Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/a94dea-2ffc-408d-aa9d-1ae36a4469fd/1/1-rTOzUxuFt0qOMyBfeijWlGm0zU.roa
File: 1-rTOzUxuFt0qOMyBfeijWlGm0zU.roa (raw, json)
Hash identifier: +YgTlqBJI/9msX6Ycj/VU6SxRr3xu99nOu2ji+1WA58=
Subject key identifier: FA:B4:CE:CD:4C:6E:16:DD:2A:38:CC:81:7D:E8:A3:5A:51:A6:D3:35
Certificate issuer: /CN=ab06c8f2247d22041c82e555667881e50f9154ab
Certificate serial: 10E9C78F
Authority key identifier: AB:06:C8:F2:24:7D:22:04:1C:82:E5:55:66:78:81:E5:0F:91:54:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwbI8iR9IgQcguVVZniB5Q-RVKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/a94dea-2ffc-408d-aa9d-1ae36a4469fd/1/1-rTOzUxuFt0qOMyBfeijWlGm0zU.roa
Signing time: Sat 01 Jan 2022 04:03:50 +0000
ROA not before: Sat 01 Jan 2022 04:03:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48821
IP address blocks: 185.138.52.0/22 maxlen: 24
2a07:a40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 283756431 (0x10e9c78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab06c8f2247d22041c82e555667881e50f9154ab
Validity
Not Before: Jan 1 04:03:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fab4cecd4c6e16dd2a38cc817de8a35a51a6d335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ae:4f:62:84:4d:c4:bb:c5:f5:de:73:59:1c:
25:b4:2e:58:dd:65:89:52:c3:c3:f6:5f:36:13:bd:
d0:d2:75:16:d7:6e:e9:9a:46:18:d6:c5:6a:1c:aa:
81:52:44:a1:6d:69:7d:cd:a8:5d:e8:76:31:12:19:
3a:62:21:97:e2:1b:d2:1a:75:18:63:c5:ba:5f:fe:
f6:5a:9c:3d:dd:3f:c3:3f:a4:05:5f:09:54:9d:08:
56:ba:4a:9c:93:13:63:01:77:32:f1:b2:06:99:87:
53:d5:fa:e4:f0:91:84:af:f2:11:19:25:a5:50:d5:
d2:b4:2e:c5:98:d2:34:a9:33:56:6e:3c:2f:fe:91:
c9:48:67:79:19:79:c3:a1:47:15:de:e4:e8:33:8d:
8b:95:87:17:15:d1:5b:29:d0:2e:6a:cd:e0:38:ca:
45:ff:b6:2f:c2:26:e3:15:4e:97:c5:1a:28:dc:bf:
95:d6:9f:34:9f:5c:7d:38:57:76:f9:6b:60:f2:e6:
53:8b:15:75:a9:4f:74:58:20:53:62:08:03:55:6b:
d0:62:00:81:4e:bf:a3:7e:99:e9:ba:57:cd:aa:0c:
65:c5:5b:0c:15:ce:19:ff:44:d5:93:30:35:c1:46:
28:1b:eb:0d:0b:d8:c3:b2:69:e1:97:30:db:86:52:
1c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B4:CE:CD:4C:6E:16:DD:2A:38:CC:81:7D:E8:A3:5A:51:A6:D3:35
X509v3 Authority Key Identifier:
keyid:AB:06:C8:F2:24:7D:22:04:1C:82:E5:55:66:78:81:E5:0F:91:54:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwbI8iR9IgQcguVVZniB5Q-RVKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a94dea-2ffc-408d-aa9d-1ae36a4469fd/1/1-rTOzUxuFt0qOMyBfeijWlGm0zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/a94dea-2ffc-408d-aa9d-1ae36a4469fd/1/qwbI8iR9IgQcguVVZniB5Q-RVKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.52.0/22
IPv6:
2a07:a40::/29
Signature Algorithm: sha256WithRSAEncryption
78:74:d8:87:8c:e1:5e:13:b0:63:49:b4:00:34:6b:df:cc:fd:
7f:b8:74:ba:b6:2d:55:14:c2:49:28:1b:57:28:af:5f:d6:cc:
8b:c3:61:6b:4f:21:ed:92:25:d0:bd:d4:4e:f9:31:7a:ad:53:
90:d2:e9:11:a2:b8:9e:f9:c4:e6:30:e0:e5:fd:45:48:64:32:
09:29:3c:cb:ec:00:21:b6:ee:f7:f1:df:9f:96:f1:a5:27:19:
17:3f:ee:16:c6:aa:dc:63:4d:87:5a:d7:0b:c1:60:1c:dd:d8:
89:6b:f2:20:b3:cb:c7:74:04:09:c2:7d:8a:1c:0b:22:b7:a3:
88:ab:f7:d7:33:29:55:83:1f:53:9e:e3:a6:2e:11:2d:41:15:
26:46:af:58:27:b0:84:fd:51:29:2b:f3:00:77:36:56:fb:fc:
96:b4:39:a6:a2:4f:1c:a2:4b:49:d6:e8:08:8e:16:46:36:11:
d0:78:e5:71:56:6c:d5:a2:5d:8c:a4:7c:9f:fd:a6:bd:71:f7:
fa:64:11:91:1b:74:d9:24:70:0b:3d:a0:75:90:7e:18:56:c8:
4e:82:2b:36:a9:8c:d3:ab:51:75:1e:7c:29:fc:9d:74:e5:9f:
ef:3f:e3:d4:8e:b5:c7:45:d5:37:69:05:bc:31:1c:5e:0a:4e:
e0:1f:14:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:52 2024 by rpki-client on console-ams.rpki-client.org