Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e3267b-f780-4187-8057-75f4fca86ae4/1/k7B8nLoL0QtdaKG935cESbmeJlI.roa
File: k7B8nLoL0QtdaKG935cESbmeJlI.roa (raw, json)
Hash identifier: 8GEBTDWjYUlY1LW26F3visSrMFptPVeHK7aOMbHwdFA=
Subject key identifier: 93:B0:7C:9C:BA:0B:D1:0B:5D:68:A1:BD:DF:97:04:49:B9:9E:26:52
Certificate issuer: /CN=59785a21e2d07c68ff317558c69ef118cc75805a
Certificate serial: 01E98E
Authority key identifier: 59:78:5A:21:E2:D0:7C:68:FF:31:75:58:C6:9E:F1:18:CC:75:80:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXhaIeLQfGj_MXVYxp7xGMx1gFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e3267b-f780-4187-8057-75f4fca86ae4/1/k7B8nLoL0QtdaKG935cESbmeJlI.roa
Signing time: Thu 19 May 2022 10:33:29 +0000
ROA not before: Thu 19 May 2022 10:33:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25206
IP address blocks: 83.97.64.0/21 maxlen: 24
84.201.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125326 (0x1e98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59785a21e2d07c68ff317558c69ef118cc75805a
Validity
Not Before: May 19 10:33:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93b07c9cba0bd10b5d68a1bddf970449b99e2652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1c:82:49:1d:91:10:70:41:b5:13:92:86:b0:
41:3b:ee:c1:73:d9:69:b6:ab:af:55:9e:09:85:d6:
fa:66:a4:c3:01:5b:92:d4:c0:04:f9:86:bf:96:d2:
fc:a7:a4:fc:bc:5f:c9:c6:a5:90:4f:42:a0:43:f9:
ae:ca:ba:81:e8:f2:42:d7:6f:a9:95:5d:2d:dd:25:
df:f6:d5:53:88:d2:7d:16:f8:48:4a:48:f0:f8:04:
7b:fd:32:0a:61:b3:f2:67:53:c8:8f:04:19:63:24:
b9:31:25:b5:ff:81:2d:18:c8:74:32:1d:83:80:2e:
56:a3:8e:e5:75:b0:46:0a:8c:26:03:e6:b9:43:67:
50:7a:2b:ff:c7:8c:2a:80:a5:54:29:4a:93:f3:2d:
78:53:5e:ba:9c:a7:30:fa:f6:15:f6:25:f6:b0:72:
91:17:68:bd:60:62:87:1e:88:fe:d5:be:de:0e:1a:
a8:9a:6b:5f:f0:f3:f3:ad:39:f0:78:c2:28:8f:0b:
ff:1a:8a:62:8c:21:74:d6:38:51:18:c4:0e:f8:98:
06:a0:34:1b:14:f3:62:14:34:23:5b:88:e0:ae:11:
23:88:6d:96:85:8c:98:fc:3f:a5:a2:b2:39:5e:3f:
6a:1a:13:30:21:ad:94:9a:d2:3c:d4:48:0e:ae:ff:
b9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B0:7C:9C:BA:0B:D1:0B:5D:68:A1:BD:DF:97:04:49:B9:9E:26:52
X509v3 Authority Key Identifier:
keyid:59:78:5A:21:E2:D0:7C:68:FF:31:75:58:C6:9E:F1:18:CC:75:80:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXhaIeLQfGj_MXVYxp7xGMx1gFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e3267b-f780-4187-8057-75f4fca86ae4/1/k7B8nLoL0QtdaKG935cESbmeJlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e3267b-f780-4187-8057-75f4fca86ae4/1/WXhaIeLQfGj_MXVYxp7xGMx1gFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.64.0/21
84.201.192.0/20
Signature Algorithm: sha256WithRSAEncryption
54:d0:53:70:70:4b:f0:15:b0:31:37:10:b4:c5:e7:1c:f9:af:
49:1b:be:1b:cc:57:93:3f:1e:fc:71:87:41:b7:eb:1e:0f:f9:
06:d4:4c:b7:cf:b1:8d:2f:90:b1:30:11:11:f0:76:0d:df:22:
ff:28:2d:66:d5:d1:4e:5d:1d:3c:21:0b:c4:cd:4c:4f:6e:f2:
b8:4a:0e:9f:db:fb:d0:d8:fa:43:c6:b2:1c:50:26:0e:e0:bb:
1c:d1:09:f2:f9:f7:3f:1b:03:6b:a1:f2:a2:d9:d9:7c:d6:d1:
6f:b1:90:5f:0e:e4:1c:24:44:e5:4d:cf:e1:37:01:e2:c6:30:
d4:54:83:6c:96:41:6e:86:f4:71:fd:96:41:23:f3:56:64:f4:
82:9f:97:44:a9:67:e9:0d:e3:e7:01:40:b0:0d:ed:d1:7d:4a:
38:29:e7:22:35:09:e5:ab:03:dc:a6:46:96:e8:00:27:b7:f7:
d6:76:f0:11:90:dc:a6:69:a0:6e:b9:1e:d3:06:3e:66:d6:ca:
ab:7f:45:2b:a1:e7:b1:ab:34:d3:62:35:4c:a3:bf:e5:e2:40:
13:db:cc:e5:49:26:95:7f:b6:fb:dc:5d:af:cb:21:ca:35:54:
e8:db:d8:3d:0f:4a:db:48:5f:7d:01:4b:4a:f4:a3:0e:05:c5:
9b:d7:1b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:56 2023 by rpki-client on console.sobornost.net