Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5fea8b-5228-42f7-8256-c815e50ec5e7/1/bGZeJP-Y-E0VKr4OVhUqoprHQn0.roa
File: bGZeJP-Y-E0VKr4OVhUqoprHQn0.roa (raw, json)
Hash identifier: o2m/Fh+Q0hcoc8DMmnHkqksd0b61IiSBm3iJNld3JWU=
Subject key identifier: 6C:66:5E:24:FF:98:F8:4D:15:2A:BE:0E:56:15:2A:A2:9A:C7:42:7D
Certificate issuer: /CN=ecf4f9db30b19c75e35ae803793f4e1b4aaa1487
Certificate serial: 03FF9494
Authority key identifier: EC:F4:F9:DB:30:B1:9C:75:E3:5A:E8:03:79:3F:4E:1B:4A:AA:14:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7PT52zCxnHXjWugDeT9OG0qqFIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5fea8b-5228-42f7-8256-c815e50ec5e7/1/bGZeJP-Y-E0VKr4OVhUqoprHQn0.roa
Signing time: Sat 01 Jan 2022 01:57:21 +0000
ROA not before: Sat 01 Jan 2022 01:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13030
IP address blocks: 185.198.204.0/23 maxlen: 23
2a00:f080::/42 maxlen: 42
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67081364 (0x3ff9494)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecf4f9db30b19c75e35ae803793f4e1b4aaa1487
Validity
Not Before: Jan 1 01:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c665e24ff98f84d152abe0e56152aa29ac7427d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a0:a3:3a:c2:37:bf:1e:c3:19:20:e4:e4:19:
8e:8a:35:cd:01:40:e7:0b:e8:4c:23:10:75:75:e7:
cb:1f:cc:e0:e7:0f:ed:bf:46:4f:72:57:6c:df:33:
f9:96:16:12:3b:be:43:fd:35:75:55:a8:82:83:c6:
72:4d:9a:64:7b:db:09:95:ea:76:3e:ec:19:87:28:
5b:ce:c9:53:70:1f:70:13:7d:fb:f2:69:07:fe:64:
bb:36:70:ab:77:da:b9:46:3f:ce:4c:00:8b:6e:69:
60:ce:bf:53:ca:7d:76:3e:8c:72:d5:1d:57:2f:26:
f3:36:45:78:a2:30:87:62:6f:8c:31:d0:64:47:10:
99:21:6f:d7:ea:04:90:4f:16:db:d0:3e:89:2d:6b:
f8:f3:a1:b9:0a:da:72:62:6b:0f:c9:0d:9c:e6:f2:
dd:ca:3a:30:1f:69:62:3c:c1:98:81:5e:b7:c3:38:
23:f2:6d:6f:86:c8:25:bb:e3:cf:27:dd:df:f9:5e:
45:79:ef:bf:76:83:92:20:de:7a:fb:4d:c6:17:95:
8e:ee:d5:f7:d7:b5:9e:4f:5e:50:0b:70:00:a0:7d:
a8:c3:fc:78:fa:88:d9:04:3b:35:4e:0c:84:a5:48:
f1:05:1a:2c:3b:84:92:28:5a:06:ba:90:da:e3:4d:
5f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:66:5E:24:FF:98:F8:4D:15:2A:BE:0E:56:15:2A:A2:9A:C7:42:7D
X509v3 Authority Key Identifier:
keyid:EC:F4:F9:DB:30:B1:9C:75:E3:5A:E8:03:79:3F:4E:1B:4A:AA:14:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7PT52zCxnHXjWugDeT9OG0qqFIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5fea8b-5228-42f7-8256-c815e50ec5e7/1/bGZeJP-Y-E0VKr4OVhUqoprHQn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5fea8b-5228-42f7-8256-c815e50ec5e7/1/7PT52zCxnHXjWugDeT9OG0qqFIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.204.0/23
IPv6:
2a00:f080::/42
Signature Algorithm: sha256WithRSAEncryption
77:2d:53:c2:24:93:0e:2b:61:0f:61:43:e5:02:44:0e:e4:ba:
a1:0b:55:1b:1c:ff:f7:ca:fe:96:ae:88:35:86:ef:60:85:c1:
88:7a:00:27:de:90:e7:5c:34:55:33:be:c1:5e:bc:86:ec:ca:
fa:f5:7d:12:25:32:4b:c4:49:04:85:99:d8:a0:ce:57:8d:86:
21:08:7b:7c:07:32:d3:32:7b:f8:40:4b:42:7a:8e:ef:90:3e:
5a:de:36:71:8f:38:28:fb:df:dd:cc:9b:74:38:0f:9d:f0:16:
82:05:3e:f7:8f:49:6a:b0:40:91:74:15:cd:33:a7:74:f9:41:
82:69:9a:2d:66:84:c0:4e:c4:e5:02:f9:10:d4:17:2b:3b:38:
1b:1e:31:f3:48:ae:8e:80:65:0e:0b:26:34:79:f0:75:16:48:
8c:e4:61:08:4e:80:00:b6:3c:54:87:d2:5c:b6:c0:8f:a8:75:
27:0c:84:90:04:da:d4:94:f8:8f:2b:36:df:54:1f:d3:76:ab:
77:f2:cd:75:c4:51:ea:f4:8d:d1:fd:7a:b6:85:2c:97:8e:fd:
57:d5:2d:8c:2d:79:2a:60:b7:47:92:18:4f:48:c6:c0:00:1a:
d7:fd:6c:74:4f:0d:f8:86:bb:78:3d:0d:bf:bd:8e:94:70:20:
44:a6:81:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:38 2024 by rpki-client on console-fra.rpki-client.org