Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/_7A9fDX0xqACFIcVzHIYsrSSnzw.roa
File: _7A9fDX0xqACFIcVzHIYsrSSnzw.roa (raw, json)
Hash identifier: dfjuvxtrCCY3YAyIbGh9uL1xIWtLxXGv01mvEm/DdS8=
Subject key identifier: FF:B0:3D:7C:35:F4:C6:A0:02:14:87:15:CC:72:18:B2:B4:92:9F:3C
Certificate issuer: /CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Certificate serial: 058386F0
Authority key identifier: 2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/_7A9fDX0xqACFIcVzHIYsrSSnzw.roa
Signing time: Sat 01 Jan 2022 08:57:50 +0000
ROA not before: Sat 01 Jan 2022 08:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203255
IP address blocks: 185.137.48.0/22 maxlen: 24
2a0f:cb40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92505840 (0x58386f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Validity
Not Before: Jan 1 08:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffb03d7c35f4c6a002148715cc7218b2b4929f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:59:88:12:b0:80:9b:b7:54:8f:dc:99:01:d8:
20:43:f5:b7:78:07:5a:6d:75:7d:d1:da:c6:89:58:
4a:26:ea:a1:7a:ab:41:a9:c0:ae:6f:84:bb:8a:c1:
24:a6:42:92:9b:7f:6c:ff:90:07:e6:ad:21:a2:a0:
56:9e:02:b7:2e:87:40:f2:35:7c:82:a1:7f:74:e8:
f7:a5:17:79:9e:33:92:70:42:11:50:41:41:c9:a1:
23:fa:77:3b:35:68:81:da:61:08:ea:7e:7a:d7:3c:
bb:67:6c:ff:5b:23:31:ba:d6:a3:2f:ee:30:37:4c:
08:53:0f:62:2a:f5:f7:10:b2:83:9b:cf:f0:35:a3:
be:b0:a6:e7:dd:01:71:83:4c:5b:e0:d7:f4:23:cb:
17:39:15:a8:6f:dd:fa:2d:ef:e8:bd:3b:74:ab:19:
35:f7:07:c2:6b:ba:09:2c:3e:c4:96:56:da:50:89:
49:36:45:d8:ab:4f:5f:72:b6:52:f0:ae:f4:27:44:
50:f3:24:5b:61:a7:82:57:75:36:23:9c:7d:7f:60:
97:6c:43:99:97:d9:6d:6e:31:65:25:e1:8e:7b:e6:
b4:19:4d:29:aa:3c:00:47:b9:a9:bd:f2:fe:fb:8f:
6d:da:a8:d5:88:4f:03:44:2a:b7:dc:96:3e:c3:33:
c0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B0:3D:7C:35:F4:C6:A0:02:14:87:15:CC:72:18:B2:B4:92:9F:3C
X509v3 Authority Key Identifier:
keyid:2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/_7A9fDX0xqACFIcVzHIYsrSSnzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.48.0/22
IPv6:
2a0f:cb40::/32
Signature Algorithm: sha256WithRSAEncryption
ac:a9:81:55:07:bd:60:a0:8e:14:b7:2b:7d:6c:68:8a:f1:bd:
6b:18:be:2d:a0:1c:35:4c:5c:a0:7d:8e:25:d2:d7:b2:18:ab:
a5:24:dd:df:49:4a:57:62:9d:a4:1a:c3:a4:4f:b9:ce:6a:72:
d6:3f:79:48:fc:af:29:b1:a7:ba:af:99:0c:2a:57:15:32:22:
e9:43:64:05:16:51:b2:43:8a:0a:34:37:77:0f:d6:d6:80:17:
da:2a:7a:7b:14:36:1a:2d:dc:31:96:55:fd:bd:16:25:bb:21:
5b:c1:52:c0:d9:c4:ef:9e:09:7a:d8:62:6a:23:6b:ec:7b:83:
53:4c:e4:1f:d6:d7:43:44:c8:9a:ec:95:b4:3c:b4:0c:89:15:
7e:77:47:7d:e1:72:0a:f7:c1:4d:9c:0b:20:81:47:d8:29:76:
53:6d:e3:9f:0c:21:cf:3a:6c:b0:9d:3a:01:18:63:c0:c9:74:
3f:b2:3b:56:d8:90:56:9a:e3:56:93:d5:02:92:e9:e0:a1:e7:
c8:5c:33:1c:a5:43:ec:5c:4d:41:6c:6f:1b:12:8e:b6:71:28:
81:de:f2:6b:6a:66:30:73:93:6c:0d:eb:b9:89:55:bb:ae:68:
61:a0:aa:41:ca:2a:0e:21:28:b7:9f:d5:0f:e1:15:e0:9e:03:
08:bb:9e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:41 2024 by rpki-client on console-fra.rpki-client.org