Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/PreE7733bMz75jj83r8YLooya7o.roa
File: PreE7733bMz75jj83r8YLooya7o.roa (raw, json)
Hash identifier: EeNAtwjns6gL0zQrIW01XPGIYYa9CI944bYGd1Eqzyc=
Subject key identifier: 3E:B7:84:EF:BD:F7:6C:CC:FB:E6:38:FC:DE:BF:18:2E:8A:32:6B:BA
Certificate issuer: /CN=c011ee066641750a51147d8dc99a1b105658d203
Certificate serial: 089B3391
Authority key identifier: C0:11:EE:06:66:41:75:0A:51:14:7D:8D:C9:9A:1B:10:56:58:D2:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/PreE7733bMz75jj83r8YLooya7o.roa
Signing time: Sat 01 Jan 2022 08:04:40 +0000
ROA not before: Sat 01 Jan 2022 08:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57184
IP address blocks: 185.128.200.0/22 maxlen: 22
2a03:9b60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144389009 (0x89b3391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c011ee066641750a51147d8dc99a1b105658d203
Validity
Not Before: Jan 1 08:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3eb784efbdf76cccfbe638fcdebf182e8a326bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2a:77:4f:64:7a:0e:ad:57:50:ad:33:0e:8a:
72:32:53:c0:b8:53:90:b2:21:b2:dc:ff:fa:1c:96:
67:0a:21:2f:f2:06:ab:f5:43:53:55:f7:08:10:61:
f0:65:7c:69:cd:b6:5a:a7:25:24:cf:17:12:ca:a9:
cc:5e:06:be:c0:14:05:32:45:ad:6c:1a:5e:4b:66:
fe:de:1a:36:de:95:98:4b:65:4b:07:a8:6f:0f:2b:
a5:28:43:0a:7d:2c:fb:fe:0b:d0:1c:ee:31:50:e1:
8a:2c:8e:5b:f3:10:ba:3a:c4:3a:5d:f7:66:1b:bb:
b3:eb:fb:c4:dc:4f:b2:7d:6e:90:42:85:56:b8:30:
8a:91:a6:a6:84:05:86:c3:c1:91:39:c2:7a:a5:af:
a6:cf:5d:a2:e2:42:f4:f3:2f:40:36:12:f8:ea:dd:
ad:3e:8e:b4:a6:07:9e:c5:c7:3c:98:8b:3b:5d:c1:
e6:ab:bd:7f:36:de:c1:8a:51:a1:59:23:3f:51:c8:
c6:51:54:ac:1c:ce:67:4b:14:04:ed:a5:f3:7d:8a:
86:8d:83:82:52:f9:3b:16:bf:3a:ef:df:29:2f:65:
3b:49:83:3f:16:56:73:e2:2d:9e:a8:c8:82:d9:2f:
16:c5:c0:96:8d:fd:73:ac:5f:8b:94:3a:ca:42:5c:
23:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B7:84:EF:BD:F7:6C:CC:FB:E6:38:FC:DE:BF:18:2E:8A:32:6B:BA
X509v3 Authority Key Identifier:
keyid:C0:11:EE:06:66:41:75:0A:51:14:7D:8D:C9:9A:1B:10:56:58:D2:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wBHuBmZBdQpRFH2NyZobEFZY0gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/PreE7733bMz75jj83r8YLooya7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9be856-0e32-400f-8e89-369cd8be25fe/1/wBHuBmZBdQpRFH2NyZobEFZY0gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.200.0/22
IPv6:
2a03:9b60::/32
Signature Algorithm: sha256WithRSAEncryption
0a:72:4a:57:1e:eb:37:23:b9:c6:9b:a1:cb:0e:e5:54:be:75:
6e:a9:bc:88:b9:c4:4e:3d:4d:99:c7:f8:c9:fd:f3:b8:c0:99:
c2:b8:54:a2:88:44:c8:3a:e5:77:bf:e2:6a:76:45:cb:0e:b3:
89:c9:c2:f7:29:bc:0b:08:0f:3d:b7:b7:51:62:d4:c1:cc:e2:
9b:30:cd:98:93:b6:be:e0:22:95:f0:dd:1c:38:27:e6:48:85:
35:7a:e9:0e:ab:1c:e7:1f:4c:7b:25:a3:2a:7d:2c:cb:20:e7:
3d:1c:6c:44:51:44:f8:6e:1d:16:3c:55:d8:e2:39:99:77:40:
0f:2f:81:ea:5d:e4:4a:7d:45:e2:c8:1d:cd:71:57:03:58:da:
89:42:c0:f4:8c:ec:f6:b9:e4:b1:28:b8:94:0d:d6:1e:c9:3a:
f5:34:6d:f3:3d:e7:c1:83:db:c8:a0:24:c7:45:cf:ad:f5:93:
b5:0e:a4:ae:63:75:ad:bc:97:c3:20:b4:79:b4:be:9d:ba:94:
68:64:d7:e9:30:25:66:bd:c5:ca:78:c3:b7:08:31:2b:17:32:
d2:4b:c2:2b:73:d2:48:5b:4c:d6:e1:4b:d1:98:34:16:4b:c6:
66:2f:69:f1:a0:9c:8e:68:39:ad:3f:fc:24:4f:46:bd:09:3c:
6d:32:ed:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:25 2024 by rpki-client on console-fra.rpki-client.org