Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/97a9aa-6970-49c8-8d0a-2b3ddbcb7238/1/IAnRj6tpIUq4K6OJ9wI60npjYgI.roa
File: IAnRj6tpIUq4K6OJ9wI60npjYgI.roa (raw, json)
Hash identifier: fg2KbEe6JE7jaSxCyG+rYGx3/b79WI9BebM3hJxCyQg=
Subject key identifier: 20:09:D1:8F:AB:69:21:4A:B8:2B:A3:89:F7:02:3A:D2:7A:63:62:02
Certificate issuer: /CN=aafa45a62c5e850ab9c8726a59a9bfa992d371b2
Certificate serial: 0B16E887
Authority key identifier: AA:FA:45:A6:2C:5E:85:0A:B9:C8:72:6A:59:A9:BF:A9:92:D3:71:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvpFpixehQq5yHJqWam_qZLTcbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/97a9aa-6970-49c8-8d0a-2b3ddbcb7238/1/IAnRj6tpIUq4K6OJ9wI60npjYgI.roa
Signing time: Sat 01 Jan 2022 10:58:28 +0000
ROA not before: Sat 01 Jan 2022 10:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39614
IP address blocks: 185.228.176.0/22 maxlen: 24
213.139.240.0/22 maxlen: 24
2a09:7180::/29 maxlen: 48
2a0c:1d00::/30 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186050695 (0xb16e887)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aafa45a62c5e850ab9c8726a59a9bfa992d371b2
Validity
Not Before: Jan 1 10:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2009d18fab69214ab82ba389f7023ad27a636202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cd:ed:81:cf:90:af:9d:f2:72:ec:4c:b6:ca:
2f:a3:1c:41:ff:12:43:30:13:74:e7:1a:19:77:09:
a2:ee:51:04:4d:d2:4c:0f:32:1d:e6:9e:8c:7e:62:
c8:a8:21:95:f8:0d:1e:4e:d4:c1:69:93:89:57:57:
af:a2:90:59:06:5f:63:f8:13:54:d4:5e:42:b0:11:
ab:6b:d9:cd:cd:46:ae:b9:c4:c3:ed:12:2f:4c:00:
ab:cf:82:ff:e9:40:54:ea:b8:20:ca:5b:5e:ed:55:
46:d5:74:f6:9c:16:81:4f:c2:ed:67:7a:39:19:64:
e7:e1:cd:b9:a5:e2:32:87:30:a7:2c:84:fc:f1:a1:
4d:76:7b:68:7b:0f:77:24:de:20:77:43:97:74:35:
40:48:9a:6f:5c:ec:0f:6e:46:b0:d8:a4:f5:24:90:
0f:22:73:85:bf:c0:31:a0:27:22:a4:94:c0:c6:81:
ec:4b:95:89:fc:3a:e3:df:52:c8:a1:86:d7:7c:d4:
0b:f8:65:2e:b9:fc:d3:fd:af:77:a9:9b:1b:3c:16:
c7:e8:81:d5:ff:67:45:80:62:15:92:d8:4d:03:19:
7c:ed:7e:05:9b:9d:0f:94:79:f1:c8:79:1d:05:a0:
94:31:82:c2:93:8a:de:c8:e8:8a:58:9a:2c:12:c5:
63:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:09:D1:8F:AB:69:21:4A:B8:2B:A3:89:F7:02:3A:D2:7A:63:62:02
X509v3 Authority Key Identifier:
keyid:AA:FA:45:A6:2C:5E:85:0A:B9:C8:72:6A:59:A9:BF:A9:92:D3:71:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvpFpixehQq5yHJqWam_qZLTcbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/97a9aa-6970-49c8-8d0a-2b3ddbcb7238/1/IAnRj6tpIUq4K6OJ9wI60npjYgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/97a9aa-6970-49c8-8d0a-2b3ddbcb7238/1/qvpFpixehQq5yHJqWam_qZLTcbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.176.0/22
213.139.240.0/22
IPv6:
2a09:7180::/29
2a0c:1d00::/30
Signature Algorithm: sha256WithRSAEncryption
38:a4:0e:02:ec:0c:9d:22:f7:92:11:aa:10:0a:e0:cb:61:e1:
7f:05:22:e6:a4:38:af:62:20:fe:f1:47:5e:2e:6f:47:39:c3:
ff:e3:e7:cd:7a:95:df:f5:fc:c5:38:15:aa:b5:46:5c:30:bc:
6f:b2:4e:18:57:63:5d:a6:a5:bd:47:0c:0b:e3:8f:f0:c4:95:
a7:27:16:ee:a6:db:b0:29:52:d1:4b:18:f5:09:ae:dc:bd:eb:
ef:15:6f:54:59:73:51:7a:43:c5:e3:29:e4:d2:16:0c:76:49:
6a:dd:3a:cd:30:06:a9:c0:33:7d:45:96:17:3f:b7:30:30:e1:
3e:e8:8d:4e:da:28:ce:c4:45:53:85:62:39:a4:b3:23:37:6a:
bf:63:59:22:3a:76:06:f7:a6:e2:19:16:f6:a1:04:60:cb:f7:
94:c0:9a:60:ac:52:2e:02:8d:95:f0:a4:ff:2e:88:e7:7e:31:
3f:3b:06:78:a3:ee:00:a7:e0:45:0f:98:47:7f:e7:40:c2:b7:
61:89:68:fb:68:03:93:9b:72:55:67:a4:5d:42:e0:00:f8:52:
74:64:15:0b:39:aa:d2:45:00:39:c8:94:f2:5a:b2:84:d7:ca:
9f:cb:2a:0c:8e:96:6a:21:0e:aa:f1:9f:12:6e:48:0e:73:80:
99:47:6d:60
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:59 2024 by rpki-client on console-fra.rpki-client.org