Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/2fb8bd-e1a0-454c-8bca-25effdd796dc/1/ud0fCBNRQ-Kp9PCuCVpVoKrp6lU.roa
File: ud0fCBNRQ-Kp9PCuCVpVoKrp6lU.roa (raw, json)
Hash identifier: pBRWj94Ot9M7mHu+qUzHjxZzauRAgfjtrFKZHN1wt2Q=
Subject key identifier: B9:DD:1F:08:13:51:43:E2:A9:F4:F0:AE:09:5A:55:A0:AA:E9:EA:55
Certificate issuer: /CN=ff4f06bff3a5b85151b65705b4308e9afb1fd8f7
Certificate serial: 0F936DFE
Authority key identifier: FF:4F:06:BF:F3:A5:B8:51:51:B6:57:05:B4:30:8E:9A:FB:1F:D8:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_08Gv_OluFFRtlcFtDCOmvsf2Pc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/2fb8bd-e1a0-454c-8bca-25effdd796dc/1/ud0fCBNRQ-Kp9PCuCVpVoKrp6lU.roa
Signing time: Sat 01 Jan 2022 13:54:38 +0000
ROA not before: Sat 01 Jan 2022 13:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47582
IP address blocks: 185.175.100.0/22 maxlen: 32
2a0b:e500::/31 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261320190 (0xf936dfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff4f06bff3a5b85151b65705b4308e9afb1fd8f7
Validity
Not Before: Jan 1 13:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9dd1f08135143e2a9f4f0ae095a55a0aae9ea55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c0:2e:cc:d4:ff:c7:2c:3d:06:ff:66:ee:43:
0c:7f:0d:b4:36:9f:6e:2f:55:9d:d1:8c:84:20:83:
4e:52:eb:ee:cf:9a:45:df:5f:88:52:4a:55:60:2e:
cd:8d:26:a6:4f:07:bb:81:ca:21:78:94:0f:5c:ba:
2e:a7:9d:b5:5f:6c:5f:c7:bc:55:d3:dd:d4:63:7c:
ea:98:fb:43:9b:f4:77:b1:b5:4d:d3:0c:ba:6a:22:
71:60:4d:76:e7:ac:dc:73:c3:1b:0b:85:17:ad:01:
ee:bb:39:0b:a2:17:a8:03:d0:3b:9e:8a:55:fb:37:
b7:9b:e5:cb:26:d9:4c:8b:62:a7:89:ee:02:4a:ba:
89:e7:5f:f4:c2:a4:60:08:e0:77:fe:8b:bc:cd:f0:
34:1c:0b:a4:73:02:5b:61:a1:1f:b0:43:99:b4:8e:
ba:9b:4e:bc:fb:2f:3d:e8:22:ba:5c:5a:7c:41:63:
5e:ce:8b:ca:9c:a1:1b:0e:5e:23:6f:53:2b:11:31:
24:99:c3:a0:b1:c7:13:30:d1:13:7b:f1:94:84:ff:
44:71:25:f0:7c:84:d6:b2:e1:04:f4:f3:8b:f1:06:
99:f9:f6:51:25:eb:ac:20:73:e1:60:2f:5f:dc:7b:
66:93:96:a9:df:16:8a:4e:0a:68:4c:20:64:44:d5:
bd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:DD:1F:08:13:51:43:E2:A9:F4:F0:AE:09:5A:55:A0:AA:E9:EA:55
X509v3 Authority Key Identifier:
keyid:FF:4F:06:BF:F3:A5:B8:51:51:B6:57:05:B4:30:8E:9A:FB:1F:D8:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_08Gv_OluFFRtlcFtDCOmvsf2Pc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/2fb8bd-e1a0-454c-8bca-25effdd796dc/1/ud0fCBNRQ-Kp9PCuCVpVoKrp6lU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/2fb8bd-e1a0-454c-8bca-25effdd796dc/1/_08Gv_OluFFRtlcFtDCOmvsf2Pc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.100.0/22
IPv6:
2a0b:e500::/31
Signature Algorithm: sha256WithRSAEncryption
16:63:26:78:75:92:6f:63:e7:50:3f:d5:c0:51:60:41:75:2a:
8c:fa:f0:85:e5:a2:c4:d0:61:b7:33:69:74:6b:75:79:fd:6d:
89:56:45:9d:c2:ef:2b:e9:9d:7f:7e:c7:12:e9:12:97:c7:9f:
4d:31:b9:e3:eb:3e:37:3c:b9:f4:18:d6:0f:e7:49:dd:80:37:
b2:30:bb:73:81:80:b9:ef:34:6b:08:b5:13:ec:02:2d:66:9d:
50:1c:89:f4:97:ed:8c:3c:b9:de:3b:01:a5:c0:b5:91:72:2f:
c6:42:01:38:4d:b1:5f:25:2a:88:44:01:ed:2e:57:55:18:f8:
5c:59:c3:17:04:c9:5c:58:53:89:95:24:85:5d:74:6a:e7:d1:
9f:cc:25:dc:b6:37:31:c8:fc:61:a5:1d:ab:98:90:02:f5:91:
55:70:76:c1:6f:ef:c6:12:dd:14:bd:22:b1:e1:76:bb:33:b4:
42:42:dc:72:bc:9b:e2:65:a1:8e:4c:81:df:3b:22:dc:f1:31:
ea:84:44:05:6b:12:2f:91:de:97:d1:5e:9f:44:1f:cc:af:5b:
2e:c1:72:04:b7:57:e9:eb:a6:4a:e6:7e:0b:3e:7e:4c:67:a7:
a6:5f:98:39:0d:f7:c8:8a:f6:c0:1e:b9:b4:39:4e:5c:bb:d0:
ae:38:25:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:19 2024 by rpki-client on console-ams.rpki-client.org