Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/eW8nl1f6Wlw4721kM7VpWJhXk3U.roa
File: eW8nl1f6Wlw4721kM7VpWJhXk3U.roa (raw, json)
Hash identifier: sPfeiM4BVQ8GxtMWVo3JeVDFTxKGrwZ7abCjOPtX604=
Subject key identifier: 79:6F:27:97:57:FA:5A:5C:38:EF:6D:64:33:B5:69:58:98:57:93:75
Certificate issuer: /CN=f48b3f0c6a87c045bdcffabd900db8892be702e1
Certificate serial: 36E346EB
Authority key identifier: F4:8B:3F:0C:6A:87:C0:45:BD:CF:FA:BD:90:0D:B8:89:2B:E7:02:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/eW8nl1f6Wlw4721kM7VpWJhXk3U.roa
Signing time: Sat 01 Jan 2022 09:59:37 +0000
ROA not before: Sat 01 Jan 2022 09:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5539
IP address blocks: 82.118.32.0/19 maxlen: 19
194.97.128.0/19 maxlen: 19
195.24.96.0/19 maxlen: 19
194.97.64.0/19 maxlen: 19
193.149.32.0/19 maxlen: 19
195.30.0.0/16 maxlen: 16
185.54.120.0/22 maxlen: 22
2001:608::/32 maxlen: 32
2001:4150::/32 maxlen: 32
2001:67c:158c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 920864491 (0x36e346eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f48b3f0c6a87c045bdcffabd900db8892be702e1
Validity
Not Before: Jan 1 09:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=796f279757fa5a5c38ef6d6433b5695898579375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ec:27:6e:0d:39:05:9b:3a:84:eb:1d:8c:14:
6f:ba:25:f2:06:3f:53:14:18:ce:6d:20:c4:ae:25:
71:83:93:cf:93:54:c2:cb:97:96:94:b4:07:47:3e:
4d:67:d6:17:b9:b8:85:3c:9a:16:e1:1b:aa:30:22:
bd:e2:de:00:1e:45:8a:04:53:b9:99:ba:39:50:eb:
39:87:b1:c6:33:07:a7:e9:ce:26:1a:86:ce:29:cc:
7f:93:3a:f9:47:e5:b7:a2:f7:84:39:68:0f:94:c6:
56:9d:d5:b1:40:c2:ec:d2:05:af:18:82:bc:f2:79:
c6:4c:a0:18:d4:5a:d2:91:cd:46:26:ef:fd:2c:c7:
e4:59:c3:a1:ad:46:86:37:93:21:a2:b1:cc:f9:68:
0d:74:dc:f1:ba:8f:54:5f:20:30:97:ff:03:0b:82:
76:e3:86:de:bf:b8:40:07:38:d0:26:b8:07:28:e7:
48:d5:6a:4c:1b:4c:44:b9:60:94:c1:2c:0c:b3:18:
07:a8:07:dc:a9:88:15:ae:b8:6f:b0:fe:e0:f2:72:
1d:09:aa:f8:f7:2c:5c:e8:61:e1:c1:21:c8:b6:cd:
60:e1:45:1a:1b:a1:62:be:6a:0c:b4:b4:c4:78:5c:
83:45:c1:21:fb:f1:03:09:9e:d1:ac:ab:8b:f4:6b:
da:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6F:27:97:57:FA:5A:5C:38:EF:6D:64:33:B5:69:58:98:57:93:75
X509v3 Authority Key Identifier:
keyid:F4:8B:3F:0C:6A:87:C0:45:BD:CF:FA:BD:90:0D:B8:89:2B:E7:02:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/eW8nl1f6Wlw4721kM7VpWJhXk3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/9Is_DGqHwEW9z_q9kA24iSvnAuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.118.32.0/19
185.54.120.0/22
193.149.32.0/19
194.97.64.0/19
194.97.128.0/19
195.24.96.0/19
195.30.0.0/16
IPv6:
2001:608::/32
2001:67c:158c::/48
2001:4150::/32
Signature Algorithm: sha256WithRSAEncryption
ad:70:65:0b:b9:f2:c1:ed:59:b5:29:55:0c:a5:b3:ef:c5:f5:
f0:93:b9:b9:4d:8c:16:b3:1f:a2:75:f9:48:86:45:5d:f2:d6:
c2:39:de:ff:da:a1:f4:8f:0d:77:21:08:73:51:c4:a4:7b:73:
51:62:86:de:dc:89:2e:2d:ff:64:52:06:f8:3c:f1:11:a6:d1:
c2:e8:2c:d9:90:1a:32:ea:41:3e:6c:d0:13:6f:52:32:b2:e4:
c9:0f:85:b9:e7:98:79:c6:79:81:37:04:b4:ab:3e:59:87:65:
69:58:ff:27:2b:bb:38:5d:2d:18:3b:b2:41:b0:a2:e0:11:dc:
87:7f:fb:60:ce:6d:9e:8e:8a:3d:35:bf:6e:be:4c:6e:7c:5e:
16:7f:25:d7:a3:0d:37:46:3d:17:ec:e6:20:26:86:86:ad:88:
72:4c:22:95:ac:de:df:d6:0b:f4:c6:01:9d:90:d2:59:6b:20:
48:e9:38:25:ee:66:8d:cb:75:f9:b5:6b:56:e5:07:e3:ea:1c:
47:ec:fc:f4:31:8f:f8:02:94:a6:0d:6b:82:b4:60:2e:b8:46:
1a:f9:10:5b:4f:f7:db:5d:fd:66:67:ae:d8:83:c0:69:7c:15:
2d:6b:98:5f:74:e3:dd:4c:5d:59:34:d6:d1:6b:c3:ab:04:be:
7b:76:ec:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:30 2023 by rpki-client on console.sobornost.net