Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/a98e4a-45aa-408c-b807-bfcf9a922a8b/1/eIR9zgAzqUD0Cwf2Rad2QwbDusc.roa
File: eIR9zgAzqUD0Cwf2Rad2QwbDusc.roa (raw, json)
Hash identifier: TLBS5h4tbO4odcOuOwcQXgJBmYbM9VBvp2XKY9NpJIw=
Subject key identifier: 78:84:7D:CE:00:33:A9:40:F4:0B:07:F6:45:A7:76:43:06:C3:BA:C7
Certificate issuer: /CN=fd2af9060c1f42c628fcfb8f0781d7a5bc21fc02
Certificate serial: 13F91A47
Authority key identifier: FD:2A:F9:06:0C:1F:42:C6:28:FC:FB:8F:07:81:D7:A5:BC:21:FC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Sr5BgwfQsYo_PuPB4HXpbwh_AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/a98e4a-45aa-408c-b807-bfcf9a922a8b/1/eIR9zgAzqUD0Cwf2Rad2QwbDusc.roa
Signing time: Sat 01 Jan 2022 02:59:54 +0000
ROA not before: Sat 01 Jan 2022 02:59:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28725
IP address blocks: 85.162.0.0/15 maxlen: 24
80.74.32.0/20 maxlen: 24
194.147.12.0/22 maxlen: 24
2a07:1f40::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335092295 (0x13f91a47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd2af9060c1f42c628fcfb8f0781d7a5bc21fc02
Validity
Not Before: Jan 1 02:59:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78847dce0033a940f40b07f645a7764306c3bac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d6:99:96:bc:e0:a4:a1:1f:e5:bd:3d:6f:98:
d3:8b:b8:3a:2e:62:88:ab:b8:31:52:d4:ac:b4:f7:
b9:46:e8:c6:55:d0:2a:0a:de:55:c3:01:7b:e6:a2:
66:bd:5b:7c:d2:74:73:5a:2d:f3:5f:ec:3f:2e:ec:
d7:71:b5:89:b4:ba:91:ca:13:bc:51:c0:95:bb:81:
48:1e:ee:d2:2f:25:b1:39:00:7f:b4:99:0b:2c:ba:
53:1c:0a:32:d8:43:25:13:86:42:17:b9:32:c0:bc:
d4:a6:be:98:ce:5a:77:83:79:97:bd:5f:25:4c:17:
77:f5:0b:7f:70:95:31:20:c3:a2:4a:f1:24:45:a9:
cb:dd:65:44:78:e1:2c:be:4c:2f:f4:22:d2:ce:de:
9e:86:28:dd:c4:e1:76:31:9d:ae:ea:d9:46:e2:89:
c9:83:ba:db:a9:e2:aa:b7:cc:27:18:07:78:26:6d:
9a:cb:68:9c:ee:65:42:69:e4:39:8d:e7:a8:65:bd:
68:2a:e7:6e:85:da:fd:ea:6d:9f:e7:4c:41:04:15:
4b:b1:3c:2b:ed:b2:c4:60:a5:ef:59:de:e6:be:7e:
37:dc:37:72:3d:0d:16:bc:96:3b:3b:37:ab:7a:62:
cd:89:8d:00:3c:0a:7b:c6:83:2c:eb:b4:54:04:6e:
31:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:84:7D:CE:00:33:A9:40:F4:0B:07:F6:45:A7:76:43:06:C3:BA:C7
X509v3 Authority Key Identifier:
keyid:FD:2A:F9:06:0C:1F:42:C6:28:FC:FB:8F:07:81:D7:A5:BC:21:FC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Sr5BgwfQsYo_PuPB4HXpbwh_AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a98e4a-45aa-408c-b807-bfcf9a922a8b/1/eIR9zgAzqUD0Cwf2Rad2QwbDusc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a98e4a-45aa-408c-b807-bfcf9a922a8b/1/_Sr5BgwfQsYo_PuPB4HXpbwh_AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.74.32.0/20
85.162.0.0/15
194.147.12.0/22
IPv6:
2a07:1f40::/29
Signature Algorithm: sha256WithRSAEncryption
bd:bc:f3:d7:e5:3f:96:a7:ab:88:2c:fe:42:e2:a8:5b:a0:26:
ec:b1:7c:c6:75:e0:4c:28:03:a4:af:e2:11:f7:4c:55:c3:f9:
ff:33:8c:01:3f:79:99:df:36:0a:90:2e:e5:b6:e1:a0:06:63:
15:58:16:03:46:15:97:ac:57:a6:7f:75:31:09:23:46:ea:8c:
50:11:c7:c5:51:c3:7a:89:6b:00:a1:b2:69:43:e8:de:3d:bd:
66:38:50:87:66:b8:35:fb:b6:54:96:46:7e:fc:eb:e2:a0:12:
96:e0:c1:54:72:ae:27:38:de:f0:7e:37:fb:58:0c:b0:d8:75:
0f:4b:79:43:43:c3:79:d0:70:4a:2a:f2:ae:44:cf:71:4f:de:
f3:8b:33:3e:d9:af:56:74:2d:aa:7a:f0:85:f5:f1:07:a4:c1:
62:b7:8d:dd:bf:34:d9:66:31:39:f7:f1:0c:32:ba:ac:c5:cb:
0e:6f:7c:5a:14:7e:d2:8f:3c:6e:06:a1:6d:0b:86:dc:03:ed:
73:98:4d:5f:27:84:d2:e1:4c:35:dc:e7:40:cd:fc:6c:0c:1a:
c3:1b:ce:56:41:b0:29:f6:0b:d0:3e:61:af:26:93:eb:8e:39:
89:0e:0e:55:90:e5:97:27:d8:7e:45:24:81:bf:00:be:31:99:
f1:ea:64:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:34 2024 by rpki-client on console-fra.rpki-client.org