Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/9eQixFFS9iW19mKTxUEWy8YceHM.roa
File: 9eQixFFS9iW19mKTxUEWy8YceHM.roa (raw, json)
Hash identifier: i4OikrUm2KCWrY7Zxz6j7DSI5i56DloTHYemaQHEmV8=
Subject key identifier: F5:E4:22:C4:51:52:F6:25:B5:F6:62:93:C5:41:16:CB:C6:1C:78:73
Certificate issuer: /CN=e49dbf3c44468e52411d4861856bf0bdc79063e4
Certificate serial: 01362F
Authority key identifier: E4:9D:BF:3C:44:46:8E:52:41:1D:48:61:85:6B:F0:BD:C7:90:63:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5J2_PERGjlJBHUhhhWvwvceQY-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/9eQixFFS9iW19mKTxUEWy8YceHM.roa
Signing time: Tue 08 Feb 2022 14:54:23 +0000
ROA not before: Tue 08 Feb 2022 14:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56975
IP address blocks: 185.108.220.0/22 maxlen: 24
2a00:e000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79407 (0x1362f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e49dbf3c44468e52411d4861856bf0bdc79063e4
Validity
Not Before: Feb 8 14:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5e422c45152f625b5f66293c54116cbc61c7873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5d:55:f9:1d:d3:57:34:ac:2c:70:a1:c0:4e:
5c:d2:2e:ac:fc:dd:59:b3:74:65:f7:f6:06:28:7f:
b5:80:7c:63:ed:2a:04:d1:37:95:10:98:f2:df:11:
16:37:a2:57:28:f8:f1:d3:bc:3e:d7:ca:af:a2:85:
41:e4:1d:73:37:05:b9:28:77:1d:cd:b2:f8:22:d3:
dc:08:e8:97:23:9f:72:04:89:cc:9c:29:e8:45:e7:
cc:f8:6b:c7:33:51:80:08:67:82:ad:cf:ef:7e:81:
9d:82:34:8e:ef:8e:ec:6d:ae:77:c3:4d:26:4e:91:
1d:1d:25:52:60:dd:bb:f4:c4:a6:6f:24:48:0e:3c:
22:10:3f:6e:48:d5:b3:2b:82:73:ef:18:ce:99:85:
a6:08:2b:61:18:0a:df:ce:60:a2:db:b7:3f:49:88:
92:d5:47:b6:eb:1b:06:5c:4a:4d:49:f4:4f:a4:b0:
ff:66:4e:97:43:c6:9b:f4:f6:15:0d:40:0f:89:a8:
e6:64:6b:fb:c0:85:7f:c0:3f:33:47:7a:8a:5b:9e:
58:2a:5f:b0:6e:67:d0:d3:c1:bc:62:03:33:0a:ef:
75:2a:55:02:3b:8d:91:5e:6e:6a:1e:d3:2c:50:4a:
a8:a9:1b:f2:a5:4a:81:ab:a8:92:f2:09:07:c2:d6:
e1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E4:22:C4:51:52:F6:25:B5:F6:62:93:C5:41:16:CB:C6:1C:78:73
X509v3 Authority Key Identifier:
keyid:E4:9D:BF:3C:44:46:8E:52:41:1D:48:61:85:6B:F0:BD:C7:90:63:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5J2_PERGjlJBHUhhhWvwvceQY-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/9eQixFFS9iW19mKTxUEWy8YceHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/6e457e-366d-440b-af2c-5cadbdcf2215/1/5J2_PERGjlJBHUhhhWvwvceQY-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.220.0/22
IPv6:
2a00:e000::/48
Signature Algorithm: sha256WithRSAEncryption
9a:59:30:22:47:91:48:b3:23:bd:c2:e2:c9:0c:88:9d:d8:24:
b1:3d:8a:be:75:a2:c5:84:c6:9c:ff:1a:65:c9:f1:ed:6a:f3:
56:80:cc:90:6c:f2:3a:b5:e5:43:6b:55:91:8c:1d:89:ee:32:
1d:ab:70:7b:87:99:b2:38:2f:15:f8:36:3e:b5:a6:4f:96:e8:
cd:6f:0a:2a:74:5e:d0:38:c3:24:c8:24:56:fb:b3:9f:ab:0d:
d1:50:93:9e:96:1b:c3:23:48:ca:c7:e6:c4:7b:28:60:9a:de:
49:27:3a:85:3d:04:25:e7:e8:38:3a:70:7b:11:59:01:06:56:
d4:10:5c:a0:8c:54:b9:96:7b:36:2f:e5:0c:44:75:d9:16:7e:
88:91:ba:8d:e8:3d:cd:77:1c:11:38:12:5c:ff:39:68:c8:58:
03:f6:61:97:74:df:5d:aa:88:be:a1:19:26:15:f1:2a:11:3b:
d9:27:7b:30:e2:83:02:58:b5:d4:62:17:14:02:e7:4f:09:d9:
64:2e:62:37:39:17:18:c7:2e:45:a3:9d:69:bc:5e:8c:d3:b5:
70:e7:de:29:c2:39:4b:7c:dd:b2:72:1e:b6:b1:a7:2c:be:67:
1d:31:91:5d:01:86:86:0e:45:c7:38:5f:dc:d3:0c:3e:ea:53:
bb:20:39:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:28 2023 by rpki-client on console-fra.rpki-client.org