Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/ePiX4OUX3H2rPkj0JhHr7uQTtkU.roa
File: ePiX4OUX3H2rPkj0JhHr7uQTtkU.roa (raw, json)
Hash identifier: qzwplHrA0ro1QKBC/i/BdW4KBhhfaSBDfnFZIvLaJ7U=
Subject key identifier: 78:F8:97:E0:E5:17:DC:7D:AB:3E:48:F4:26:11:EB:EE:E4:13:B6:45
Certificate issuer: /CN=8d8f7eb4d2548f9ccbf3cb38e702a190c11742f5
Certificate serial: 0D469306
Authority key identifier: 8D:8F:7E:B4:D2:54:8F:9C:CB:F3:CB:38:E7:02:A1:90:C1:17:42:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jY9-tNJUj5zL88s45wKhkMEXQvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/ePiX4OUX3H2rPkj0JhHr7uQTtkU.roa
Signing time: Sat 01 Jan 2022 02:51:15 +0000
ROA not before: Sat 01 Jan 2022 02:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205071
IP address blocks: 185.231.96.0/22 maxlen: 22
195.140.232.0/22 maxlen: 22
193.138.108.0/24 maxlen: 24
2a0c:5100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222728966 (0xd469306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d8f7eb4d2548f9ccbf3cb38e702a190c11742f5
Validity
Not Before: Jan 1 02:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78f897e0e517dc7dab3e48f42611ebeee413b645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:27:01:51:c8:07:e0:a8:92:02:b9:b2:b2:1d:
2e:2a:10:6d:44:94:40:4b:6d:75:74:38:d9:1c:20:
10:44:d2:52:5a:00:07:ae:74:8e:09:d7:dd:e2:f8:
8e:2d:b7:fa:6a:df:87:5c:5f:0b:8b:dd:f3:f3:a3:
62:8a:95:26:6f:13:53:da:9e:0b:fd:5f:45:6f:08:
e6:6b:70:c3:15:90:42:8c:5a:76:9c:eb:c0:99:fd:
6d:9e:73:6c:a1:6c:27:f3:9d:83:59:e0:5c:df:60:
f3:80:31:38:d0:27:fa:81:1c:61:4f:02:86:00:32:
f9:77:9e:9a:3e:11:a7:09:73:d1:b7:f6:fd:a4:73:
46:f4:32:b6:b6:52:82:bd:e1:84:83:7c:93:ab:14:
77:ae:7b:4a:17:7c:3d:82:4c:6a:18:51:14:b3:52:
4f:2a:c0:08:99:9f:1a:c6:0c:cf:d6:72:e9:37:af:
3b:25:cb:4c:2f:11:6b:66:01:b6:69:d5:c3:a0:c6:
ea:e1:36:d2:de:23:7f:75:e5:15:33:d9:97:61:3b:
25:d0:5e:9a:59:e3:c0:e0:7d:18:cb:36:81:6b:39:
f5:38:fa:7c:33:ad:35:98:98:3b:a1:b3:7e:af:b5:
27:ef:97:f9:74:b9:f5:92:8b:ad:8a:cb:92:75:5f:
f0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F8:97:E0:E5:17:DC:7D:AB:3E:48:F4:26:11:EB:EE:E4:13:B6:45
X509v3 Authority Key Identifier:
keyid:8D:8F:7E:B4:D2:54:8F:9C:CB:F3:CB:38:E7:02:A1:90:C1:17:42:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jY9-tNJUj5zL88s45wKhkMEXQvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/ePiX4OUX3H2rPkj0JhHr7uQTtkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c261eb-c7cd-454d-84a6-afd272dd0fb5/1/jY9-tNJUj5zL88s45wKhkMEXQvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.96.0/22
193.138.108.0/24
195.140.232.0/22
IPv6:
2a0c:5100::/29
Signature Algorithm: sha256WithRSAEncryption
42:f2:2b:4d:50:83:7b:32:aa:28:b1:df:7f:ad:30:f3:e0:15:
5b:1d:8d:d9:88:53:be:0a:7a:7c:51:bc:b0:b2:59:ee:60:d0:
12:b9:cc:27:f7:8b:57:55:02:4d:a8:0e:88:be:22:b3:04:3a:
cb:c2:dd:b9:15:ae:74:c7:6d:39:a8:b9:ac:eb:d9:3f:2c:dd:
aa:9a:8f:19:e2:80:a2:be:19:d9:12:47:7b:d8:1f:e7:af:e4:
55:ca:56:6b:b0:97:8f:a9:83:86:c4:b2:e5:e5:ed:61:38:93:
14:52:21:0b:7c:33:69:aa:52:0d:51:73:b9:66:6d:64:3f:d3:
d2:4c:29:60:89:71:c8:5a:68:55:cd:27:76:65:6e:71:62:5b:
1d:a0:fd:c5:2e:f9:93:d5:90:a4:00:e5:ae:69:85:0d:78:29:
9d:02:9d:cc:52:a5:d6:95:3c:66:fd:1a:e7:89:87:90:99:4f:
e2:ea:3d:c1:ba:b1:0f:d1:07:21:43:13:e8:85:d7:78:b3:af:
ca:ef:9e:8a:9f:4a:da:fb:9c:31:11:c0:70:0b:b7:e9:ad:25:
ee:1a:9f:53:3f:b5:15:c4:71:92:aa:a9:5e:01:a6:09:e6:66:
63:ed:b8:db:b9:24:a8:50:81:c8:09:d7:06:f6:c4:ce:c1:43:
29:f1:84:b6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net