Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/L2GxDIXp91bhHoUTUKVVHGitsVI.roa
File: L2GxDIXp91bhHoUTUKVVHGitsVI.roa (raw, json)
Hash identifier: Y5ukV2EPpuCUEzg5z7IwlHSwcxFFEU1SoyiWQoAE1uU=
Subject key identifier: 2F:61:B1:0C:85:E9:F7:56:E1:1E:85:13:50:A5:55:1C:68:AD:B1:52
Certificate issuer: /CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Certificate serial: 18624674
Authority key identifier: B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/L2GxDIXp91bhHoUTUKVVHGitsVI.roa
Signing time: Sat 01 Jan 2022 04:02:22 +0000
ROA not before: Sat 01 Jan 2022 04:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.144.16.0/22 maxlen: 24
2a04:2f81::/42 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 409093748 (0x18624674)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Validity
Not Before: Jan 1 04:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f61b10c85e9f756e11e851350a5551c68adb152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:64:27:18:43:53:f1:14:c0:d1:e9:52:69:c0:
3c:fa:f2:bf:81:43:cd:9a:bb:3d:45:7d:25:f9:7d:
02:63:3f:d1:7b:c0:a5:32:f9:e8:c0:0b:55:ca:31:
fa:17:16:28:a2:a6:64:5a:12:39:da:98:a3:77:ff:
be:a4:eb:b8:ed:84:24:de:c4:8f:7e:5f:a6:8d:e1:
7d:76:f7:56:fe:6d:fb:e3:af:7a:92:32:37:e9:3b:
e6:55:70:16:a2:c0:eb:9f:24:b1:66:9b:d8:9b:80:
48:a6:ca:32:9d:a9:cd:08:57:fc:be:da:fb:5f:d1:
d1:c2:c4:0f:45:aa:07:91:7b:82:81:d7:4e:5e:9d:
22:a3:91:c4:da:77:f5:38:f6:bb:90:24:4d:a6:61:
18:82:52:be:e1:bb:f4:80:ca:83:01:5a:df:4b:61:
13:72:d1:88:51:2f:f1:97:80:77:1a:36:09:d8:e3:
1b:22:46:7d:e4:b3:c9:07:bf:17:bd:df:72:42:33:
fd:1e:0d:51:66:c1:8a:84:16:07:c4:cb:47:ba:31:
e1:cd:69:31:1f:99:b9:64:d4:23:99:7c:14:e3:c3:
0d:0b:63:43:63:d3:59:19:87:b8:85:a7:15:ee:ae:
5f:aa:c1:b4:14:30:97:8f:76:6a:8d:26:2f:7c:7c:
a4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:61:B1:0C:85:E9:F7:56:E1:1E:85:13:50:A5:55:1C:68:AD:B1:52
X509v3 Authority Key Identifier:
keyid:B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/L2GxDIXp91bhHoUTUKVVHGitsVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/sf_ufb9_RWbqnjBUaywqLnM28vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.16.0/22
IPv6:
2a04:2f81::/42
Signature Algorithm: sha256WithRSAEncryption
40:ee:32:74:7e:52:93:3c:53:64:47:04:c5:6e:66:4c:14:b3:
7c:c3:f6:ec:cd:5e:f6:92:62:5e:3a:5e:4e:bc:05:78:b9:c0:
f1:6a:9e:68:bb:ae:76:f2:13:d3:da:cb:f7:2a:8f:90:d7:ed:
4a:ed:84:94:d8:26:0f:e7:14:12:00:e0:7b:39:aa:a1:e3:83:
8f:4c:11:44:f1:6b:33:29:fb:ea:dd:7a:01:60:d6:e8:f7:ac:
53:3a:d5:86:e6:15:da:49:2e:16:13:f4:f3:4b:98:ba:ae:d1:
ef:7a:55:65:e9:8c:e8:8a:d7:7d:c9:8a:39:c1:76:9c:f6:01:
74:c1:c3:ff:58:36:88:0b:60:94:e6:fb:d2:fa:79:60:5f:dd:
0d:80:d1:4c:45:2b:aa:65:90:fb:e8:c0:71:38:76:ae:b4:4d:
14:94:ea:98:d5:6a:0b:f5:92:b3:17:14:8f:1c:90:4d:a0:db:
e0:8d:35:bd:4a:ea:70:d7:8d:e9:fa:a1:69:42:29:76:cf:62:
30:33:01:6e:21:b0:60:cb:a4:4a:9b:d9:d5:1f:c3:7a:cd:3d:
5b:7f:7e:7e:f5:db:c2:e5:19:c5:d3:07:cd:d8:31:14:23:87:
2f:a0:d6:1f:49:c2:d0:a8:38:36:cd:0b:88:09:6f:c5:c2:76:
ad:ec:6e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:26 2024 by rpki-client on console-fra.rpki-client.org