Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/eae3d7-eee8-421e-80d9-982cce868ffa/1/7vyaonL6Ou1RljrcuTElVPQJgj8.roa
File: 7vyaonL6Ou1RljrcuTElVPQJgj8.roa (raw, json)
Hash identifier: oUpsspidA8yXtwqPJ1XIh28dbVVA0lXJJOCWiDa/ejA=
Subject key identifier: EE:FC:9A:A2:72:FA:3A:ED:51:96:3A:DC:B9:31:25:54:F4:09:82:3F
Certificate issuer: /CN=094ea1cf4fdc3475c1f28d611c1f18fe027c1098
Certificate serial: 083A9AC4
Authority key identifier: 09:4E:A1:CF:4F:DC:34:75:C1:F2:8D:61:1C:1F:18:FE:02:7C:10:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CU6hz0_cNHXB8o1hHB8Y_gJ8EJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/eae3d7-eee8-421e-80d9-982cce868ffa/1/7vyaonL6Ou1RljrcuTElVPQJgj8.roa
Signing time: Sat 01 Jan 2022 13:54:17 +0000
ROA not before: Sat 01 Jan 2022 13:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16188
IP address blocks: 185.178.116.0/22 maxlen: 22
217.29.32.0/20 maxlen: 20
2a00:b580::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138058436 (0x83a9ac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=094ea1cf4fdc3475c1f28d611c1f18fe027c1098
Validity
Not Before: Jan 1 13:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eefc9aa272fa3aed51963adcb9312554f409823f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9d:1d:8a:fe:81:f3:c6:42:76:2e:f2:fd:6a:
e9:af:c2:f7:6c:13:86:de:7e:37:01:3c:29:54:c3:
86:04:c5:1b:6a:ff:08:a1:e2:2c:6b:62:31:e4:7b:
b5:74:6d:ab:90:5d:5a:a6:34:3a:e0:ff:9a:3e:35:
9c:d2:e8:a6:d7:bc:00:5a:21:77:87:e4:20:64:11:
60:f2:93:7e:54:e1:84:d9:27:ce:b0:cf:2a:2b:cb:
13:4d:b7:3b:7d:14:c1:c5:c7:be:83:ee:8e:95:59:
32:9b:e7:19:3b:c2:9e:d8:fc:06:30:8e:20:c0:f6:
6a:98:d0:e9:3e:5b:a8:ce:c3:5c:8f:0f:46:40:2c:
7e:33:1f:99:cf:c7:30:7b:2f:2a:2e:9f:ea:43:fb:
72:f0:52:d8:fa:6f:39:e6:7a:7e:dc:ef:fe:80:59:
f3:a4:4d:a1:e8:b5:9b:57:0e:56:86:bf:68:ab:52:
85:19:3d:6e:0f:4e:b5:b0:cd:d5:d6:85:82:e2:18:
1b:40:7e:ce:ea:0a:c4:6b:cd:ef:00:58:ad:af:22:
61:d1:05:17:0c:fb:24:35:75:7c:6b:70:41:e2:07:
51:61:c4:76:11:ef:4d:4d:d0:2a:e7:09:ab:f8:8c:
cb:65:48:09:9e:7f:40:bc:d7:bf:9f:49:cd:d6:e5:
39:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:FC:9A:A2:72:FA:3A:ED:51:96:3A:DC:B9:31:25:54:F4:09:82:3F
X509v3 Authority Key Identifier:
keyid:09:4E:A1:CF:4F:DC:34:75:C1:F2:8D:61:1C:1F:18:FE:02:7C:10:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CU6hz0_cNHXB8o1hHB8Y_gJ8EJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/eae3d7-eee8-421e-80d9-982cce868ffa/1/7vyaonL6Ou1RljrcuTElVPQJgj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/eae3d7-eee8-421e-80d9-982cce868ffa/1/CU6hz0_cNHXB8o1hHB8Y_gJ8EJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.116.0/22
217.29.32.0/20
IPv6:
2a00:b580::/32
Signature Algorithm: sha256WithRSAEncryption
98:c4:1a:4e:f8:4f:2d:7c:1a:46:92:89:41:66:c3:bd:56:58:
6e:fe:71:34:77:51:33:a7:2c:0a:65:14:e8:4e:3e:24:70:aa:
60:e5:08:a4:f5:6f:5e:f3:91:f3:88:1d:3d:a6:cd:7b:02:c3:
79:62:90:fd:c3:b0:41:4a:3a:dc:05:6f:dc:ae:5a:43:b9:b8:
47:0a:b6:30:5a:f0:22:0e:c0:3d:cf:ca:7f:25:d6:22:70:22:
7d:e0:f4:dd:21:f6:8f:da:f8:94:bb:07:87:0b:b2:1d:2c:d8:
01:4b:2f:f2:00:c6:30:2d:76:9d:43:fa:b6:fb:f8:4b:a4:46:
97:12:88:79:11:56:4e:12:2a:6b:b5:3b:34:70:be:7f:19:62:
8a:89:b9:6a:a9:45:4b:c2:b8:9a:72:83:de:f6:e1:ff:0f:2d:
a6:54:05:2f:1f:18:f3:22:c1:e9:13:ad:2f:6c:2a:d0:8f:8a:
77:20:61:83:ba:70:81:d0:15:a2:d6:63:52:8d:98:39:9f:a3:
88:35:60:e9:02:fd:45:3a:9f:0b:c3:7e:f4:ec:e1:b1:7d:b8:
6a:7b:a2:85:14:93:a1:f9:27:ef:46:4a:77:37:74:d0:4f:a2:
5a:f1:35:fd:73:b3:8a:ac:5e:a8:f6:46:04:6b:be:04:d3:6d:
75:d7:89:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:02 2024 by rpki-client on console-ams.rpki-client.org