Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/185a42-cb7f-4058-86f5-41ae5f4a5055/1/1-BDCNZ7razIu9uaOr0QhRMYJHLw.roa
File: 1-BDCNZ7razIu9uaOr0QhRMYJHLw.roa (raw, json)
Hash identifier: +iXyKplxd7MJ+o+EGM9J52yF7vLB2Oa+nriFbfHFwbE=
Subject key identifier: F8:10:C2:35:9E:EB:6B:32:2E:F6:E6:8E:AF:44:21:44:C6:09:1C:BC
Certificate issuer: /CN=4cabf33b0b380888fe1e3b80eda48b1781bb7709
Certificate serial: 065E85AA
Authority key identifier: 4C:AB:F3:3B:0B:38:08:88:FE:1E:3B:80:ED:A4:8B:17:81:BB:77:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKvzOws4CIj-HjuA7aSLF4G7dwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/185a42-cb7f-4058-86f5-41ae5f4a5055/1/1-BDCNZ7razIu9uaOr0QhRMYJHLw.roa
Signing time: Sat 01 Jan 2022 10:59:47 +0000
ROA not before: Sat 01 Jan 2022 10:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209400
IP address blocks: 94.199.208.0/22 maxlen: 22
185.38.40.0/22 maxlen: 22
37.228.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106857898 (0x65e85aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cabf33b0b380888fe1e3b80eda48b1781bb7709
Validity
Not Before: Jan 1 10:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f810c2359eeb6b322ef6e68eaf442144c6091cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8a:5f:c2:a4:1e:5f:77:8d:6c:5c:d7:42:2b:
53:36:2c:9c:02:b2:e4:d6:bf:dc:cb:8e:11:42:ed:
24:9a:26:69:76:72:91:a2:5c:28:80:0c:d7:1b:4a:
7b:58:09:bf:89:33:2d:cc:77:03:ad:8a:f6:f8:70:
10:a2:a4:d4:8f:ba:18:f5:0f:a5:9e:9e:29:7c:10:
39:e7:c9:6b:6c:ac:22:e7:e8:7d:41:78:1c:09:1e:
f1:79:14:c2:be:85:79:d2:83:e6:72:90:38:02:ac:
54:2a:bc:b6:97:3e:54:08:22:b3:46:da:87:3b:01:
65:38:19:cd:a9:7b:28:4b:d9:ca:d0:9a:24:29:88:
4a:6f:59:f7:17:85:11:7e:14:23:54:ef:fb:46:3a:
11:da:25:d2:eb:ca:93:aa:f7:7c:03:e1:37:03:2d:
a6:c7:39:29:22:63:2f:54:55:5f:30:75:b2:55:af:
95:a2:41:ce:7a:de:30:99:de:ee:c3:fc:e2:e9:3e:
7c:02:b6:32:ed:22:93:68:24:88:dd:26:7c:82:0b:
04:f7:e0:b0:38:3d:5b:18:fd:ed:77:cc:cf:a6:9c:
30:a1:22:40:45:44:71:d0:c2:ea:64:14:9e:5e:82:
3a:8f:cb:0e:17:48:78:4e:14:fd:91:12:0a:8b:b6:
cc:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:10:C2:35:9E:EB:6B:32:2E:F6:E6:8E:AF:44:21:44:C6:09:1C:BC
X509v3 Authority Key Identifier:
keyid:4C:AB:F3:3B:0B:38:08:88:FE:1E:3B:80:ED:A4:8B:17:81:BB:77:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKvzOws4CIj-HjuA7aSLF4G7dwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/185a42-cb7f-4058-86f5-41ae5f4a5055/1/1-BDCNZ7razIu9uaOr0QhRMYJHLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/185a42-cb7f-4058-86f5-41ae5f4a5055/1/TKvzOws4CIj-HjuA7aSLF4G7dwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.228.140.0/22
94.199.208.0/22
185.38.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:f5:f6:c5:3c:c3:1f:00:f4:d8:5a:cc:18:67:35:05:5f:6a:
06:42:27:39:b4:60:c2:43:67:60:c9:ad:58:c7:3e:6b:19:ff:
92:1c:ef:b1:89:fb:3b:fe:e3:68:1b:f5:20:63:b5:b4:a8:af:
be:3f:66:9e:a9:f4:6a:7b:00:42:ec:00:03:1c:8f:cf:f3:e0:
3a:08:a9:ff:22:84:ae:11:ea:03:71:81:71:4c:2a:5f:69:2f:
37:d9:3b:7c:f8:dd:3a:2c:ce:a1:52:6b:b8:d0:f7:fc:4e:46:
57:5e:58:4a:dd:c9:61:1b:e3:f3:18:3f:35:3a:93:4b:07:41:
52:5d:f0:45:95:09:98:81:5c:dd:dc:4d:fa:a4:32:76:60:11:
ac:4d:57:b7:50:74:92:4c:1b:72:7f:12:28:52:31:fc:f3:9e:
a9:06:f0:12:1b:54:c3:07:d1:2f:99:6e:1d:cf:ee:2c:81:7f:
1c:d1:cc:db:75:ce:f6:f2:43:f2:1c:53:8c:1d:fa:c8:0d:2b:
3f:92:c6:06:f5:2c:f4:f8:41:ec:f4:6f:e6:eb:c2:8e:15:13:
45:01:8d:2f:df:5b:a5:39:5d:9e:7a:e2:be:c9:c0:da:c5:e6:
39:52:1a:ec:cc:ab:b0:de:85:63:cc:83:f9:fd:5d:c1:ea:d0:
5b:7b:f3:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:19 2024 by rpki-client on console-ams.rpki-client.org