Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/e8c287-f049-4595-86eb-0be209ffbaec/1/XEO8Xtk-WNG2Lzz22YNMlCHlnwY.roa
File: XEO8Xtk-WNG2Lzz22YNMlCHlnwY.roa (raw, json)
Hash identifier: UxIJZY61tWDkfEtnMxQDyHbyjHy/4srxtqGCpCdfGtU=
Subject key identifier: 5C:43:BC:5E:D9:3E:58:D1:B6:2F:3C:F6:D9:83:4C:94:21:E5:9F:06
Certificate issuer: /CN=0f92c52f86009879c177092f7cd83418b4df8cab
Certificate serial: 365731F8
Authority key identifier: 0F:92:C5:2F:86:00:98:79:C1:77:09:2F:7C:D8:34:18:B4:DF:8C:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5LFL4YAmHnBdwkvfNg0GLTfjKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/e8c287-f049-4595-86eb-0be209ffbaec/1/XEO8Xtk-WNG2Lzz22YNMlCHlnwY.roa
Signing time: Sun 06 Feb 2022 11:54:38 +0000
ROA not before: Sun 06 Feb 2022 11:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 82.212.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 911684088 (0x365731f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f92c52f86009879c177092f7cd83418b4df8cab
Validity
Not Before: Feb 6 11:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c43bc5ed93e58d1b62f3cf6d9834c9421e59f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f7:50:d6:6c:e0:0e:0b:55:0a:65:f4:79:05:
9b:7b:2e:b1:90:36:f9:aa:b7:aa:de:6b:f9:90:a2:
b5:21:c9:72:0d:6c:ac:8a:ac:b0:0a:0d:da:ff:58:
0a:df:a5:14:b9:ca:4f:3f:82:b6:b4:e2:1c:1e:67:
5f:58:45:f7:09:d2:4a:6f:e6:24:d0:10:9d:3e:30:
a0:3f:ae:40:61:c6:9f:5d:32:89:3f:4f:e4:8d:1a:
0c:3b:79:7b:79:94:f8:54:41:62:a1:07:fe:67:c2:
6e:7b:75:a7:17:47:57:c2:f1:d5:88:7d:73:05:c2:
dd:9d:de:18:c6:0e:38:ef:f8:9d:b2:11:17:3b:c7:
35:32:8c:fa:f7:07:a6:1a:f5:b0:0b:17:9a:71:2e:
84:02:52:74:dc:fe:73:8e:1e:c6:8e:e3:4b:ef:7b:
24:1a:23:63:f0:fc:ef:82:b8:0f:06:db:e0:ac:f7:
6e:ef:ca:57:56:6e:7d:e2:ae:01:7d:84:ef:db:7a:
ee:e7:06:b1:1c:c9:d1:dc:8b:01:40:fb:89:3a:d1:
bf:50:46:29:7c:a1:f7:9a:56:eb:dd:20:8a:1e:f6:
04:86:bb:fb:f4:1c:40:bf:0c:4a:91:5e:5d:73:ed:
d3:5d:3d:8e:7a:89:5f:45:b2:78:db:66:82:e9:c0:
cf:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:43:BC:5E:D9:3E:58:D1:B6:2F:3C:F6:D9:83:4C:94:21:E5:9F:06
X509v3 Authority Key Identifier:
keyid:0F:92:C5:2F:86:00:98:79:C1:77:09:2F:7C:D8:34:18:B4:DF:8C:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5LFL4YAmHnBdwkvfNg0GLTfjKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e8c287-f049-4595-86eb-0be209ffbaec/1/XEO8Xtk-WNG2Lzz22YNMlCHlnwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/e8c287-f049-4595-86eb-0be209ffbaec/1/D5LFL4YAmHnBdwkvfNg0GLTfjKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.212.64.0/18
Signature Algorithm: sha256WithRSAEncryption
61:a9:d8:b1:59:da:19:83:55:8b:67:e8:aa:bd:1d:c3:f6:20:
e3:dd:5e:5a:fc:60:93:72:05:7d:66:9c:e0:33:07:0e:1f:79:
4f:77:55:ed:ba:b0:8e:1f:70:ff:11:38:36:4e:6b:a2:54:37:
d4:65:fb:85:ff:9f:cf:8a:b6:dd:55:b6:3c:c6:6f:eb:c1:8d:
03:a4:0e:5e:c9:a5:1b:8a:a8:a7:c8:ea:d0:a0:78:a3:b2:e3:
9b:b9:af:3a:4f:0d:b5:a6:e5:d6:43:5c:d7:c0:cd:6e:9d:ad:
71:f8:c2:07:56:a8:77:67:e0:fe:62:83:df:48:63:16:11:0e:
2d:7a:bb:fe:d2:f7:77:84:71:fa:1d:4e:d1:21:4f:02:53:07:
0f:54:76:e3:93:21:ba:a9:93:4a:b0:b2:38:68:98:0a:12:60:
55:45:52:ef:5b:dc:11:dd:35:e5:ff:ed:91:bd:f1:f6:61:bb:
a7:19:bb:e4:6f:8f:c5:3c:80:f7:18:7e:da:76:c0:39:fc:35:
38:d2:e2:ea:16:39:c2:6f:1e:7e:fc:17:69:69:d3:ab:8b:d7:
ab:6a:c4:d5:6a:da:b8:3d:20:48:ed:b0:57:d7:9d:f7:63:d0:
59:00:8c:2c:21:51:ef:56:aa:46:f5:ce:b4:cf:96:36:da:b2:
c6:7c:51:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:41 2023 by rpki-client on console-fra.rpki-client.org