Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b58bbe-b50f-4857-871c-1c0e31de31c7/1/6d22mTb3PgGib4BftLfBbIMB330.roa
File: 6d22mTb3PgGib4BftLfBbIMB330.roa (raw, json)
Hash identifier: FhWVvJzaEP5+POJkJEfTaIUDmMOUYQ9Hz4nwD6YXLhI=
Subject key identifier: E9:DD:B6:99:36:F7:3E:01:A2:6F:80:5F:B4:B7:C1:6C:83:01:DF:7D
Certificate issuer: /CN=78375fb6168b354841b91d305f9d0cdc0cb1501d
Certificate serial: 0EF51A3F
Authority key identifier: 78:37:5F:B6:16:8B:35:48:41:B9:1D:30:5F:9D:0C:DC:0C:B1:50:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eDdfthaLNUhBuR0wX50M3AyxUB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b58bbe-b50f-4857-871c-1c0e31de31c7/1/6d22mTb3PgGib4BftLfBbIMB330.roa
Signing time: Sat 01 Jan 2022 10:56:53 +0000
ROA not before: Sat 01 Jan 2022 10:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62086
IP address blocks: 185.48.104.0/22 maxlen: 24
2a01:9820::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250944063 (0xef51a3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78375fb6168b354841b91d305f9d0cdc0cb1501d
Validity
Not Before: Jan 1 10:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9ddb69936f73e01a26f805fb4b7c16c8301df7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:55:c3:62:60:95:21:1a:38:8f:33:cb:3a:e9:
2d:4f:53:0e:7b:6a:f3:c1:86:a6:05:46:fc:3a:58:
82:52:a7:a7:72:fb:31:ec:bc:fd:1f:58:f3:39:9f:
48:65:e7:d2:24:d5:07:3b:78:9a:a6:3f:5e:af:f3:
98:2e:84:70:e3:e0:6a:f3:e1:29:0f:56:51:40:23:
dc:da:72:48:1d:b3:e8:fc:4f:11:92:5b:c2:61:12:
37:1a:bd:3f:ed:53:db:63:97:ee:27:a5:eb:53:d8:
2f:20:5e:5e:65:75:e0:37:8d:f6:e7:ef:53:a4:48:
37:53:f5:cc:37:47:2b:59:ee:ec:8d:7d:9d:f8:af:
1b:50:e3:98:a1:c3:b7:00:14:bb:ea:81:e6:53:8e:
28:9a:30:90:e1:99:74:e6:7a:6b:80:6c:1f:eb:10:
8f:34:22:84:a2:45:f4:65:cd:3b:16:86:8c:df:68:
f9:71:5c:21:b0:e0:c3:82:be:e8:2a:51:13:af:25:
18:04:11:71:a6:0b:41:d5:36:55:bc:dd:2a:33:40:
70:f0:78:f5:33:41:3d:9b:5c:b1:8a:e8:17:07:95:
a6:ea:66:1a:3d:0d:4d:c9:5f:0c:7a:c7:89:17:7c:
40:59:fc:b4:b3:2a:ab:7c:1b:11:6d:ae:00:01:d6:
62:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DD:B6:99:36:F7:3E:01:A2:6F:80:5F:B4:B7:C1:6C:83:01:DF:7D
X509v3 Authority Key Identifier:
keyid:78:37:5F:B6:16:8B:35:48:41:B9:1D:30:5F:9D:0C:DC:0C:B1:50:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eDdfthaLNUhBuR0wX50M3AyxUB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b58bbe-b50f-4857-871c-1c0e31de31c7/1/6d22mTb3PgGib4BftLfBbIMB330.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b58bbe-b50f-4857-871c-1c0e31de31c7/1/eDdfthaLNUhBuR0wX50M3AyxUB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.104.0/22
IPv6:
2a01:9820::/32
Signature Algorithm: sha256WithRSAEncryption
10:a0:c5:e6:88:94:86:3d:f3:60:b2:45:02:f8:62:df:c1:b3:
44:0d:2c:81:72:bb:37:aa:2c:b5:79:43:6a:cc:bb:7d:26:55:
2f:98:97:ef:47:65:2f:d6:b9:8e:c8:21:d5:17:0f:c3:22:43:
9d:90:25:05:42:62:b8:f8:d1:92:02:8a:c4:ab:02:68:99:c4:
65:a7:85:a6:66:72:45:81:d2:a4:f0:a1:8c:99:bc:06:2b:72:
15:94:d5:29:69:8e:bb:5a:bb:c2:3c:3a:26:d7:b5:5b:32:da:
8a:e3:a5:b0:d9:18:83:35:33:fe:8e:de:72:7c:c5:1a:39:65:
63:45:d8:b2:eb:15:ca:72:0a:e8:03:a4:4f:62:1b:c5:cc:6b:
02:81:e2:4f:52:29:eb:1c:ad:88:34:91:b5:98:8a:c0:4f:a9:
b8:19:74:8c:0c:62:4d:b6:dd:0c:e7:02:93:eb:8c:e2:2f:ce:
be:3b:21:a3:ed:da:12:23:99:04:3c:5d:bb:57:88:44:3c:9d:
20:70:6d:20:48:90:ee:89:0e:d8:77:5c:23:ee:3a:0d:7d:bc:
44:d9:4d:b1:26:31:0f:97:1f:7f:74:8f:24:43:32:79:7e:f8:
3d:a6:0f:ee:fa:f3:32:9e:f8:1c:ee:d1:aa:e8:89:6e:08:dd:
ea:dd:d7:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org