Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/RwlfL5eMLbpbHdTFSVOIKg2dIVg.roa
File: RwlfL5eMLbpbHdTFSVOIKg2dIVg.roa (raw, json)
Hash identifier: qZD4MzKBF43mkwmNU797CEbG5p3IGUTVCRX9gSBcYo0=
Subject key identifier: 47:09:5F:2F:97:8C:2D:BA:5B:1D:D4:C5:49:53:88:2A:0D:9D:21:58
Certificate issuer: /CN=1501c845f13dd4ad6e9dae470d5ff69c5cca3771
Certificate serial: 38394882
Authority key identifier: 15:01:C8:45:F1:3D:D4:AD:6E:9D:AE:47:0D:5F:F6:9C:5C:CA:37:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQHIRfE91K1una5HDV_2nFzKN3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/RwlfL5eMLbpbHdTFSVOIKg2dIVg.roa
Signing time: Sat 01 Jan 2022 16:10:29 +0000
ROA not before: Sat 01 Jan 2022 16:10:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201058
IP address blocks: 82.213.70.0/24 maxlen: 24
82.213.70.0/23 maxlen: 23
82.213.71.0/24 maxlen: 24
82.213.80.0/22 maxlen: 22
82.213.80.0/24 maxlen: 24
82.213.81.0/24 maxlen: 24
82.213.82.0/24 maxlen: 24
82.213.83.0/24 maxlen: 24
82.213.97.0/24 maxlen: 24
82.213.96.0/22 maxlen: 22
82.213.98.0/24 maxlen: 24
82.213.96.0/24 maxlen: 24
82.213.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 943278210 (0x38394882)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1501c845f13dd4ad6e9dae470d5ff69c5cca3771
Validity
Not Before: Jan 1 16:10:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47095f2f978c2dba5b1dd4c54953882a0d9d2158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:91:f5:54:6d:7d:56:f5:11:91:ea:d2:7e:b3:
4f:fa:56:ac:02:6c:03:17:c5:aa:28:7f:a8:79:82:
aa:ba:7c:86:02:4d:d2:55:c6:38:28:28:6f:c1:7f:
d6:b1:c8:75:42:08:a8:ad:6b:bf:ce:37:9b:af:07:
71:82:39:1e:40:ca:e8:03:72:9f:46:9f:3a:25:ff:
ae:09:73:ba:19:95:89:ce:49:dd:aa:9c:ad:73:cf:
b0:2f:5a:d9:28:48:69:8e:ae:d9:2f:17:41:ce:0e:
6a:91:d9:90:16:8f:e7:3b:08:97:02:6c:3d:2b:3c:
36:8b:f9:be:07:ac:81:51:9e:73:ba:25:2e:bf:41:
e2:00:e7:2c:1b:db:43:4c:c4:b9:52:be:35:0d:ec:
d8:9e:95:e6:b7:fe:b3:e8:c9:77:75:14:6e:ae:fc:
fb:a4:74:06:01:d2:fe:4d:b4:09:79:66:d9:b3:7b:
e3:49:7d:ef:e4:9f:47:36:18:63:12:cf:32:d3:ab:
5b:69:e3:ed:07:a9:0a:bc:88:28:6c:3e:31:49:13:
48:78:17:21:fe:f0:ea:59:e3:89:fa:83:86:c6:72:
5a:36:2c:52:21:c6:dd:13:4d:c6:78:4e:79:29:bb:
0b:f3:87:76:65:57:56:f7:53:aa:1b:98:06:4f:9a:
4b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:09:5F:2F:97:8C:2D:BA:5B:1D:D4:C5:49:53:88:2A:0D:9D:21:58
X509v3 Authority Key Identifier:
keyid:15:01:C8:45:F1:3D:D4:AD:6E:9D:AE:47:0D:5F:F6:9C:5C:CA:37:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQHIRfE91K1una5HDV_2nFzKN3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/RwlfL5eMLbpbHdTFSVOIKg2dIVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/0376a1-49d6-4a4d-8c2a-ed7915436b27/1/FQHIRfE91K1una5HDV_2nFzKN3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.213.70.0/23
82.213.80.0/22
82.213.96.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:0a:77:d5:41:cd:aa:f1:c3:f4:ac:07:b0:96:bb:4e:81:76:
6a:9a:b7:66:8c:88:9a:89:a1:34:5f:7f:75:1a:00:e8:eb:86:
5d:39:7f:7d:cd:61:c4:d1:cb:db:bc:16:76:26:b5:3f:c4:0a:
7c:8c:b5:40:4d:4b:0b:96:02:16:94:23:45:48:b2:90:ee:3c:
f5:62:a0:64:1a:2c:2f:8f:8c:5e:d1:56:25:08:f7:93:3b:dc:
b4:ac:5f:c5:3c:0c:de:25:35:ec:4e:9f:7e:71:f6:26:4a:e3:
f3:ff:3b:5f:b5:51:56:fe:17:45:98:cf:5c:14:d1:33:4c:70:
70:84:e1:51:21:33:8f:81:31:fe:e4:ce:1c:17:fd:15:8e:60:
13:51:c2:e1:29:46:ef:2a:85:03:56:4c:dd:d4:c5:9e:b5:6a:
d4:21:1a:17:0f:13:ac:08:16:47:ca:3f:32:20:f8:66:91:f4:
bf:15:a9:7a:ac:5b:ea:c5:25:81:57:a0:9a:a6:77:2e:2d:20:
b2:ee:79:e0:b8:6b:06:42:95:0d:10:84:29:3b:25:fd:d5:fe:
2f:4f:95:d6:92:2b:6a:b2:22:f9:1e:3d:ad:27:81:14:27:18:
75:9b:03:7a:98:e6:0d:c1:46:25:1e:e8:9b:88:ad:0b:79:4c:
8d:a0:02:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:51 2023 by rpki-client on console-fra.rpki-client.org