Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/j-tsnxK5rIwcA7_qIYvT9xcLl0g.roa
File: j-tsnxK5rIwcA7_qIYvT9xcLl0g.roa (raw, json)
Hash identifier: TplA2HgWaz25qTBxKxgPyVd9jvU2wArWvqQtZajzGw0=
Subject key identifier: 8F:EB:6C:9F:12:B9:AC:8C:1C:03:BF:EA:21:8B:D3:F7:17:0B:97:48
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FE0A354
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/j-tsnxK5rIwcA7_qIYvT9xcLl0g.roa
Signing time: Sat 01 Jan 2022 14:59:41 +0000
ROA not before: Sat 01 Jan 2022 14:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200753
IP address blocks: 185.133.210.0/24 maxlen: 24
2a06:e881:f000::/36 maxlen: 48
2a06:e880::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266380116 (0xfe0a354)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8feb6c9f12b9ac8c1c03bfea218bd3f7170b9748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:fe:1b:dd:c5:24:89:75:fe:84:79:b8:2f:63:
1a:2b:72:54:43:a0:2e:e4:cc:4a:66:4f:94:77:60:
11:fa:12:62:c5:57:59:38:9e:e6:22:e4:39:9d:a0:
38:87:8e:7c:33:29:8a:af:65:83:84:f2:1e:76:c3:
b3:16:24:2c:69:74:42:f1:92:fa:e0:6a:eb:d6:93:
29:07:07:54:b1:80:10:65:cb:e2:2b:14:45:d9:c9:
bd:5b:6b:41:2a:dd:8a:61:fc:4f:c0:e6:c9:35:cd:
9e:5d:85:9c:c6:ec:4c:81:c0:89:be:38:ae:b2:1c:
53:c0:05:c2:b9:27:66:03:cf:ab:0c:c1:4b:04:7e:
c1:20:d6:bc:e8:cb:4d:07:5c:e2:b4:81:a9:52:86:
9b:be:12:2a:b4:ce:f3:98:c0:98:8c:be:25:2f:a6:
2c:17:12:99:6f:f3:6d:d5:81:d1:60:0d:e3:04:0e:
34:00:f3:12:33:07:02:d2:4a:0b:db:ad:55:06:81:
1d:61:e1:6c:e1:96:8e:b4:8a:ac:63:0d:9a:15:1a:
8a:ec:65:83:94:ba:2c:0a:0e:11:73:6d:b7:7c:1e:
76:f1:c6:7f:0c:05:b5:bc:99:98:b8:b2:a4:30:d5:
a8:47:4d:77:35:09:7a:6c:ae:45:10:b3:54:21:d6:
1b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:EB:6C:9F:12:B9:AC:8C:1C:03:BF:EA:21:8B:D3:F7:17:0B:97:48
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/j-tsnxK5rIwcA7_qIYvT9xcLl0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.210.0/24
IPv6:
2a06:e880::/32
2a06:e881:f000::/36
Signature Algorithm: sha256WithRSAEncryption
92:42:e0:31:2f:8d:29:41:4c:c9:2e:56:b5:b1:9e:8d:47:56:
65:81:07:1b:46:1b:2f:c7:d8:69:92:4a:50:7c:48:d6:7c:e4:
3d:99:bf:00:72:dd:93:c9:ff:29:42:28:d7:31:f3:c2:b1:ad:
0e:6c:45:28:89:1f:57:36:57:15:e1:77:c4:1d:9e:d2:fb:18:
4a:07:3c:35:f3:17:37:28:8b:4a:eb:d8:13:1b:90:31:2e:c6:
71:f4:b6:f4:6a:90:f9:3c:01:0e:26:ee:d8:8f:4a:43:29:60:
6c:e1:04:3e:54:72:f8:ea:a0:4e:04:94:7a:3b:e6:14:53:28:
b9:f9:6c:07:cc:19:16:7f:82:4c:c7:fb:43:1d:bd:d4:5d:f2:
cf:2f:f7:ef:62:5a:d3:bd:3b:ce:85:f4:6b:c5:c9:07:1b:41:
86:0c:2c:17:72:3d:a4:3c:ee:56:75:8f:d0:57:80:49:27:b4:
15:cd:f9:d3:d2:92:9a:db:04:e4:b8:9e:9c:82:0e:db:1c:9e:
3a:35:79:ed:99:d5:02:92:a4:52:66:96:3a:ed:0f:cb:ee:f8:
35:bf:3a:2a:dd:1f:0d:91:9b:88:66:03:d0:00:c0:ac:f7:a9:
3e:44:00:04:36:ae:f8:96:97:72:8a:7e:5a:50:db:4c:3a:ed:
3a:c3:d9:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org