Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/cf028e-757e-4843-a1ea-4c74d332ea58/1/v7bizQqokyOB7hIfvPlM1kXJpug.roa
File: v7bizQqokyOB7hIfvPlM1kXJpug.roa (raw, json)
Hash identifier: ZZ5soMmWuEqgjaDtc2ubxZ90DXyfaTUGq6Bn5hTNbYw=
Subject key identifier: BF:B6:E2:CD:0A:A8:93:23:81:EE:12:1F:BC:F9:4C:D6:45:C9:A6:E8
Certificate issuer: /CN=d959676fe138d4eb2aae19bb6731fee6292d793d
Certificate serial: 14E15E9C
Authority key identifier: D9:59:67:6F:E1:38:D4:EB:2A:AE:19:BB:67:31:FE:E6:29:2D:79:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Vlnb-E41Osqrhm7ZzH-5ikteT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/cf028e-757e-4843-a1ea-4c74d332ea58/1/v7bizQqokyOB7hIfvPlM1kXJpug.roa
Signing time: Sat 01 Jan 2022 16:01:10 +0000
ROA not before: Sat 01 Jan 2022 16:01:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28931
IP address blocks: 185.103.188.0/22 maxlen: 23
2a00:f400::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 350314140 (0x14e15e9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d959676fe138d4eb2aae19bb6731fee6292d793d
Validity
Not Before: Jan 1 16:01:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfb6e2cd0aa8932381ee121fbcf94cd645c9a6e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:4e:b4:57:cb:ca:60:8c:c6:22:83:69:fa:45:
9c:72:51:31:02:2c:ec:d7:11:70:f7:c0:1a:8f:63:
70:11:f5:99:63:ea:1d:ec:16:2d:d7:31:dd:34:1e:
d6:c3:35:7e:a2:56:fc:24:31:7a:8d:92:0b:f9:f4:
d2:b3:28:13:18:96:ef:73:61:a7:03:cc:85:78:1d:
71:ca:10:b4:74:9f:db:55:48:8f:7e:59:02:f3:c5:
e1:00:c2:58:fb:63:52:1b:8d:5d:fb:6f:e9:fd:da:
a5:6c:c9:51:2c:7c:73:04:e5:5e:6f:c0:e4:2e:03:
a8:7d:55:47:6e:77:ab:4d:3c:7e:0f:86:d1:e7:66:
85:bc:de:ef:17:ce:4e:ca:8d:43:27:1c:c1:f5:af:
a6:77:b0:27:dc:7a:7d:09:f3:56:7c:5e:6b:34:07:
0b:31:b8:e7:35:36:79:56:99:7e:e1:78:4b:f8:16:
94:29:f5:99:ea:1d:9b:61:da:a4:03:0f:ef:3b:5d:
53:ff:55:a5:9a:b8:c4:5f:e5:db:5d:b5:c3:4e:95:
d7:c2:6e:11:c6:d3:41:60:7b:81:b6:19:16:84:53:
a1:5f:74:6c:41:29:3b:ed:87:c5:0d:70:fa:0b:ee:
3f:9e:10:22:a3:0a:3d:e1:55:35:9d:e6:da:a6:88:
48:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B6:E2:CD:0A:A8:93:23:81:EE:12:1F:BC:F9:4C:D6:45:C9:A6:E8
X509v3 Authority Key Identifier:
keyid:D9:59:67:6F:E1:38:D4:EB:2A:AE:19:BB:67:31:FE:E6:29:2D:79:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Vlnb-E41Osqrhm7ZzH-5ikteT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/cf028e-757e-4843-a1ea-4c74d332ea58/1/v7bizQqokyOB7hIfvPlM1kXJpug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/cf028e-757e-4843-a1ea-4c74d332ea58/1/2Vlnb-E41Osqrhm7ZzH-5ikteT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.188.0/22
IPv6:
2a00:f400::/32
Signature Algorithm: sha256WithRSAEncryption
54:e6:1c:3f:f7:36:6a:17:1e:e7:71:57:bd:a1:43:e7:1a:17:
af:dd:7c:9f:3b:9e:ad:2e:4f:d9:fa:e5:51:63:6b:50:3b:5a:
5f:dd:f7:d2:48:bf:cf:62:1f:14:cb:ec:ad:2c:77:bf:cb:0c:
ae:8c:1f:6d:b5:34:21:34:74:e2:16:07:54:c7:a4:7c:68:94:
02:7e:63:02:a9:8b:61:54:0b:f0:6b:db:61:10:78:96:f7:c8:
ca:cc:8b:c9:ff:c3:3f:aa:82:af:7a:8c:9d:39:16:fc:bc:7d:
a4:c6:ab:11:da:79:5e:f2:08:92:5a:90:eb:c5:29:1c:60:f7:
8f:33:7f:95:14:87:d0:ba:ce:d3:f0:b1:be:b4:80:4b:94:20:
68:38:22:bf:cf:50:31:08:05:f8:b3:e7:97:6c:a5:5c:ed:f7:
5b:7a:07:28:c8:76:19:ff:97:c8:64:6e:2e:31:8e:9a:b1:9e:
00:9e:06:f4:7c:ff:e7:6d:04:0b:62:15:16:a1:56:90:b2:d3:
a7:51:b2:03:35:df:ae:2e:bf:ad:d2:a8:b4:be:db:5b:06:a1:
27:4a:02:e0:46:12:9b:95:7b:18:a0:32:74:9e:e0:c6:cc:01:
c3:a0:d0:f9:8e:13:74:20:48:a2:88:b4:86:0c:68:59:2f:c7:
cb:d9:a2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:59 2024 by rpki-client on console-ams.rpki-client.org