Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e4ef53-30bf-4897-b210-d519b82afc36/1/cfL41eZShNCi-c1RwfJd9uhBhV4.roa
File: cfL41eZShNCi-c1RwfJd9uhBhV4.roa (raw, json)
Hash identifier: zY/5HdB7RGA7Y6ooVmkKW5DLYvSXQ+BG8BQavTdt2Is=
Subject key identifier: 71:F2:F8:D5:E6:52:84:D0:A2:F9:CD:51:C1:F2:5D:F6:E8:41:85:5E
Certificate issuer: /CN=29d313a7fd2ba3d995c44a7ab4af332f875cc40c
Certificate serial: 097BA587
Authority key identifier: 29:D3:13:A7:FD:2B:A3:D9:95:C4:4A:7A:B4:AF:33:2F:87:5C:C4:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdMTp_0ro9mVxEp6tK8zL4dcxAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e4ef53-30bf-4897-b210-d519b82afc36/1/cfL41eZShNCi-c1RwfJd9uhBhV4.roa
Signing time: Sat 01 Jan 2022 13:06:49 +0000
ROA not before: Sat 01 Jan 2022 13:06:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24634
IP address blocks: 185.44.152.0/22 maxlen: 24
2a04:9cc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159098247 (0x97ba587)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d313a7fd2ba3d995c44a7ab4af332f875cc40c
Validity
Not Before: Jan 1 13:06:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71f2f8d5e65284d0a2f9cd51c1f25df6e841855e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:9b:67:b9:b1:47:18:14:a7:89:bb:0c:00:5c:
3a:62:ea:ca:e5:59:3a:19:25:2d:e2:16:7f:92:73:
f0:57:0b:d5:24:66:97:e4:89:51:b2:4b:3c:e8:cc:
c1:d0:14:4a:b4:61:0f:11:df:ae:9d:c8:f3:91:08:
c9:d0:4c:69:d5:83:23:57:69:eb:c4:16:14:93:f7:
32:27:84:1a:dc:ee:1b:b8:d3:78:55:07:df:a6:8a:
04:1a:ff:33:e0:19:20:a0:fa:78:d0:a5:de:02:8a:
ab:be:3f:66:0b:9b:fe:7c:eb:af:41:6a:31:47:5d:
83:85:51:28:68:86:9d:c0:08:93:e8:d7:ac:25:4b:
c0:cf:36:6a:6a:ea:fa:56:24:06:9d:60:63:2c:27:
03:0e:27:15:fb:b1:b2:85:85:17:49:68:5f:3b:b1:
fc:0d:6a:26:fd:fb:5e:1f:07:2e:5d:da:bf:74:50:
94:9b:72:c1:6d:0a:05:a6:79:0a:03:03:7e:ed:11:
34:c2:e4:44:1b:31:d5:cb:fb:db:c4:37:16:17:80:
16:5e:e3:b7:ca:30:af:6c:df:55:4f:a3:2a:a6:a0:
af:fb:8a:90:6b:c1:ce:4f:63:3c:7e:9c:f9:18:81:
bc:09:57:3f:21:df:fa:de:1a:13:1c:ec:3f:68:14:
70:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F2:F8:D5:E6:52:84:D0:A2:F9:CD:51:C1:F2:5D:F6:E8:41:85:5E
X509v3 Authority Key Identifier:
keyid:29:D3:13:A7:FD:2B:A3:D9:95:C4:4A:7A:B4:AF:33:2F:87:5C:C4:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdMTp_0ro9mVxEp6tK8zL4dcxAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4ef53-30bf-4897-b210-d519b82afc36/1/cfL41eZShNCi-c1RwfJd9uhBhV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4ef53-30bf-4897-b210-d519b82afc36/1/KdMTp_0ro9mVxEp6tK8zL4dcxAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.152.0/22
IPv6:
2a04:9cc0::/29
Signature Algorithm: sha256WithRSAEncryption
ac:9b:76:ac:c1:bb:2e:2b:a8:89:98:5b:81:fb:73:8a:b3:da:
e2:16:05:71:2f:db:86:3d:db:ab:26:53:05:a5:68:25:ef:45:
7f:af:19:a7:ec:12:05:1c:5a:14:c2:57:04:92:a4:c7:ce:52:
fa:33:ad:69:ae:44:47:33:b8:a4:81:fd:4f:64:99:16:3e:ec:
3a:12:5c:63:66:fe:49:72:7b:77:52:04:9c:28:c2:b6:0e:af:
f1:a6:10:bd:fd:cf:af:2b:50:81:69:fa:6c:66:9c:42:57:2e:
08:df:f6:46:3a:18:44:05:85:07:d3:be:7c:b0:d8:3d:5f:7d:
3d:1f:8c:10:65:a9:c7:89:1b:30:8c:08:ad:5c:85:b3:98:3d:
ee:03:1c:02:d8:84:cd:88:11:6a:ec:1b:e6:a1:37:ad:e2:51:
59:c7:e6:4a:63:d9:3f:75:fe:73:eb:bb:8d:02:b1:dd:ee:67:
a2:5c:cd:ce:0b:60:6f:c1:9b:f8:94:ab:10:cb:50:ac:4f:53:
f0:39:e7:23:0c:53:2f:df:fa:c0:86:bf:0b:f8:96:41:6f:48:
92:ba:e1:1b:42:ce:b4:53:ae:3e:5e:ce:1d:f5:fc:00:ac:68:
20:2d:86:e0:fc:74:9c:3b:35:db:6f:3d:ca:71:9a:90:e3:5a:
9c:c7:f0:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:53 2024 by rpki-client on console-fra.rpki-client.org