Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/8ri6vdmj8nP7aWCFjhJn6ZyPJOU.roa
File: 8ri6vdmj8nP7aWCFjhJn6ZyPJOU.roa (raw, json)
Hash identifier: X8LzTXbM80OSnycPE9OHkDCuuMtAyFi4lgXidlCjCQc=
Subject key identifier: F2:B8:BA:BD:D9:A3:F2:73:FB:69:60:85:8E:12:67:E9:9C:8F:24:E5
Certificate issuer: /CN=5ab1996515884434b87882b5b972a6e529ffb00b
Certificate serial: 04313B40
Authority key identifier: 5A:B1:99:65:15:88:44:34:B8:78:82:B5:B9:72:A6:E5:29:FF:B0:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/8ri6vdmj8nP7aWCFjhJn6ZyPJOU.roa
Signing time: Fri 11 Feb 2022 17:45:34 +0000
ROA not before: Fri 11 Feb 2022 17:45:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209103
IP address blocks: 185.159.157.0/24 maxlen: 24
185.159.159.0/24 maxlen: 24
2a07:b941:f00::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70335296 (0x4313b40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab1996515884434b87882b5b972a6e529ffb00b
Validity
Not Before: Feb 11 17:45:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2b8babdd9a3f273fb6960858e1267e99c8f24e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:03:38:d8:3b:6a:ce:56:2d:be:7a:7b:15:5c:
3a:96:90:1b:53:8d:cc:69:67:02:f5:8d:05:67:a6:
6f:1c:ee:ea:80:75:92:9b:e9:11:61:77:38:11:c2:
c4:7c:c2:c4:fd:b0:4a:99:bc:e3:79:05:40:f9:db:
ea:19:16:a3:8f:c2:1e:b1:65:96:ef:db:17:5b:21:
83:f5:6d:10:6e:1e:5d:26:24:6f:6c:2e:22:51:60:
09:f2:a7:1d:9f:60:a3:87:80:aa:76:64:69:72:d3:
26:ce:cd:15:ae:76:31:45:8b:d6:70:35:d0:f1:50:
90:8a:3f:b0:ff:76:c4:88:da:3a:c0:d9:40:d9:9e:
4c:92:a8:cb:e4:5f:0a:3d:a6:08:f6:44:91:86:1d:
57:58:c0:cd:72:78:03:5e:e1:4c:bb:8e:27:13:ba:
2b:eb:21:c1:b6:3a:20:a5:2e:3d:d4:41:10:0a:f5:
6e:24:2b:95:b6:2a:e7:d8:78:fb:75:9d:ed:8c:8c:
b3:05:08:95:ec:79:89:3d:84:f2:fc:25:2b:82:12:
38:b5:c5:99:0a:8d:fd:0c:88:76:f7:57:44:87:b0:
42:de:3d:16:5c:c4:57:83:dd:9b:87:4a:af:04:7f:
72:6c:47:b5:54:2a:74:e9:d9:97:f5:07:45:c7:8c:
ca:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B8:BA:BD:D9:A3:F2:73:FB:69:60:85:8E:12:67:E9:9C:8F:24:E5
X509v3 Authority Key Identifier:
keyid:5A:B1:99:65:15:88:44:34:B8:78:82:B5:B9:72:A6:E5:29:FF:B0:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/8ri6vdmj8nP7aWCFjhJn6ZyPJOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.157.0/24
185.159.159.0/24
IPv6:
2a07:b941:f00::/44
Signature Algorithm: sha256WithRSAEncryption
29:e8:5f:31:53:0e:f3:77:5c:59:d4:f7:6e:88:79:3d:ce:18:
db:04:66:47:45:28:96:20:02:aa:64:18:f2:20:74:9f:24:85:
e6:56:96:b6:6b:14:3e:a3:0b:ac:7f:36:13:03:3b:53:5a:21:
5b:1a:2b:e4:40:c1:48:01:56:d6:76:af:c6:01:14:28:f4:75:
e1:46:f1:f0:84:bc:68:fa:1b:92:04:6f:6f:9d:a5:70:6c:bc:
58:d7:f0:8c:bf:94:c3:4e:90:dc:cf:5d:8f:16:50:99:27:3f:
d6:75:8c:5d:9b:c1:be:be:5a:36:96:7c:82:5a:23:c4:ee:65:
f9:54:f5:7a:69:a9:18:bb:08:7d:53:a1:b8:65:06:12:3a:50:
6f:48:24:57:84:fc:91:8a:d2:ed:8e:a5:b8:73:4d:97:51:90:
76:6f:07:ed:0f:54:87:98:d1:40:d6:9a:36:92:3b:2e:99:9f:
5d:dc:e2:b5:82:b4:a1:22:b6:f9:a6:3d:10:c8:cb:0f:da:32:
bb:65:c6:76:16:fc:7c:d3:3e:f2:30:a0:c4:dd:f1:84:2e:88:
63:0c:bc:81:fb:79:19:f0:57:a1:c0:97:10:ed:90:8d:db:01:
30:5a:af:4f:b2:88:e4:cf:34:36:91:eb:f7:ba:f5:0c:99:6e:
33:e8:a7:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:33 2024 by rpki-client on console-ams.rpki-client.org