Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b83ab5-cdb2-4174-8093-802d09cfc835/1/v73y3Vq9IHBFYjOxp9cqW0GjrPI.roa
File: v73y3Vq9IHBFYjOxp9cqW0GjrPI.roa (raw, json)
Hash identifier: 37orxqOJOnA2vQsZKAVsjP1ZsuDAWJaJuaBLxEzHISg=
Subject key identifier: BF:BD:F2:DD:5A:BD:20:70:45:62:33:B1:A7:D7:2A:5B:41:A3:AC:F2
Certificate issuer: /CN=5a8f81366ffc43c71f5bb521f81501760ebeb074
Certificate serial: 091A1386
Authority key identifier: 5A:8F:81:36:6F:FC:43:C7:1F:5B:B5:21:F8:15:01:76:0E:BE:B0:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wo-BNm_8Q8cfW7Uh-BUBdg6-sHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b83ab5-cdb2-4174-8093-802d09cfc835/1/v73y3Vq9IHBFYjOxp9cqW0GjrPI.roa
Signing time: Sat 01 Jan 2022 08:55:16 +0000
ROA not before: Sat 01 Jan 2022 08:55:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61345
IP address blocks: 185.144.76.0/22 maxlen: 24
185.8.12.0/22 maxlen: 24
185.144.248.0/22 maxlen: 24
2a03:3140::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152703878 (0x91a1386)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a8f81366ffc43c71f5bb521f81501760ebeb074
Validity
Not Before: Jan 1 08:55:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfbdf2dd5abd2070456233b1a7d72a5b41a3acf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7e:ea:52:84:1d:4b:2e:e1:51:9f:54:1a:83:
e9:13:ff:1a:37:92:d7:87:05:17:1d:d3:ff:43:82:
b2:5b:4d:12:48:6c:2f:23:1b:69:7b:c8:36:b2:29:
c4:41:33:de:69:9c:a1:e2:dc:79:73:8f:f7:ba:37:
de:82:37:b5:8d:43:c8:b3:7d:6c:76:ed:33:5c:56:
a1:b3:0d:49:e5:09:e6:a2:62:de:0f:76:e3:af:a6:
1c:de:32:85:f5:2c:28:95:e4:f1:e8:3b:82:5e:66:
ae:24:bc:7a:82:43:a6:e9:fb:0b:bf:c1:40:42:40:
14:75:d1:9b:46:98:d1:1b:73:c2:eb:52:68:84:ef:
45:32:62:76:dc:42:87:43:cf:e7:3d:34:ce:f3:be:
f2:0c:8f:6d:56:72:74:c4:9d:0b:fe:c0:76:52:f0:
bf:92:b3:57:e6:4d:57:c6:af:77:82:ca:9d:ce:7b:
63:91:48:a1:e6:d1:a3:a5:39:dc:d5:b2:19:b6:9e:
7a:85:a6:52:7d:3d:51:42:70:83:c4:71:7c:2f:72:
2e:7b:99:22:e7:b8:6a:5f:5c:a0:20:2b:b5:9d:be:
b2:af:ab:98:58:44:4b:5b:5b:3d:e6:03:c5:98:e0:
95:9a:16:b7:2f:c0:61:02:71:9c:d8:9d:c9:bc:42:
3b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:BD:F2:DD:5A:BD:20:70:45:62:33:B1:A7:D7:2A:5B:41:A3:AC:F2
X509v3 Authority Key Identifier:
keyid:5A:8F:81:36:6F:FC:43:C7:1F:5B:B5:21:F8:15:01:76:0E:BE:B0:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wo-BNm_8Q8cfW7Uh-BUBdg6-sHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b83ab5-cdb2-4174-8093-802d09cfc835/1/v73y3Vq9IHBFYjOxp9cqW0GjrPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b83ab5-cdb2-4174-8093-802d09cfc835/1/Wo-BNm_8Q8cfW7Uh-BUBdg6-sHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.12.0/22
185.144.76.0/22
185.144.248.0/22
IPv6:
2a03:3140::/32
Signature Algorithm: sha256WithRSAEncryption
7f:bd:12:ba:aa:a8:c1:db:82:50:cd:38:b2:6a:74:86:74:7b:
49:71:99:9c:ff:6f:d5:22:d9:a5:8a:f0:f5:83:14:e2:92:80:
23:e6:a0:35:cd:db:b2:2f:8a:30:10:15:ac:c4:4a:ba:46:ac:
f8:06:2e:02:2e:7d:c7:61:4e:ab:26:7e:a7:04:9d:bc:78:b2:
be:50:51:84:0e:be:4e:46:87:6d:21:1f:e5:54:bb:a6:43:aa:
e5:de:30:a6:56:05:34:6d:b2:36:55:9f:5a:05:d3:c2:74:04:
19:07:b3:cd:4a:d7:ed:88:28:31:43:19:9b:a7:56:8b:8b:63:
79:b0:49:7a:4d:0f:86:54:62:50:e5:69:e7:a0:63:97:39:15:
87:ba:1e:3c:fc:d8:48:71:92:35:06:ea:6f:76:0d:69:32:64:
08:f9:19:a9:bb:ce:ed:e2:75:e9:4f:91:ab:db:7a:ca:53:53:
8a:2e:8e:e4:0b:d7:fe:e5:d6:50:06:c1:b0:86:0b:0d:e4:e8:
0b:63:4d:0c:6d:b7:75:b0:a6:a4:18:e0:34:82:ae:37:65:69:
da:62:19:4a:c2:a4:b0:40:8e:20:b8:42:b1:df:3b:2e:4d:90:
64:90:5c:f0:7b:ab:bc:87:ed:da:c7:d3:81:ce:3e:e4:fd:8e:
94:f5:4a:bd
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org