Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/1-X2svGjXQQ_FPoZNd-Yscvto8PA.roa
File: 1-X2svGjXQQ_FPoZNd-Yscvto8PA.roa (raw, json)
Hash identifier: QMpgHPxP1X6bfRdncW3zZW+nvJy6bciqmI8Z3LWkJOM=
Subject key identifier: F9:7D:AC:BC:68:D7:41:0F:C5:3E:86:4D:77:E6:2C:72:FB:68:F0:F0
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 054FE744
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/1-X2svGjXQQ_FPoZNd-Yscvto8PA.roa
Signing time: Thu 03 Mar 2022 06:14:07 +0000
ROA not before: Thu 03 Mar 2022 06:14:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206283
IP address blocks: 185.26.26.0/23 maxlen: 23
2a02:f401::/32 maxlen: 32
2a02:f406:fe50::/48 maxlen: 48
2a02:f406:fe90::/48 maxlen: 48
2a02:f402::/32 maxlen: 32
2a02:f403::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89122628 (0x54fe744)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Mar 3 06:14:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f97dacbc68d7410fc53e864d77e62c72fb68f0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e7:43:71:e7:fa:6c:3c:75:f8:d5:3f:7b:47:
34:f9:10:7b:97:f8:6a:f5:92:f0:e6:ef:9b:11:09:
86:37:68:e7:80:71:71:84:e3:55:26:d4:25:ec:46:
8c:ad:5f:a5:7b:dc:d1:27:be:a8:e8:d7:2f:1a:00:
df:e9:0f:a7:17:51:26:a1:d6:e5:c4:52:98:7f:bc:
7e:f8:dd:43:ce:1b:82:34:a6:09:71:0f:e8:4f:ae:
1a:b1:99:3c:3f:78:99:6e:fb:7c:df:69:21:d4:b4:
0c:d7:4b:6e:3a:8c:f4:8b:27:0d:ec:8c:f7:6c:31:
51:0c:dc:b2:30:10:74:e0:86:3e:70:73:50:f8:6a:
55:d0:d5:05:4f:fc:da:62:07:91:de:9f:b9:bf:45:
c4:03:06:d6:2b:aa:d7:df:d5:86:de:4f:56:b6:40:
66:24:af:7d:bc:3d:23:0a:a6:ae:15:f1:7b:3a:1a:
2e:14:23:67:c3:0d:f7:48:83:de:3c:95:f9:a2:fc:
84:0f:c7:59:aa:72:b0:d0:25:86:84:76:59:65:88:
ec:5c:d7:4a:70:01:1b:b2:7f:2f:63:c3:f0:b3:a4:
99:2e:02:e4:80:ca:1f:1a:d0:8d:cf:df:93:63:84:
81:bd:15:8e:61:5e:21:de:1d:53:aa:30:99:23:9e:
e4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:7D:AC:BC:68:D7:41:0F:C5:3E:86:4D:77:E6:2C:72:FB:68:F0:F0
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/1-X2svGjXQQ_FPoZNd-Yscvto8PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.26.0/23
IPv6:
2a02:f401::-2a02:f403:ffff:ffff:ffff:ffff:ffff:ffff
2a02:f406:fe50::/48
2a02:f406:fe90::/48
Signature Algorithm: sha256WithRSAEncryption
7b:e7:3c:86:bf:1e:f9:ab:d7:57:a7:90:4f:54:ad:ae:4c:63:
32:cc:fe:8a:90:42:c1:c6:50:6f:71:be:66:77:b7:16:15:15:
d5:f2:5c:eb:dd:15:7e:f7:b6:b7:28:2f:4d:a1:1f:12:b8:04:
e4:52:6c:7e:f4:06:68:93:c5:27:a1:42:3c:cf:51:ac:0e:69:
e4:a0:f0:f6:0b:9a:34:24:37:92:1e:db:eb:d7:b4:d6:9b:81:
ca:60:32:4b:42:93:d7:d8:4d:de:87:e0:eb:a9:66:ba:a2:35:
e1:b9:df:17:62:32:be:69:3d:cc:5e:54:f6:11:c3:47:ab:ea:
da:79:18:45:40:17:60:ec:70:9d:33:95:76:2c:2b:cc:c2:4d:
fc:db:36:fe:c3:c0:be:df:26:6e:eb:5f:7e:f1:81:c8:48:88:
24:a8:b9:fb:d5:7f:a1:cd:5c:c9:fd:fb:9f:3e:9d:6d:e3:13:
98:7b:5e:df:5f:c4:68:0b:d3:5d:63:d5:59:e6:8e:c1:36:e5:
94:45:d2:a9:a2:b9:5e:af:f5:cb:35:b5:cb:0a:27:3d:2b:81:
18:c8:f1:da:c4:38:0b:ef:af:5f:d8:98:8e:bf:73:46:ea:cf:
8b:89:61:13:bb:f1:6e:0e:ee:b9:fe:16:04:10:32:1b:fa:fa:
1c:17:15:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:44 2024 by rpki-client on console-fra.rpki-client.org