Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/_Z2BALOnReEyPvnX4y1ugESGDk4.roa
File: _Z2BALOnReEyPvnX4y1ugESGDk4.roa (raw, json)
Hash identifier: mCOferR5jobb9b3Br0W8R9S1lvBr4A3kqZ2DO/l80go=
Subject key identifier: FD:9D:81:00:B3:A7:45:E1:32:3E:F9:D7:E3:2D:6E:80:44:86:0E:4E
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 372FA33A
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/_Z2BALOnReEyPvnX4y1ugESGDk4.roa
Signing time: Sat 01 Jan 2022 07:54:31 +0000
ROA not before: Sat 01 Jan 2022 07:54:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204652
IP address blocks: 185.25.142.0/24 maxlen: 24
2a02:2339:c000::/34 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 925868858 (0x372fa33a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Jan 1 07:54:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd9d8100b3a745e1323ef9d7e32d6e8044860e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ed:a9:dd:9d:6c:25:9a:88:80:91:d0:f1:78:
f4:f3:a8:8a:c4:f1:6c:c6:e9:5e:ff:90:97:05:79:
f7:5f:2e:6c:ff:51:b1:49:61:62:bc:ee:1d:25:ca:
9d:a3:17:cb:58:91:46:ed:eb:a1:e9:ad:9a:03:c1:
14:d1:ee:66:ce:5f:7f:93:ee:55:e4:b7:b7:ee:ba:
da:73:16:0d:53:db:5c:0c:fc:81:cd:44:3c:3a:0b:
97:31:29:80:a1:1a:ad:e1:3b:0f:7c:8f:21:37:7f:
63:9c:66:5e:d0:ae:5d:10:11:98:fc:4e:04:0e:69:
30:8b:89:3a:70:6f:01:ca:4e:48:ba:7f:5b:30:b1:
44:77:44:65:fc:34:20:7a:40:bc:d5:a3:7e:57:2a:
63:75:d7:6d:54:27:eb:40:5e:8c:6a:d4:bd:0d:df:
94:e5:ed:c0:26:1a:7c:9f:3a:63:a3:4e:24:59:30:
fd:98:bd:5f:05:d5:2f:0f:c3:e8:66:5f:f3:0f:34:
de:76:27:9e:5d:e7:2f:ce:70:0c:f9:60:4c:81:3e:
92:aa:fe:c3:16:b9:16:c0:1b:0c:6d:d5:61:e7:d0:
e4:57:6c:10:c1:50:69:10:00:55:b0:cd:07:59:d5:
bd:4d:f8:f7:aa:b0:ed:61:7c:a3:60:11:23:08:52:
b2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:9D:81:00:B3:A7:45:E1:32:3E:F9:D7:E3:2D:6E:80:44:86:0E:4E
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/_Z2BALOnReEyPvnX4y1ugESGDk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.142.0/24
IPv6:
2a02:2339:c000::/34
Signature Algorithm: sha256WithRSAEncryption
6f:d8:3e:40:d4:d6:b5:85:a8:ed:3c:69:04:2f:51:bc:c1:1c:
83:24:41:14:dc:74:e7:6b:22:ea:1d:46:e2:54:ef:d3:c8:59:
17:22:ea:55:fb:8c:3b:b8:f4:d9:c3:6a:c9:c0:49:0a:ec:f0:
06:b1:64:ac:18:e8:68:a4:75:9d:96:62:aa:38:b2:b2:00:c3:
b5:df:7b:cd:ae:4c:d9:f3:a3:33:66:72:ab:fd:d3:2b:1d:dc:
99:f5:fb:a1:d6:87:de:23:61:de:cd:25:8e:6e:e7:e2:ec:25:
bd:45:d4:99:dd:ae:3e:18:95:17:e0:fe:ca:42:73:c2:d4:2f:
c4:0a:90:92:f3:5f:49:de:5c:79:27:e8:86:bd:d7:67:c4:90:
f4:8c:23:8e:05:e7:e7:73:88:9b:9c:48:93:ac:d6:65:03:f7:
06:c7:c3:5c:5b:ec:e2:ef:fa:e1:7a:89:14:c1:6d:6b:4e:22:
f2:f8:5a:d4:97:d4:a2:be:82:13:00:1c:2f:90:40:c0:27:59:
54:97:f4:95:c3:e4:45:d8:4e:ea:14:a5:69:7a:b8:38:c8:0a:
db:4a:98:f7:39:81:49:70:1c:ad:e1:44:5f:24:6f:98:31:cd:
b4:05:8c:99:0c:6d:4d:eb:bc:84:1e:57:d1:cb:8f:5b:5c:94:
e4:5f:45:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:23 2024 by rpki-client on console-fra.rpki-client.org