Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/rLxTi4D2uUjXfJhMnUsJwBr4svg.roa
File: rLxTi4D2uUjXfJhMnUsJwBr4svg.roa (raw, json)
Hash identifier: C4gNinu/RLHXsKpfKNj6w4xKRrDI8ayXd9XTDv+JzII=
Subject key identifier: AC:BC:53:8B:80:F6:B9:48:D7:7C:98:4C:9D:4B:09:C0:1A:F8:B2:F8
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 0182F03BC262AAA45B96AEB069399BEABD2A
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/rLxTi4D2uUjXfJhMnUsJwBr4svg.roa
Signing time: Tue 30 Aug 2022 19:30:24 +0000
ROA not before: Tue 30 Aug 2022 19:30:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47216
IP address blocks: 194.59.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f0:3b:c2:62:aa:a4:5b:96:ae:b0:69:39:9b:ea:bd:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Aug 30 19:30:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acbc538b80f6b948d77c984c9d4b09c01af8b2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:32:d6:18:97:49:ed:a1:43:41:88:73:c7:e2:
8c:f0:12:f9:f3:27:77:d7:56:18:39:e4:41:57:c5:
06:86:0a:33:52:ba:8c:7e:2f:1f:a4:f2:86:2d:fe:
87:b2:ba:f5:b9:e4:cd:d2:b3:a7:23:5e:a5:24:35:
ae:9c:d5:f2:c1:79:c8:7e:fe:f8:90:1f:e6:4e:98:
65:76:b1:b4:5c:6c:fe:5a:15:f9:08:a0:99:2c:28:
5c:cb:ab:3b:49:06:9a:12:43:ff:74:b8:91:ad:ce:
c7:9e:82:41:24:5c:4e:c9:af:a2:93:b4:b9:e8:9a:
77:34:ba:f6:50:bc:82:0f:1a:fd:fd:76:ab:11:99:
bb:79:d2:d2:9d:d7:3e:2a:df:aa:d8:da:da:95:78:
9c:7d:0a:0b:58:9b:ba:41:41:92:85:a7:b5:e7:5f:
d7:a2:86:1e:69:68:f6:92:29:73:7f:6d:14:35:5d:
f6:f7:5e:5a:da:8e:61:21:77:4a:82:60:ba:e6:15:
e4:b1:24:49:6a:cb:dd:cd:5e:74:bd:f9:6c:20:87:
f2:89:ea:45:4f:b7:d4:db:20:7b:e6:04:61:b4:25:
53:f9:f1:cc:bb:3f:d1:8b:b3:6f:0b:67:4f:16:0d:
8c:6b:a0:12:28:c0:c9:68:de:cc:f9:00:e1:15:a9:
e5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BC:53:8B:80:F6:B9:48:D7:7C:98:4C:9D:4B:09:C0:1A:F8:B2:F8
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/rLxTi4D2uUjXfJhMnUsJwBr4svg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.215.0/24
Signature Algorithm: sha256WithRSAEncryption
50:29:6e:8c:9b:d9:65:69:e2:91:00:ba:83:b7:b3:8a:de:d9:
cb:78:7c:f7:2e:d9:a5:ab:19:47:45:c9:32:13:83:67:42:e8:
ec:17:09:a5:e6:c2:b8:87:98:6f:68:4a:6b:3e:9a:e8:68:cf:
47:38:4a:78:d4:52:97:39:eb:e6:dc:eb:18:38:f6:25:b3:7b:
75:98:e7:f9:f2:16:ca:d7:ef:3c:aa:60:9d:7c:4b:f3:03:0a:
f6:e3:18:f2:ef:6e:41:ec:c3:ab:a2:09:62:b0:44:d0:92:83:
52:39:63:52:93:2d:af:25:c3:fe:ca:7b:6b:39:10:aa:00:f4:
99:70:c7:2a:87:b6:23:e5:ce:7f:2c:41:97:29:c6:ed:0a:42:
e1:a4:78:a3:c9:a1:51:4e:fa:ec:66:59:e7:02:87:d2:97:67:
f2:60:dc:c2:d6:32:d4:97:38:c2:c2:b2:a3:3c:06:55:4a:dc:
4e:68:5d:84:67:dd:73:1d:20:01:e8:57:08:89:f0:49:57:d2:
5c:9e:04:2c:cc:f5:97:dc:e3:71:8a:8f:7c:c8:07:18:82:b4:
6f:41:5e:09:0a:f8:02:5b:98:40:88:8e:36:50:f6:77:d5:46:
5b:09:da:00:61:99:93:fa:19:42:50:40:8f:36:55:05:53:f8:
9b:79:35:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:20 2023 by rpki-client on console.sobornost.net