Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/7ZdbPNfqGrtdGAjiUFWbZmBC4J0.roa
File: 7ZdbPNfqGrtdGAjiUFWbZmBC4J0.roa (raw, json)
Hash identifier: /R7++LgiTFnVFvhibyZr3CEzZrYeXOn6PGPRaJT/p7w=
Subject key identifier: ED:97:5B:3C:D7:EA:1A:BB:5D:18:08:E2:50:55:9B:66:60:42:E0:9D
Certificate issuer: /CN=6cf96a7c01d62e37acecf0786f64978905121647
Certificate serial: 0F9204B9
Authority key identifier: 6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/7ZdbPNfqGrtdGAjiUFWbZmBC4J0.roa
Signing time: Sat 01 Jan 2022 15:01:50 +0000
ROA not before: Sat 01 Jan 2022 15:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204006
IP address blocks: 185.117.132.0/24 maxlen: 24
185.117.134.0/24 maxlen: 24
185.117.133.0/24 maxlen: 24
185.117.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261227705 (0xf9204b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cf96a7c01d62e37acecf0786f64978905121647
Validity
Not Before: Jan 1 15:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed975b3cd7ea1abb5d1808e250559b666042e09d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:14:3a:14:07:3e:a4:47:cd:b9:39:a2:5b:59:
d1:0a:64:e6:a5:da:dd:c9:b9:07:50:fe:b5:03:60:
c8:16:ca:ac:a9:98:23:a6:8e:d8:92:14:d8:42:62:
ff:51:e6:af:e2:58:54:17:38:eb:25:b3:10:6e:f9:
06:81:4e:bc:ec:36:a4:76:fc:13:c8:86:25:f5:55:
60:f8:79:18:20:ea:65:dd:0e:a4:3e:e6:f6:67:cd:
9e:31:81:00:c4:4e:6c:07:79:34:f4:34:b9:a7:f2:
0b:a6:c2:92:ae:83:e8:f4:a4:b4:88:07:a0:42:26:
9a:c7:cb:46:6d:54:61:9b:f4:f8:b3:24:7b:e6:2d:
e0:67:6a:79:73:3e:27:4c:54:5c:a3:96:90:1b:15:
28:d2:49:e1:ae:8b:1c:86:74:51:b8:12:02:6d:c1:
b5:e3:69:45:bd:22:99:16:d4:98:0b:6c:12:e8:db:
3a:9b:0e:20:55:3b:0f:5a:2a:c4:6f:04:22:ff:9e:
ef:b2:9a:e9:54:76:d9:23:fd:cb:e9:32:d6:27:e4:
55:b8:89:65:21:6d:ab:a1:e9:e9:05:d1:40:27:f2:
f5:00:5f:f9:84:83:d4:f8:4f:c2:49:9e:3f:0d:f4:
92:b0:6c:9c:c3:71:d0:9f:b4:de:c6:74:e8:da:b9:
88:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:97:5B:3C:D7:EA:1A:BB:5D:18:08:E2:50:55:9B:66:60:42:E0:9D
X509v3 Authority Key Identifier:
keyid:6C:F9:6A:7C:01:D6:2E:37:AC:EC:F0:78:6F:64:97:89:05:12:16:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bPlqfAHWLjes7PB4b2SXiQUSFkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/7ZdbPNfqGrtdGAjiUFWbZmBC4J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/5f0f06-56f4-41a5-889a-b15b3fbc04a6/1/bPlqfAHWLjes7PB4b2SXiQUSFkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.132.0/22
Signature Algorithm: sha256WithRSAEncryption
42:4b:21:20:20:45:53:b4:48:ca:42:35:b2:c8:77:6a:24:2c:
56:d1:21:b8:1e:df:61:e3:9a:07:b9:aa:77:e3:53:16:e9:4c:
88:95:8a:5c:c0:3d:5e:ad:71:12:b4:67:d2:22:86:c2:bf:a9:
da:08:02:96:16:bb:5a:41:45:98:49:16:40:9e:e6:a9:ef:09:
57:e4:0f:8b:7f:85:10:30:8a:db:2f:4b:cd:1d:e0:3a:e2:c7:
b9:55:89:77:cd:d9:70:8e:82:ce:5a:1a:f8:f3:33:53:7b:05:
f7:e0:bf:2e:58:23:b0:4f:38:5c:9d:db:12:e4:35:62:a3:41:
9f:d8:c3:59:e2:bd:bf:62:84:60:94:d1:9b:2e:c0:b3:78:bf:
53:ae:48:d6:b7:2b:a1:bc:8f:12:8c:66:40:5c:86:c9:88:db:
88:cc:28:e5:f8:2c:df:80:44:86:ff:c5:bb:de:21:19:41:7c:
bd:07:4a:ce:0e:de:03:68:de:2c:73:6b:ce:fe:81:64:21:6a:
66:43:8c:2a:ac:17:ce:82:b1:e8:ae:d3:8f:01:13:05:0e:76:
96:f1:5b:6b:a3:96:34:85:d4:e4:53:c4:3d:b7:09:f6:8c:5a:
cd:df:11:c7:8f:8b:d5:ee:6a:ad:7b:5d:1d:2e:3d:fe:43:33:
d5:c2:a2:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:37 2024 by rpki-client on console-fra.rpki-client.org