Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/arOqFxYB1c6YY-5LJ1KXIrKxIiM.roa
File: arOqFxYB1c6YY-5LJ1KXIrKxIiM.roa (raw, json)
Hash identifier: DwHcf0ogKNpz4uPNfPUTPltLkdM+beD8peoIvrDlstM=
Subject key identifier: 6A:B3:AA:17:16:01:D5:CE:98:63:EE:4B:27:52:97:22:B2:B1:22:23
Certificate issuer: /CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Certificate serial: 1A192294
Authority key identifier: 96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/arOqFxYB1c6YY-5LJ1KXIrKxIiM.roa
Signing time: Sat 01 Jan 2022 06:58:18 +0000
ROA not before: Sat 01 Jan 2022 06:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34895
IP address blocks: 83.138.64.0/18 maxlen: 18
185.171.136.0/22 maxlen: 22
2a01:4da0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437854868 (0x1a192294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961ccfa9d02cbf05960e3a2f9079859ccd6ead6d
Validity
Not Before: Jan 1 06:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ab3aa171601d5ce9863ee4b27529722b2b12223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e4:5b:c6:5c:2f:07:ee:1c:9e:11:b4:4a:c6:
af:ba:2d:d0:70:35:50:f0:38:02:ec:3c:a6:c5:53:
64:cb:5e:e5:6a:d5:e3:b8:37:44:8f:ea:ff:9f:d8:
0f:37:3e:85:f2:3f:02:c6:90:a8:53:9d:5b:cc:2e:
c1:c7:6f:f8:3c:db:7c:41:56:f0:06:db:d0:76:ea:
67:8f:c4:fa:b2:12:c4:d5:42:7a:b7:6f:93:c0:48:
95:26:10:ff:4e:fc:f8:24:b3:e1:92:d1:07:7a:5f:
f8:10:83:58:1b:84:49:eb:ac:9a:3d:7b:bf:70:b0:
6e:22:78:b2:21:e2:ff:12:6f:92:83:79:ae:1a:2b:
87:0f:f2:e0:7d:7f:80:79:70:99:05:f7:ce:99:c3:
48:e0:65:b1:12:ec:02:59:08:d3:0f:2a:b3:a0:86:
ec:96:c2:f0:4c:50:4a:de:fa:0e:a6:92:50:ef:37:
41:dd:a0:2f:8f:a6:47:b6:cd:9d:8a:b5:2d:42:d9:
2b:eb:71:a5:b7:4d:8a:df:7d:97:ff:5b:95:c7:8c:
b9:43:ce:c9:43:b6:b2:44:d1:31:ac:6f:fc:ab:88:
9c:54:29:e7:19:44:0c:cb:78:33:45:dd:5b:0c:f3:
d3:b2:6b:cf:4f:9c:44:45:07:fd:10:cd:f8:0d:12:
79:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B3:AA:17:16:01:D5:CE:98:63:EE:4B:27:52:97:22:B2:B1:22:23
X509v3 Authority Key Identifier:
keyid:96:1C:CF:A9:D0:2C:BF:05:96:0E:3A:2F:90:79:85:9C:CD:6E:AD:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhzPqdAsvwWWDjovkHmFnM1urW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/arOqFxYB1c6YY-5LJ1KXIrKxIiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5557fc-7653-40a9-99c3-7ea9905c3fbd/1/lhzPqdAsvwWWDjovkHmFnM1urW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.64.0/18
185.171.136.0/22
IPv6:
2a01:4da0::/48
Signature Algorithm: sha256WithRSAEncryption
ab:60:8b:38:45:5b:45:19:02:e2:d1:70:ba:3a:55:e0:6f:3c:
8f:db:a1:a4:ed:cc:16:94:eb:91:0e:e4:a5:71:48:4f:87:50:
52:ad:83:9b:8e:bb:63:04:fe:3a:dd:c5:f1:2c:71:2a:67:88:
60:1a:92:13:b7:70:ee:6a:1a:cc:0d:f5:50:c1:ed:fc:54:b6:
25:7a:04:13:86:a6:ac:3e:d3:5e:01:0e:02:b3:e0:3e:6a:35:
20:93:1b:07:06:de:85:e1:50:ba:7b:1c:47:6c:7f:c9:2f:46:
94:d0:ca:d2:91:4a:17:1b:91:a7:cd:36:26:29:7b:41:51:b8:
d5:65:a6:8b:a3:fa:90:cd:c8:23:47:0d:2f:6d:6e:24:61:53:
78:28:4d:e2:53:48:a0:08:e9:68:24:35:6e:69:3e:ef:b2:96:
b9:0c:4a:00:8d:d0:81:f0:9a:03:4f:b0:3a:3a:62:c9:df:2f:
9a:50:cc:de:f9:a3:6c:e4:f8:3b:9c:5d:9e:86:20:2d:1f:bf:
4e:08:f1:db:05:9e:9a:69:42:5d:6f:5f:b0:fe:a5:5d:c7:05:
8c:d7:51:0d:df:e5:bf:77:6f:38:70:95:00:f1:04:37:30:ad:
af:d7:6c:d2:d8:b4:7c:11:f2:c1:67:2d:77:84:0a:af:cc:3e:
7b:5d:c3:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:24 2023 by rpki-client on console.sobornost.net