Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0c7318-b348-4b24-b9e5-c6a8821adea9/1/fdP4UmSa2pklyP6WICdDh7jdS_o.roa
File: fdP4UmSa2pklyP6WICdDh7jdS_o.roa (raw, json)
Hash identifier: 1cFrjWN2W9/fC4UuSuZZLn6ZlXegL/uFnc4fAz0Bu90=
Subject key identifier: 7D:D3:F8:52:64:9A:DA:99:25:C8:FE:96:20:27:43:87:B8:DD:4B:FA
Certificate issuer: /CN=c950d7b1975a3703ae27b31ad2f932ae46a4cc94
Certificate serial: 0348E4E3
Authority key identifier: C9:50:D7:B1:97:5A:37:03:AE:27:B3:1A:D2:F9:32:AE:46:A4:CC:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yVDXsZdaNwOuJ7Ma0vkyrkakzJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0c7318-b348-4b24-b9e5-c6a8821adea9/1/fdP4UmSa2pklyP6WICdDh7jdS_o.roa
Signing time: Sat 01 Jan 2022 01:02:15 +0000
ROA not before: Sat 01 Jan 2022 01:02:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50304
IP address blocks: 185.136.128.0/22 maxlen: 24
2a03:a4e0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55108835 (0x348e4e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c950d7b1975a3703ae27b31ad2f932ae46a4cc94
Validity
Not Before: Jan 1 01:02:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7dd3f852649ada9925c8fe9620274387b8dd4bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f1:f9:b6:0c:6e:77:58:91:b0:94:97:f9:bf:
68:9c:cd:16:a3:10:c0:1d:f6:00:64:6e:86:f4:d3:
84:6b:3d:d6:59:49:87:e3:fa:d2:0c:44:7b:c3:e3:
ad:d1:e6:9a:49:97:a1:19:a9:20:f5:1a:77:d7:56:
13:bf:a3:fd:0b:56:62:f6:8a:c5:70:97:3b:93:3f:
4f:06:f4:bf:44:a6:6e:3e:f0:78:79:67:34:21:ad:
da:01:ee:65:06:71:c1:2b:a9:8b:88:a8:3c:45:76:
12:b6:5b:c6:81:c5:eb:f2:db:8f:a3:d0:d2:53:a8:
5c:cc:46:8a:28:29:67:76:8a:92:f1:99:2f:e3:be:
52:ee:22:9b:fb:0f:9f:f6:a4:cd:c7:5a:7b:4c:3b:
f1:03:c7:c9:c9:33:49:c8:52:c0:4e:9a:4b:1a:03:
3b:f0:60:03:07:5c:73:f9:a8:67:da:6d:64:48:10:
47:e3:b2:b0:a3:45:c9:5c:ab:ad:59:06:0a:bc:a7:
19:db:ce:27:ad:17:4e:c7:d0:5e:07:09:87:71:8c:
bf:65:fa:24:f7:44:48:25:d7:19:f3:e0:13:20:4c:
b0:21:e1:49:31:f1:2e:1c:b7:64:63:e8:80:4a:f3:
4f:80:60:cb:21:31:78:20:44:34:91:61:4d:c1:42:
4d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D3:F8:52:64:9A:DA:99:25:C8:FE:96:20:27:43:87:B8:DD:4B:FA
X509v3 Authority Key Identifier:
keyid:C9:50:D7:B1:97:5A:37:03:AE:27:B3:1A:D2:F9:32:AE:46:A4:CC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVDXsZdaNwOuJ7Ma0vkyrkakzJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0c7318-b348-4b24-b9e5-c6a8821adea9/1/fdP4UmSa2pklyP6WICdDh7jdS_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0c7318-b348-4b24-b9e5-c6a8821adea9/1/yVDXsZdaNwOuJ7Ma0vkyrkakzJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.128.0/22
IPv6:
2a03:a4e0::/32
Signature Algorithm: sha256WithRSAEncryption
a1:e0:12:58:ac:43:8f:8f:f0:7a:8b:82:c5:e0:9a:d7:26:11:
36:a0:f5:22:5a:0a:5c:95:f8:c7:ee:ac:1c:11:f4:e2:2d:83:
36:af:be:4e:c3:2f:81:af:f4:04:ed:fc:dd:67:eb:6e:94:88:
a0:d1:2c:4f:c1:26:b4:2a:53:b7:55:f4:fb:e0:f6:a2:9c:a7:
a2:9c:6b:c7:4c:f2:be:af:34:ff:c7:11:e5:aa:b1:af:6c:e1:
33:1d:d9:34:9a:1c:2b:46:10:a8:35:22:b5:33:c1:b6:c1:26:
a9:a7:e0:19:17:c9:36:55:1a:38:29:b3:81:24:59:fa:8c:dc:
72:70:95:64:1e:cc:f3:60:d7:05:21:6e:5e:ac:ba:1b:2f:cf:
29:59:4a:cd:48:d4:7b:5d:a9:52:c0:53:5a:76:70:16:99:55:
45:b8:1d:0d:54:5f:ba:ed:a8:1a:13:c0:91:72:ec:0c:50:58:
df:3d:b2:05:39:87:bb:30:58:a7:bf:d7:f2:bf:f3:e3:4a:48:
94:fa:8d:12:45:a8:0c:ae:98:6c:57:e8:b2:67:5e:e8:04:1e:
86:90:10:ee:5d:49:54:09:b9:64:60:5e:0a:58:8e:04:8c:35:
b8:08:14:28:69:3b:ee:41:f9:b2:d9:48:ca:34:a8:6f:7e:b8:
8f:f5:fe:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:10 2024 by rpki-client on console-ams.rpki-client.org