Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/3wducKxfou9vlR6TURAd1l6QeNA.roa
File: 3wducKxfou9vlR6TURAd1l6QeNA.roa (raw, json)
Hash identifier: ydSFlLHFUHhcmoTVFiKNlFef2OqSNLkBxiGe0Pof8u8=
Subject key identifier: DF:07:6E:70:AC:5F:A2:EF:6F:95:1E:93:51:10:1D:D6:5E:90:78:D0
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 0184E72396FECB703390F3A6A40AEE90B235
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/3wducKxfou9vlR6TURAd1l6QeNA.roa
Signing time: Tue 06 Dec 2022 11:13:00 +0000
ROA not before: Tue 06 Dec 2022 11:13:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26506
IP address blocks: 83.2.226.0/23 maxlen: 23
2a01:1100:b001::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e7:23:96:fe:cb:70:33:90:f3:a6:a4:0a:ee:90:b2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Dec 6 11:13:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df076e70ac5fa2ef6f951e9351101dd65e9078d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e7:3d:c0:c0:2c:f6:03:93:b6:69:53:3f:6c:
a5:77:e5:c4:40:2d:3b:b9:23:66:55:05:6c:2c:b7:
a3:7f:33:3d:f3:5c:a2:86:80:de:6d:88:ee:60:2a:
90:c8:df:c2:8b:6a:70:86:62:df:76:9d:2d:4b:c3:
f7:8a:2b:99:03:63:3a:54:fd:a3:63:47:2c:7d:33:
6b:e3:be:02:71:2f:08:78:74:7a:d2:c9:6c:c9:7c:
d1:a5:71:96:d6:c8:bf:0a:71:4d:e3:b0:49:83:33:
71:ba:ad:3e:4e:12:5f:9c:fd:d6:b3:a9:71:07:50:
4d:24:bc:8f:3b:5f:4a:04:46:36:35:3e:38:4d:e6:
e7:d2:71:dd:34:fe:15:7e:7b:f3:59:7d:b6:05:e9:
bb:52:a8:db:bf:9e:c4:80:b3:06:a6:d3:27:9e:02:
ce:6b:1c:ff:51:07:75:3f:60:65:c3:f4:dd:79:1e:
63:db:0e:45:a5:94:5f:6b:25:58:5a:e0:4e:8d:35:
ce:b9:bf:d6:23:16:a9:77:54:58:8f:c4:30:2c:38:
0d:af:4c:55:b4:c2:29:b5:00:90:22:5c:fb:9e:7f:
2a:c8:ec:7a:0d:94:cc:83:67:27:e4:a6:1a:60:12:
f8:e6:d6:0b:7a:1c:99:c3:fb:fe:ac:6f:de:30:ba:
ed:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:07:6E:70:AC:5F:A2:EF:6F:95:1E:93:51:10:1D:D6:5E:90:78:D0
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/3wducKxfou9vlR6TURAd1l6QeNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.2.226.0/23
IPv6:
2a01:1100:b001::/48
Signature Algorithm: sha256WithRSAEncryption
76:ba:ab:35:16:7f:71:2b:b1:a6:3f:c4:2c:1d:e7:f6:66:03:
9b:2d:6b:d6:4f:8f:11:b1:4b:60:ed:d8:80:a4:8a:05:c4:32:
4c:e1:8c:9a:51:4a:5d:92:7c:60:c8:5c:85:f2:04:da:f7:5e:
f9:63:dd:56:96:5f:e2:4f:a9:93:5f:e3:e1:89:46:84:99:a3:
54:94:e1:af:ba:04:13:b6:c6:96:ab:f9:9f:49:af:3e:73:87:
dc:67:19:58:ab:db:a5:ae:f9:1e:dc:a5:60:71:53:75:14:af:
ba:33:7c:11:fd:f3:01:3b:17:93:b5:24:9a:13:5c:0d:37:8a:
51:ed:63:79:0a:57:17:0e:b2:07:f3:e8:6e:2d:9a:2c:26:9d:
c6:21:6b:0d:ab:72:40:fb:cd:68:39:aa:00:18:59:80:39:9c:
3b:3f:0f:77:b3:e4:01:5c:33:a6:29:ec:08:a0:6f:24:94:6b:
49:09:bd:1c:2c:51:d0:af:a8:5a:f5:15:f9:7b:ff:a2:0c:c3:
bd:7d:5b:6e:09:39:2f:b4:0c:07:5a:76:c6:af:5c:e3:eb:9c:
3c:80:ac:66:e6:75:96:36:b9:4d:f1:ac:f9:cb:57:28:fb:5c:
a0:b6:03:90:01:49:ba:ff:1c:70:d5:b4:70:a9:07:b7:3d:5d:
45:2d:d0:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:23 2024 by rpki-client on console-fra.rpki-client.org