Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/a2LLIT21NuFcn5W-iZKb4XEQ7bg.roa
File: a2LLIT21NuFcn5W-iZKb4XEQ7bg.roa (raw, json)
Hash identifier: BEErSEd2aXU/f0D+dqC6GMFP+8BvhPd4Gvy1MRpmyzI=
Subject key identifier: 6B:62:CB:21:3D:B5:36:E1:5C:9F:95:BE:89:92:9B:E1:71:10:ED:B8
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19DBB948
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/a2LLIT21NuFcn5W-iZKb4XEQ7bg.roa
Signing time: Sun 24 Apr 2022 19:21:06 +0000
ROA not before: Sun 24 Apr 2022 19:21:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60952
IP address blocks: 45.132.15.0/24 maxlen: 32
92.119.149.0/24 maxlen: 32
2a06:7a02::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433830216 (0x19dbb948)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 24 19:21:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b62cb213db536e15c9f95be89929be17110edb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:06:69:4b:00:56:9c:a4:1c:a0:44:9a:1d:96:
a4:a3:e8:a9:aa:d6:28:bf:32:fd:1f:7e:2f:9b:30:
44:32:d5:db:7b:11:25:e7:bc:02:36:32:c1:62:b0:
d2:7f:b1:1e:37:2f:54:55:af:65:99:82:cd:87:3e:
8d:04:24:b8:fd:76:3d:4c:2d:98:7b:fb:02:78:44:
f6:b7:2e:1b:43:d7:58:c0:e8:f1:d7:a4:f1:7b:29:
ee:84:a5:2b:ef:ed:df:a8:c7:d8:30:1c:01:24:4f:
93:f5:4b:45:29:f4:59:04:33:5a:4f:85:47:a7:27:
ca:8b:58:08:49:fc:a2:7b:3b:23:81:3c:d6:01:d1:
81:ac:36:82:aa:3b:a7:ad:74:06:e1:4d:7c:b4:61:
6f:91:96:a8:0a:26:5f:8a:14:ed:80:98:90:98:af:
01:71:3d:f1:e7:41:63:36:88:d5:91:54:d7:8f:9e:
29:f9:d3:0c:43:6a:e0:61:3b:33:e4:a3:e9:f1:46:
5b:56:3a:6d:dc:88:6d:5d:78:1f:e5:d1:20:10:10:
05:c8:5f:e4:b1:4a:e0:21:2b:59:79:91:c5:45:5b:
5c:0c:ab:1f:79:ef:63:a1:3c:d1:85:78:21:a1:8b:
20:46:b3:c5:43:14:c6:e8:90:5c:c9:a3:f2:48:25:
02:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:62:CB:21:3D:B5:36:E1:5C:9F:95:BE:89:92:9B:E1:71:10:ED:B8
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/a2LLIT21NuFcn5W-iZKb4XEQ7bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.15.0/24
92.119.149.0/24
IPv6:
2a06:7a02::/48
Signature Algorithm: sha256WithRSAEncryption
36:c7:b7:59:68:50:a9:eb:bf:fb:6d:bb:36:33:f1:38:56:79:
d4:8a:c3:bd:3a:be:7e:ce:36:08:0a:29:58:c6:b1:e6:56:65:
8e:e9:b4:ee:ef:28:84:e2:36:4b:19:03:c9:15:a0:19:3c:6f:
86:25:52:bf:8c:d5:da:fe:5e:2f:05:71:2a:cb:ee:09:fb:6c:
64:82:cc:36:b4:94:bd:60:71:b4:35:3f:25:ac:d6:19:5c:e9:
f5:58:cb:55:eb:b8:d8:fb:0d:30:5e:33:c6:10:09:fb:fb:97:
44:5c:a4:b6:53:d6:36:1a:c9:a5:10:d5:e3:d0:0d:cd:42:16:
b4:db:d9:8a:37:17:94:c9:6a:3e:68:38:7d:b3:fd:63:b4:0c:
87:ab:c8:65:43:3e:b9:89:7d:d5:94:3e:9b:03:f0:5f:c2:20:
6d:11:05:b0:37:1a:e8:1e:33:7d:2b:76:04:fc:4b:dd:3b:89:
de:75:0f:fb:bd:9c:53:d4:e2:b1:bb:41:da:da:27:3e:a4:b5:
e9:13:72:6f:7a:77:6e:59:ea:0e:13:09:74:5e:72:0d:48:41:
70:c0:83:c0:87:7a:11:64:13:df:0c:d9:db:ab:7f:3f:8b:98:
ab:8c:49:da:29:40:6f:7c:a2:27:6c:1e:40:e9:19:fa:fa:6c:
11:fa:2b:ea
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIEGdu5SDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YzhmZDFhOGFlNTk5NmMxZTU2OTJjMWE4YzQyYmZlOWMzYmE1NzQ1MB4XDTIyMDQy
NDE5MjEwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmI2MmNiMjEzZGI1
MzZlMTVjOWY5NWJlODk5MjliZTE3MTEwZWRiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKoGaUsAVpykHKBEmh2WpKPoqarWKL8y/R9+L5swRDLV23sR
Jee8AjYywWKw0n+xHjcvVFWvZZmCzYc+jQQkuP12PUwtmHv7AnhE9rcuG0PXWMDo
8dek8Xsp7oSlK+/t36jH2DAcASRPk/VLRSn0WQQzWk+FR6cnyotYCEn8ons7I4E8
1gHRgaw2gqo7p610BuFNfLRhb5GWqAomX4oU7YCYkJivAXE98edBYzaI1ZFU14+e
KfnTDENq4GE7M+Sj6fFGW1Y6bdyIbV14H+XRIBAQBchf5LFK4CErWXmRxUVbXAyr
H3nvY6E80YV4IaGLIEazxUMUxuiQXMmj8kglAgECAwEAAaOCAiAwggIcMB0GA1Ud
DgQWBBRrYsshPbU24Vyflb6JkpvhcRDtuDAfBgNVHSMEGDAWgBRsj9GorlmWweVp
LBqMQr/pw7pXRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JJX1JxSzVabHNIbGFTd2FqRUtfNmNPNlYwVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvNDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8x
L2EyTExJVDIxTnVGY241Vy1pWktiNFhFUTdiZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
NDkyNTkwLWEwMmYtNDQzZS1hYWEzLWZlYWMyNmVhZWNjMi8xL2JJX1JxSzVabHNI
bGFTd2FqRUtfNmNPNlYwVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2
BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEAC2EDwMEAFx3lTAPBAIAAjAJAwcA
KgZ6AgAAMA0GCSqGSIb3DQEBCwUAA4IBAQA2x7dZaFCp67/7bbs2M/E4VnnUisO9
Or5+zjYICilYxrHmVmWO6bTu7yiE4jZLGQPJFaAZPG+GJVK/jNXa/l4vBXEqy+4J
+2xkgsw2tJS9YHG0NT8lrNYZXOn1WMtV67jY+w0wXjPGEAn7+5dEXKS2U9Y2Gsml
ENXj0A3NQha029mKNxeUyWo+aDh9s/1jtAyHq8hlQz65iX3VlD6bA/BfwiBtEQWw
NxroHjN9K3YE/EvdO4nedQ/7vZxT1OKxu0Ha2ic+pLXpE3JvenduWeoOEwl0XnIN
SEFwwIPAh3oRZBPfDNnbq38/i5irjEnaKUBvfKInbB5A6Rn6+mwR+ivq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org