Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/b8097a-4eed-463b-b65a-0ec7ecb25030/1/AUNvqLD_AFnR8j5T6BnbjikAfdc.roa
File: AUNvqLD_AFnR8j5T6BnbjikAfdc.roa (raw, json)
Hash identifier: 1P30Ou49i6oKvCPlFEkG9k3MJ/HgqmTUgWadfE/oKMQ=
Subject key identifier: 01:43:6F:A8:B0:FF:00:59:D1:F2:3E:53:E8:19:DB:8E:29:00:7D:D7
Certificate issuer: /CN=f53353f368dd801cd6102232dfa1cea69dd8cb6c
Certificate serial: 082FC461
Authority key identifier: F5:33:53:F3:68:DD:80:1C:D6:10:22:32:DF:A1:CE:A6:9D:D8:CB:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9TNT82jdgBzWECIy36HOpp3Yy2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/b8097a-4eed-463b-b65a-0ec7ecb25030/1/AUNvqLD_AFnR8j5T6BnbjikAfdc.roa
Signing time: Sat 01 Jan 2022 08:53:34 +0000
ROA not before: Sat 01 Jan 2022 08:53:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201534
IP address blocks: 185.71.219.0/24 maxlen: 24
185.71.216.0/24 maxlen: 24
185.71.218.0/24 maxlen: 24
185.71.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137348193 (0x82fc461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f53353f368dd801cd6102232dfa1cea69dd8cb6c
Validity
Not Before: Jan 1 08:53:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01436fa8b0ff0059d1f23e53e819db8e29007dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4c:42:3c:e1:f7:04:ca:08:45:a5:bd:46:8f:
c7:15:a1:91:6c:5d:ec:cc:74:41:e2:9f:83:90:3b:
69:0b:11:fa:13:83:d4:0f:1a:9b:6c:bf:3d:52:d9:
22:70:93:44:ad:58:51:a3:60:59:a0:b2:61:f8:36:
33:1f:56:b5:85:01:c2:44:d0:a3:7d:06:99:16:37:
c1:15:8d:9b:fa:26:98:f7:47:0e:b3:af:73:aa:71:
3d:50:aa:92:a6:86:5d:6a:cb:76:72:cd:6c:2e:b5:
ca:7b:13:97:bb:c8:77:4c:d2:a6:3b:31:b7:42:15:
17:4d:f9:38:2d:92:19:4c:08:58:cc:73:09:9c:e0:
b8:84:c0:8f:e8:33:50:c1:27:59:17:7f:1c:26:36:
8f:50:56:a1:cf:e3:81:d1:5f:e1:6b:ec:9d:42:2e:
1e:2b:51:e2:c5:a0:55:84:f5:fb:0d:96:e0:39:04:
dc:76:83:c3:b1:4f:e4:60:8b:5f:32:39:c9:34:c7:
f7:4b:f8:57:0b:7a:bb:90:80:3d:4c:fa:18:66:32:
27:bd:3a:fd:e5:ad:26:86:3f:2f:09:10:b7:32:c9:
df:96:d2:52:9d:4f:79:75:72:6c:78:83:03:82:f1:
7d:c2:54:cd:84:0e:41:f4:a0:b7:17:5e:ce:65:81:
b3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:43:6F:A8:B0:FF:00:59:D1:F2:3E:53:E8:19:DB:8E:29:00:7D:D7
X509v3 Authority Key Identifier:
keyid:F5:33:53:F3:68:DD:80:1C:D6:10:22:32:DF:A1:CE:A6:9D:D8:CB:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9TNT82jdgBzWECIy36HOpp3Yy2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b8097a-4eed-463b-b65a-0ec7ecb25030/1/AUNvqLD_AFnR8j5T6BnbjikAfdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/b8097a-4eed-463b-b65a-0ec7ecb25030/1/9TNT82jdgBzWECIy36HOpp3Yy2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.216.0/22
Signature Algorithm: sha256WithRSAEncryption
26:ba:2f:97:fe:7a:22:ec:05:71:ae:aa:68:4b:61:0a:74:d0:
ad:55:df:58:0d:70:0b:26:b0:3f:16:10:61:4e:b8:39:eb:35:
3a:f1:86:03:b5:53:d6:e2:55:b8:55:c2:ae:d7:31:94:f5:90:
c5:a7:b8:59:7b:42:a2:25:2d:19:e5:71:e8:c7:1b:6c:c4:31:
36:e1:28:66:f8:43:cb:7f:66:a2:f3:7c:97:8c:43:c9:8a:2b:
d0:48:09:d6:28:35:73:6f:76:4d:4c:77:eb:72:77:d6:3c:ed:
79:1b:01:70:cf:49:08:5c:96:28:a2:28:ec:47:06:6a:a2:67:
c4:26:7e:49:40:3e:c8:c8:63:10:fe:89:33:11:44:7e:1d:f4:
ca:4c:d8:a9:ae:25:dd:95:df:bd:a6:0e:53:79:be:98:87:0f:
3f:6e:7c:59:52:9b:86:76:a3:f9:08:d3:b9:9d:73:5f:33:a8:
5f:3e:19:27:77:f4:3a:3d:30:85:2e:60:2e:bb:b6:ec:83:1e:
53:af:ae:ed:d0:a4:47:ee:b0:68:f7:28:ef:a4:61:e0:db:7a:
3c:1a:07:f5:ac:be:fe:0c:8e:42:1f:57:f1:d5:ed:1b:98:38:
e1:bf:dd:04:b5:7f:07:54:11:60:01:f2:68:84:9f:ca:29:d0:
19:92:36:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org