Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/_8bAoxgwPTNhdbeIFjAuChKeHHY.roa
File: _8bAoxgwPTNhdbeIFjAuChKeHHY.roa (raw, json)
Hash identifier: W/4AQtNmUzEiaulzfys9t5y9E1ygirTccCwNCJaCvDg=
Subject key identifier: FF:C6:C0:A3:18:30:3D:33:61:75:B7:88:16:30:2E:0A:12:9E:1C:76
Certificate issuer: /CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Certificate serial: 058BAE58
Authority key identifier: B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/_8bAoxgwPTNhdbeIFjAuChKeHHY.roa
Signing time: Sat 01 Jan 2022 12:04:36 +0000
ROA not before: Sat 01 Jan 2022 12:04:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38919
IP address blocks: 185.132.108.0/22 maxlen: 22
89.190.140.0/22 maxlen: 22
185.92.68.0/22 maxlen: 22
2a05:f080::/29 maxlen: 29
2a0e:f800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93040216 (0x58bae58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Validity
Not Before: Jan 1 12:04:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffc6c0a318303d336175b78816302e0a129e1c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:55:13:0a:b1:7d:97:69:3d:b5:fe:5a:d4:7a:
6d:b4:00:ec:ae:2a:c6:8b:84:d7:f9:cd:94:76:74:
f0:c4:be:eb:63:01:58:ad:6b:d0:a2:2f:33:e2:89:
89:bc:9f:10:10:d2:fb:3d:dc:91:40:ef:c5:95:a8:
79:5b:c2:6b:db:dc:3c:27:8a:b6:5e:03:a2:25:12:
f8:ba:55:69:ea:ac:37:ce:c6:06:ac:d0:bd:42:df:
d7:74:34:31:57:6f:78:28:f6:f1:12:f8:f8:8d:7b:
2b:46:67:ef:71:f2:3f:35:b6:a1:a6:57:cb:33:f8:
a4:51:ad:27:39:33:7f:fd:0f:78:51:02:32:ba:10:
bd:40:22:5d:a5:f5:a6:e7:81:9e:86:56:e1:31:e0:
5c:e8:3b:52:3a:65:50:3a:1a:2a:c9:ee:b8:fb:34:
d1:5d:28:a5:58:69:43:66:35:32:40:d6:91:78:d4:
46:a3:d9:0d:1e:9b:05:7d:b4:64:7f:e9:48:22:33:
a9:2c:bd:14:f8:d0:40:ce:7e:52:e6:8d:34:2b:f6:
3e:06:ba:73:cf:24:df:79:0e:b5:32:16:b9:95:cb:
51:1a:13:c6:32:32:50:1f:90:22:c7:b9:fb:0b:13:
d2:c5:22:99:3e:d2:ec:8e:c7:c9:d4:37:82:69:9f:
ac:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C6:C0:A3:18:30:3D:33:61:75:B7:88:16:30:2E:0A:12:9E:1C:76
X509v3 Authority Key Identifier:
keyid:B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/_8bAoxgwPTNhdbeIFjAuChKeHHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.190.140.0/22
185.92.68.0/22
185.132.108.0/22
IPv6:
2a05:f080::/29
2a0e:f800::/29
Signature Algorithm: sha256WithRSAEncryption
b2:cd:7f:ff:7f:01:ba:fe:11:a1:2a:35:22:02:e6:7c:48:8f:
da:52:70:c1:00:bc:bf:b8:0e:12:75:15:5e:10:44:18:2f:71:
a2:54:b4:6d:5e:9d:28:14:aa:ca:13:a7:4b:3e:60:ff:f3:fa:
64:9a:ea:cb:32:61:86:44:47:20:6e:3a:b3:16:94:5e:20:93:
0e:d5:46:a0:d6:5e:61:28:f1:8e:5e:3a:cb:99:3f:d0:6c:9e:
1b:c6:91:86:a5:5a:f5:73:dd:17:16:2e:23:c3:58:79:83:b2:
88:9f:71:59:e8:bf:4b:95:6c:b9:84:3a:a6:e2:28:e5:9e:ab:
14:47:98:44:0b:21:70:45:ff:77:cb:b9:ac:a9:12:bb:91:d5:
ed:89:61:fd:44:6f:a2:d0:71:2a:12:08:fd:b5:c9:3a:50:20:
e2:23:5d:d1:c6:a9:21:21:7b:63:96:d9:8b:3d:64:fe:81:79:
a9:b9:93:21:52:83:cb:63:74:4c:fb:05:94:1d:bf:7c:7d:a3:
b6:ae:7a:0d:68:56:22:1a:71:ee:55:47:0d:5c:fd:fd:da:ca:
41:e4:38:ba:f9:85:a4:d6:22:9d:79:8d:e6:60:49:d1:f2:99:
3e:4d:0c:0c:de:d8:cb:7f:e6:85:85:36:d5:7b:63:26:cf:0b:
90:63:5b:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:10 2024 by rpki-client on console-fra.rpki-client.org