Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/56WDA0yipikrVgwNaPqsnzeZctc.roa
File: 56WDA0yipikrVgwNaPqsnzeZctc.roa (raw, json)
Hash identifier: ++cFKiknMrrOMIy022VJtUfdGcArSM0THAK9Q5jbJBo=
Subject key identifier: E7:A5:83:03:4C:A2:A6:29:2B:56:0C:0D:68:FA:AC:9F:37:99:72:D7
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 029E2712
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/56WDA0yipikrVgwNaPqsnzeZctc.roa
Signing time: Wed 05 Jan 2022 08:52:19 +0000
ROA not before: Wed 05 Jan 2022 08:52:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400039
IP address blocks: 86.104.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43919122 (0x29e2712)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 5 08:52:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7a583034ca2a6292b560c0d68faac9f379972d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6c:a2:4b:6c:59:2f:c9:ff:d6:2d:2d:d9:c4:
eb:37:e3:55:17:0c:6c:e6:87:fe:88:13:4b:70:58:
0d:ce:9c:b1:89:16:45:36:60:35:7f:d8:63:09:0c:
36:65:14:cc:88:c1:21:40:31:ad:4f:a7:47:10:0a:
76:3b:4c:f9:56:29:9e:e4:0f:90:2f:f7:31:44:fc:
c0:c0:56:55:59:9a:80:1f:b7:e0:2a:e9:42:53:97:
ac:02:5a:ae:28:ca:68:3d:08:29:5c:85:97:e1:7c:
d1:6d:02:12:1d:20:eb:16:1b:a1:20:24:a3:ff:44:
42:a4:fa:2b:9e:c2:73:cf:9f:11:f1:f2:b5:27:1e:
78:1a:b3:82:5c:67:cd:1b:fb:ee:18:48:fd:13:38:
d8:00:e0:2c:c0:ce:ca:54:c5:62:e9:d9:12:1c:14:
f3:54:ff:56:a2:9f:a6:b7:a5:f7:fa:ea:27:4b:61:
6f:18:b4:c7:37:af:97:4f:42:2d:75:68:35:82:a1:
44:52:7e:2b:0b:2d:81:e0:a5:96:b5:c1:27:56:f7:
d8:15:16:0d:63:f0:58:87:c8:59:7b:c6:6c:f1:ea:
f9:65:dd:5c:7a:29:f8:b0:e1:10:58:19:99:74:79:
46:b6:8d:a6:bf:7c:61:1a:39:31:43:0c:ea:c6:85:
88:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A5:83:03:4C:A2:A6:29:2B:56:0C:0D:68:FA:AC:9F:37:99:72:D7
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/56WDA0yipikrVgwNaPqsnzeZctc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.209.0/24
Signature Algorithm: sha256WithRSAEncryption
10:05:59:1a:30:4b:0c:04:a7:98:ef:25:12:49:96:dc:ca:f3:
c5:d7:88:7a:fd:92:fb:db:02:b3:fe:1f:af:d3:32:82:bf:6d:
ac:74:d1:7f:5f:d6:a5:08:f4:5d:bc:1a:d4:c9:ce:50:b9:6c:
79:23:c5:56:5d:20:64:c7:8b:4f:d7:8b:fb:e1:60:e3:1c:9e:
53:44:aa:8b:68:93:e2:60:08:20:77:6a:08:0f:03:63:24:e1:
4f:97:20:7f:b6:34:60:52:83:e2:ae:d7:1c:18:5f:98:ac:92:
c3:92:e6:ec:10:09:83:4d:6a:03:2b:2b:ed:bb:5b:4d:ac:86:
f0:65:ff:d4:d3:f3:1c:a1:06:60:a2:7e:1b:cd:35:28:55:bf:
01:13:10:63:a4:30:a5:1e:c1:8e:aa:bb:2e:27:2d:6c:46:d2:
6b:49:fc:12:b5:93:5e:8c:09:e7:c6:e8:ec:1b:27:1a:d3:52:
da:44:7b:84:65:78:89:95:f0:6f:3f:e3:4c:57:43:74:44:a7:
30:05:cf:5e:93:4d:8d:ab:d8:6f:78:c5:0a:63:ae:90:95:2a:
c9:c9:ba:af:7d:ab:27:98:83:a7:b9:40:7c:c6:a4:5f:dc:e5:
2e:39:55:6b:99:2c:41:7a:c1:dc:6c:d1:5f:0f:92:80:07:22:
38:bd:34:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:14 2024 by rpki-client on console-fra.rpki-client.org