Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/5hucNKNTNIcwMsNkhaGGdEhVjkY.roa
File: 5hucNKNTNIcwMsNkhaGGdEhVjkY.roa (raw, json)
Hash identifier: UCWJaaA7xzHBtkChMrpvLgClWkvU0fE/C0+XHH4Bwzw=
Subject key identifier: E6:1B:9C:34:A3:53:34:87:30:32:C3:64:85:A1:86:74:48:55:8E:46
Certificate issuer: /CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Certificate serial: 056DD17C
Authority key identifier: 9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/5hucNKNTNIcwMsNkhaGGdEhVjkY.roa
Signing time: Sat 01 Jan 2022 07:59:06 +0000
ROA not before: Sat 01 Jan 2022 07:59:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 19905
IP address blocks: 81.89.246.0/24 maxlen: 24
212.62.67.0/24 maxlen: 24
212.62.72.0/24 maxlen: 24
84.201.65.0/24 maxlen: 24
84.201.66.0/24 maxlen: 24
84.201.98.0/24 maxlen: 24
2a00:1348:10::/48 maxlen: 64
2a00:1348:11::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91083132 (0x56dd17c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Validity
Not Before: Jan 1 07:59:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e61b9c34a35334873032c36485a1867448558e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7f:aa:18:44:d3:4a:7f:cf:e3:ab:61:77:0d:
6f:10:f9:a6:00:18:ca:c1:1f:ab:0c:a8:06:0d:77:
25:59:ca:bd:99:f9:38:cb:04:96:71:8e:d7:cd:cf:
90:a1:12:4f:e3:ed:ae:f2:5d:aa:a3:5c:eb:86:71:
6b:96:af:86:7f:10:01:d3:4c:79:d7:fb:f6:d1:09:
84:e3:ad:42:b1:d9:59:2d:57:16:15:3d:97:f6:0f:
e8:15:d9:70:43:a4:db:aa:d1:f0:3a:dd:91:37:5b:
08:54:1c:ab:ee:22:44:ec:7b:13:a5:51:a2:70:70:
26:40:bd:ff:1e:9f:e9:a9:a6:5d:f3:ae:e4:6f:95:
55:69:1b:15:4b:9f:04:98:0a:8b:28:d1:5b:09:3f:
e7:b9:be:29:be:e4:36:d9:0c:93:c8:a0:21:64:f3:
ca:eb:8f:4b:4e:b8:a1:c9:2b:84:51:f4:3c:a7:85:
69:2a:fd:8f:5d:e9:ac:77:3d:84:99:b3:bd:24:de:
1f:10:a8:f1:1c:db:dd:79:9a:b5:b8:de:63:e5:dc:
5d:26:64:49:4c:ed:6f:99:e2:23:e7:6b:3a:ee:cb:
f2:4d:9a:06:10:55:e3:ac:c0:12:85:af:ae:af:f2:
36:d1:49:bc:03:46:f5:6f:06:e6:64:ac:37:a0:a8:
f2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1B:9C:34:A3:53:34:87:30:32:C3:64:85:A1:86:74:48:55:8E:46
X509v3 Authority Key Identifier:
keyid:9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/5hucNKNTNIcwMsNkhaGGdEhVjkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/m2Mu22NaqPnECgSVp6Y7tlOVgLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.89.246.0/24
84.201.65.0-84.201.66.255
84.201.98.0/24
212.62.67.0/24
212.62.72.0/24
IPv6:
2a00:1348:10::/47
Signature Algorithm: sha256WithRSAEncryption
78:8d:ea:9f:95:dd:35:5a:4a:2b:98:91:b3:e2:07:e0:ea:da:
26:b4:12:21:97:4d:e4:c6:82:4d:55:66:43:a8:bf:56:a4:ea:
6a:c1:a0:66:ad:69:de:49:a2:7e:fc:a3:93:56:51:31:c3:8b:
af:77:d4:40:c6:da:f9:e3:79:5c:e7:e5:8a:e5:cc:18:b0:a1:
42:0a:e7:eb:74:a3:76:bb:a9:38:bf:cc:df:79:49:54:2b:d3:
5e:19:0e:62:9e:47:eb:79:96:8d:8a:22:9e:fe:4d:0e:68:ef:
24:93:24:f5:87:2b:00:c3:27:fa:52:ba:fd:75:4b:97:08:1c:
44:96:ee:65:a7:b1:0b:d1:39:c3:88:0a:1c:fc:90:0f:36:63:
62:c2:f9:b0:8d:2a:72:ad:c2:aa:75:3c:ff:d6:c0:1d:e6:ab:
c9:9b:47:f8:15:f4:d5:ce:ef:65:49:c9:ed:ad:73:2e:10:41:
f3:98:25:1e:bd:d9:f8:05:43:d7:e2:2d:07:88:30:cc:61:bd:
29:6f:ee:d2:5d:25:eb:49:00:29:85:93:b1:d9:59:48:c4:fc:
f0:5b:82:70:2a:87:4c:42:48:03:9b:31:39:95:61:12:1b:15:
82:69:a9:b4:99:47:28:86:ff:1f:33:e4:58:e6:8b:69:a9:4f:
02:4a:14:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:59 2023 by rpki-client on console-fra.rpki-client.org