Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/9FvLzeN2jQebuYmGOsm8D737Jac.roa
File: 9FvLzeN2jQebuYmGOsm8D737Jac.roa (raw, json)
Hash identifier: qolkFJd3r7jJgMINebkdyZjeKyAln2uc8fWDXmHgQl4=
Subject key identifier: F4:5B:CB:CD:E3:76:8D:07:9B:B9:89:86:3A:C9:BC:0F:BD:FB:25:A7
Certificate issuer: /CN=8ad9281aafefc8375ad8b4b7e604899555952237
Certificate serial: 07F8F590
Authority key identifier: 8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/9FvLzeN2jQebuYmGOsm8D737Jac.roa
Signing time: Sat 01 Jan 2022 11:03:20 +0000
ROA not before: Sat 01 Jan 2022 11:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50864
IP address blocks: 185.160.89.0/24 maxlen: 24
185.160.88.0/24 maxlen: 24
2a07:bbc2:1::/48 maxlen: 48
2a07:bbc2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133756304 (0x7f8f590)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad9281aafefc8375ad8b4b7e604899555952237
Validity
Not Before: Jan 1 11:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f45bcbcde3768d079bb989863ac9bc0fbdfb25a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6a:4c:e8:b1:29:2b:10:20:7b:41:11:3b:d6:
c4:0b:65:1e:7f:e2:8e:68:2c:d0:93:69:29:67:3d:
06:da:36:ef:d6:19:18:4f:33:dc:a9:ba:31:9c:31:
50:84:92:88:c4:62:6f:23:4a:41:1f:63:d3:ad:26:
81:fe:39:a5:69:9f:22:a4:e4:a1:9c:ae:63:30:1f:
04:9b:66:70:40:7c:07:90:f9:c9:bb:c1:13:b1:92:
b3:dd:e0:82:27:29:f8:c0:3f:e3:6a:fb:42:ad:80:
9f:61:ad:0d:aa:8e:e6:05:66:ee:9c:56:c9:1f:ed:
c2:63:5b:5f:74:45:3c:29:76:6d:a6:70:6a:d4:66:
1c:ff:d8:e0:d8:be:54:6d:f3:c0:f2:a1:66:e8:24:
65:2d:ce:89:e1:7d:98:bb:e2:e0:dc:e5:b8:a4:3e:
bf:92:1a:36:8c:d1:b7:7b:8b:d8:f3:03:ba:49:e3:
a7:51:c1:a2:4f:9f:28:4c:77:74:40:e6:5b:4b:3e:
50:06:4d:1a:4c:16:92:17:37:ef:f9:d6:f3:96:3e:
d4:ee:37:97:dd:1d:26:15:98:fb:b1:c8:8a:ef:63:
91:52:6a:21:48:3c:86:c2:8b:08:56:be:dc:97:6d:
03:43:0b:69:ed:83:2b:a1:42:e0:50:39:1b:bf:e0:
c3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5B:CB:CD:E3:76:8D:07:9B:B9:89:86:3A:C9:BC:0F:BD:FB:25:A7
X509v3 Authority Key Identifier:
keyid:8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/9FvLzeN2jQebuYmGOsm8D737Jac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.88.0/23
IPv6:
2a07:bbc2::/47
Signature Algorithm: sha256WithRSAEncryption
10:8c:97:e7:44:45:da:31:3d:09:f4:a1:59:e6:fd:45:cf:de:
28:64:db:b4:34:22:32:a9:a1:e6:98:a5:28:2f:b2:17:12:32:
56:d5:80:40:b7:53:0f:cf:06:88:f2:9f:9d:2a:6d:26:b7:88:
97:48:73:6a:84:00:30:fa:54:fe:10:16:d2:54:78:e1:bd:3b:
f6:6d:bc:de:75:5c:74:2f:5a:99:54:e1:3c:6b:61:59:aa:71:
a0:24:c1:cc:50:c7:6e:07:d7:57:2b:b3:0b:c4:46:90:f6:6a:
95:f2:02:70:89:78:85:87:3f:8b:b2:bb:f3:81:2c:d0:96:2b:
9a:6c:82:90:7e:07:06:d4:91:87:13:67:45:df:a6:e3:8b:f9:
25:c5:e9:2c:29:b0:12:4d:23:59:5a:d3:d2:cd:bc:7d:7e:bc:
34:cb:3a:40:7b:e7:9b:16:aa:08:55:d4:d2:e8:4a:f9:05:e2:
07:94:b1:31:2a:d6:0a:a3:9f:6d:3a:76:a8:c3:d7:ed:22:37:
c5:7f:a5:5e:57:00:4d:5f:b4:08:d3:7e:08:d4:9e:e8:a0:28:
e3:ef:48:ff:2d:26:0a:12:5f:a3:cf:7c:7d:a0:66:45:1c:27:
db:b0:31:02:6f:f6:c9:d3:79:80:40:cb:d6:7b:78:11:73:3a:
9e:b0:af:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:16 2024 by rpki-client on console-fra.rpki-client.org