5:59:b9:83:ac:91:29:
09:c4:a4:80:6d:be:c4:08:e9:b0:ab:ba:f9:d7:94:f0:02:6d:
4a:81:d8:01:b6:63:ff:5e:08:f6:e6:25:d3:1d:17:62:60:bd:
2c:8e:41:12:3b:d0:7a:27:6f:5a:a5:47:64:40:29:eb:3a:e4:
48:67:6a:96:2f:cc:dc:3e:a1:2a:81:17:fc:29:a6:fb:4e:97:
13:24:2f:81:72:5d:b2:4d:a0:9f:f6:e7:ab:4c:76:6a:08:44:
b1:a0:3a:ec:11:a9:45:e8:4b:62:a3:bf:4a:c0:07:41:c9:d8:
39:5b:36:ae:ce:ad:03:6b:59:ee:61:b1:60:70:d2:71:d1:5d:
5c:93:30:08:ce:84:b2:78:fc:49:41:da:3a:18:7e:3c:15:da:
7a:91:22:8a:3a:54:90:56:2d:5a:33:93:cb:f5:0f:6f:4d:b7:
31:c0:da:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:15 2024 by rpki-client on console-fra.rpki-client.org