Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/179f80-8838-4d4c-b8d1-31a964f8a37f/1/7sufaJGCSTk_vnoy5L7J4LAHOzA.roa
File: 7sufaJGCSTk_vnoy5L7J4LAHOzA.roa (raw, json)
Hash identifier: 9MFW8kIPtlI6spIEUaAb+AEDvWZhpOVodTOIAF57kNg=
Subject key identifier: EE:CB:9F:68:91:82:49:39:3F:BE:7A:32:E4:BE:C9:E0:B0:07:3B:30
Certificate issuer: /CN=a1b39d824479d4da7b12f65c15e5c42725f5260b
Certificate serial: 01D4713C
Authority key identifier: A1:B3:9D:82:44:79:D4:DA:7B:12:F6:5C:15:E5:C4:27:25:F5:26:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obOdgkR51Np7EvZcFeXEJyX1Jgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/179f80-8838-4d4c-b8d1-31a964f8a37f/1/7sufaJGCSTk_vnoy5L7J4LAHOzA.roa
Signing time: Sat 01 Jan 2022 10:03:08 +0000
ROA not before: Sat 01 Jan 2022 10:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205341
IP address blocks: 185.221.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30699836 (0x1d4713c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b39d824479d4da7b12f65c15e5c42725f5260b
Validity
Not Before: Jan 1 10:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eecb9f68918249393fbe7a32e4bec9e0b0073b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d2:44:50:77:3c:fe:5f:8a:4a:ed:9c:12:1a:
07:e1:3e:4b:a9:0e:52:7d:e4:08:07:2a:8d:fb:40:
58:fb:7e:fb:3f:10:47:4d:f6:c6:ed:3a:f3:99:7b:
ad:57:0a:8f:c8:b0:ca:d8:e2:82:6f:4e:6a:81:6a:
38:44:6a:58:d9:c0:c4:25:9b:ea:bb:20:94:eb:ca:
d1:06:f7:c7:b4:f4:e1:f7:96:8f:3e:4b:af:6f:dc:
d1:1c:13:cb:40:eb:b6:cb:dc:94:40:1d:c1:0c:90:
e4:81:65:01:64:8d:6f:db:af:c9:8b:b6:56:8b:fe:
fa:ae:65:1b:34:e7:02:93:eb:a1:e4:1e:ee:39:ad:
f4:44:0e:0f:4d:a4:14:41:7b:30:4c:5b:12:0e:9c:
ee:18:eb:9f:e0:ca:44:a5:71:af:b5:d9:93:5d:34:
86:f3:f8:df:e3:d8:69:41:db:74:6e:ba:3f:68:3e:
bf:49:e7:98:52:44:f3:20:e9:4c:fc:0a:b4:56:98:
d1:ac:44:d5:ea:bb:5a:7c:8d:e8:eb:d7:88:f1:a3:
ae:47:e6:4e:7d:87:77:25:a2:d2:d3:e9:4b:f2:c2:
36:52:73:c4:32:fb:27:1c:36:bf:72:3c:59:d5:3a:
2a:73:39:65:a8:2d:a5:7a:f2:a1:10:09:3b:1a:0d:
24:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:CB:9F:68:91:82:49:39:3F:BE:7A:32:E4:BE:C9:E0:B0:07:3B:30
X509v3 Authority Key Identifier:
keyid:A1:B3:9D:82:44:79:D4:DA:7B:12:F6:5C:15:E5:C4:27:25:F5:26:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obOdgkR51Np7EvZcFeXEJyX1Jgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/179f80-8838-4d4c-b8d1-31a964f8a37f/1/7sufaJGCSTk_vnoy5L7J4LAHOzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/179f80-8838-4d4c-b8d1-31a964f8a37f/1/obOdgkR51Np7EvZcFeXEJyX1Jgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.8.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:84:cf:de:91:c3:47:95:1a:a5:31:f1:0f:5e:95:bf:29:1a:
75:f8:5a:3c:dc:c2:e6:07:3f:16:c9:48:92:cc:c6:84:af:fa:
c3:5c:96:4f:c0:07:02:74:cf:97:b3:a6:ce:eb:76:76:df:09:
ef:83:48:a7:31:dc:db:68:7d:3f:9f:a3:8b:a5:a6:59:05:8f:
da:02:df:9b:dd:43:e2:f9:c2:c8:e7:0e:4c:e2:2c:86:00:b0:
28:a4:9b:7c:af:e1:54:2c:06:c8:ca:85:d8:a8:73:8e:41:74:
71:af:3c:69:3b:3d:01:e2:cb:37:75:d7:95:68:8f:1d:61:c9:
df:b5:3b:c0:db:18:d3:4c:67:54:20:cd:9f:3f:ec:39:67:36:
a9:f1:f2:4b:11:5d:09:f8:53:7e:12:97:f0:c7:8a:c6:70:bd:
4c:a3:82:43:cb:0a:90:73:40:10:8e:a8:31:f5:fa:43:3f:72:
3b:91:28:3f:9b:d2:46:e2:ad:3f:fd:28:5e:ac:9a:d2:14:cf:
eb:4b:e7:cb:15:de:67:38:ae:c8:63:e7:0a:07:ce:37:f8:07:
55:6d:38:e3:56:a3:e3:72:6f:93:db:ab:94:74:97:2f:9b:06:
42:2c:43:0d:52:ba:b5:90:7f:21:2f:6e:71:f2:a8:3f:8e:b9:
33:d3:77:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:28 2024 by rpki-client on console-fra.rpki-client.org