Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/955340-f801-41a7-a9d4-01b7e262eff1/1/DJexrzEsz4qWtJG6o5yBxwOb6wE.roa
File: DJexrzEsz4qWtJG6o5yBxwOb6wE.roa (raw, json)
Hash identifier: 9fMQfhw5POoEJthvgN5OVJdzrwcKS41XBNUqnYpkHdw=
Subject key identifier: 0C:97:B1:AF:31:2C:CF:8A:96:B4:91:BA:A3:9C:81:C7:03:9B:EB:01
Certificate issuer: /CN=bdef8a8ad007aa4dc81d7736189a182b0282bc18
Certificate serial: 0205A778
Authority key identifier: BD:EF:8A:8A:D0:07:AA:4D:C8:1D:77:36:18:9A:18:2B:02:82:BC:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ve-KitAHqk3IHXc2GJoYKwKCvBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/955340-f801-41a7-a9d4-01b7e262eff1/1/DJexrzEsz4qWtJG6o5yBxwOb6wE.roa
Signing time: Mon 07 Feb 2022 13:33:12 +0000
ROA not before: Mon 07 Feb 2022 13:33:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205310
IP address blocks: 185.220.228.0/22 maxlen: 24
2a11:c840::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33924984 (0x205a778)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdef8a8ad007aa4dc81d7736189a182b0282bc18
Validity
Not Before: Feb 7 13:33:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c97b1af312ccf8a96b491baa39c81c7039beb01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:72:db:fd:d9:11:0a:57:3f:62:fd:10:67:08:
ac:4a:1e:b6:db:12:f6:0d:53:a1:f7:6a:a9:be:82:
6a:ae:f8:96:35:67:95:8d:15:27:bf:91:08:91:05:
f7:70:96:09:eb:83:05:b7:1d:a0:5b:d9:76:bb:64:
3a:21:ed:a2:6d:00:ec:6c:b6:71:0f:21:d4:0d:11:
13:88:eb:b2:81:3f:bd:36:a8:e1:81:0a:e9:b6:55:
a6:ee:ab:e4:91:a0:d7:33:cb:34:6b:90:0d:97:d2:
d8:12:86:e5:37:b4:92:bf:4c:d2:90:5a:af:19:a3:
9a:9b:01:89:39:fd:3a:a0:0b:4f:b5:f2:d5:d4:87:
6a:d9:80:29:93:4f:97:8f:e2:d9:e4:c4:36:2f:e8:
b3:3c:bc:7f:e5:35:53:02:b8:14:1e:60:26:4c:49:
7e:a6:00:72:f1:af:10:f6:0b:53:03:67:32:6c:ff:
30:f5:b9:36:c7:62:5f:b3:ce:20:3d:90:d4:54:35:
91:b8:17:2f:2e:13:01:30:4c:a3:a8:0f:9d:58:2b:
8c:b4:a6:e1:cc:19:cb:d1:2c:c1:9e:67:2e:2e:d8:
aa:62:8f:c6:72:f7:af:6e:3f:c8:52:89:a8:16:88:
72:0c:64:7b:61:1b:9c:dd:21:4f:80:1a:e4:cd:84:
e3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:97:B1:AF:31:2C:CF:8A:96:B4:91:BA:A3:9C:81:C7:03:9B:EB:01
X509v3 Authority Key Identifier:
keyid:BD:EF:8A:8A:D0:07:AA:4D:C8:1D:77:36:18:9A:18:2B:02:82:BC:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ve-KitAHqk3IHXc2GJoYKwKCvBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/955340-f801-41a7-a9d4-01b7e262eff1/1/DJexrzEsz4qWtJG6o5yBxwOb6wE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/955340-f801-41a7-a9d4-01b7e262eff1/1/ve-KitAHqk3IHXc2GJoYKwKCvBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.228.0/22
IPv6:
2a11:c840::/48
Signature Algorithm: sha256WithRSAEncryption
e9:c2:62:86:a1:2a:2c:7a:68:bf:12:55:ea:d2:14:88:24:33:
05:7d:d2:8c:1f:cd:a4:b5:03:29:8b:0a:83:e1:11:c1:f9:3c:
10:65:e2:f4:a8:48:a8:b7:2b:1e:13:62:f6:14:cb:3f:24:b4:
c6:4a:7d:86:2a:1e:aa:50:2e:cf:ef:65:db:42:9a:da:77:d4:
43:a3:6b:7c:49:b2:2c:48:29:ae:8b:38:83:d3:e0:c8:a9:dc:
ca:c8:e5:80:6f:b8:34:c8:67:33:8f:ed:68:fa:1a:de:b8:98:
89:d1:82:e1:d1:b2:d6:66:1e:8e:bf:7d:5d:98:28:e9:6e:38:
b7:ab:4c:b9:e8:0b:ae:b5:8c:aa:3c:61:00:f6:45:4d:12:f3:
91:4b:10:95:ac:b4:65:1f:55:ac:9b:d9:e1:00:83:0d:bc:cd:
7b:ec:8f:f0:ed:fa:b9:cb:4f:f2:dd:db:c0:86:9c:9a:63:6e:
f3:f3:72:ea:ec:d9:30:6e:9b:b4:0e:b6:9e:19:71:0b:98:7d:
a1:08:47:83:b1:7d:33:65:84:12:35:ce:9f:fe:f9:e5:54:89:
c4:63:a6:72:62:6b:fa:59:e2:0e:e7:8a:06:36:49:c0:28:50:
2a:77:3e:75:5a:ec:4d:7f:33:93:d6:cb:57:ec:a7:b3:27:5a:
6f:d4:81:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:08 2024 by rpki-client on console-ams.rpki-client.org