Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/f92b9f-4758-4428-a22c-9db57c3fe41d/1/0DsW29ZooL_wIqc0kgvy0UxNhec.roa
File: 0DsW29ZooL_wIqc0kgvy0UxNhec.roa (raw, json)
Hash identifier: boSLoVJUuylAHFuhRA74tmiOlvYxswlMJi7Rn0WmQME=
Subject key identifier: D0:3B:16:DB:D6:68:A0:BF:F0:22:A7:34:92:0B:F2:D1:4C:4D:85:E7
Certificate issuer: /CN=77bc91f78a3350bacbbfbe376f8813212d149931
Certificate serial: 0CADB8D1
Authority key identifier: 77:BC:91:F7:8A:33:50:BA:CB:BF:BE:37:6F:88:13:21:2D:14:99:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7yR94ozULrLv743b4gTIS0UmTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/f92b9f-4758-4428-a22c-9db57c3fe41d/1/0DsW29ZooL_wIqc0kgvy0UxNhec.roa
Signing time: Sat 01 Jan 2022 09:53:30 +0000
ROA not before: Sat 01 Jan 2022 09:53:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203223
IP address blocks: 185.153.12.0/22 maxlen: 22
185.141.184.0/22 maxlen: 22
146.0.208.0/22 maxlen: 22
212.15.64.0/20 maxlen: 20
2a07:2580::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212711633 (0xcadb8d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77bc91f78a3350bacbbfbe376f8813212d149931
Validity
Not Before: Jan 1 09:53:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d03b16dbd668a0bff022a734920bf2d14c4d85e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2a:ea:e6:f5:04:bd:40:2f:11:af:d1:95:08:
db:92:82:f9:35:c8:38:4e:53:0b:1a:6d:2a:d0:f6:
ed:ae:59:89:18:54:25:44:e9:27:21:90:05:a1:66:
11:80:69:d2:c5:c7:f3:36:0d:ae:eb:53:7e:13:b5:
30:82:61:96:a0:6e:eb:0a:9b:73:7e:43:75:8a:5b:
46:e7:4f:81:4b:f6:56:f4:8c:0b:b1:96:37:03:ec:
47:49:c4:74:98:77:20:7f:0d:24:8b:e4:65:de:15:
ef:9a:60:65:76:56:d5:06:41:3a:11:5b:78:15:7a:
db:9d:42:25:95:bd:b6:92:29:d8:1f:50:8c:e6:f1:
26:16:a0:5d:f3:d3:b9:af:d4:99:63:57:23:af:37:
77:dc:63:e5:47:fc:bb:ac:ce:f1:5d:91:50:0b:7c:
e5:f4:e2:a2:39:c0:6f:86:04:7b:16:ba:af:eb:37:
cf:2a:7f:65:d7:76:93:20:1e:99:26:88:3b:58:02:
53:6d:2d:5d:55:d1:e1:65:97:15:75:a4:b8:8e:8d:
77:c7:b7:1c:af:4d:29:41:1e:2d:3e:40:5c:77:79:
b4:2e:f1:64:86:c9:c8:3b:6e:b7:d5:5e:18:ec:01:
81:d7:37:3b:74:e6:6c:d4:f8:c6:02:28:42:1e:b1:
dc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:3B:16:DB:D6:68:A0:BF:F0:22:A7:34:92:0B:F2:D1:4C:4D:85:E7
X509v3 Authority Key Identifier:
keyid:77:BC:91:F7:8A:33:50:BA:CB:BF:BE:37:6F:88:13:21:2D:14:99:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7yR94ozULrLv743b4gTIS0UmTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/f92b9f-4758-4428-a22c-9db57c3fe41d/1/0DsW29ZooL_wIqc0kgvy0UxNhec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/f92b9f-4758-4428-a22c-9db57c3fe41d/1/d7yR94ozULrLv743b4gTIS0UmTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.0.208.0/22
185.141.184.0/22
185.153.12.0/22
212.15.64.0/20
IPv6:
2a07:2580::/29
Signature Algorithm: sha256WithRSAEncryption
94:63:2c:a8:99:09:50:e4:5e:c0:bb:61:61:ad:eb:5c:ac:17:
e4:fc:89:c6:44:50:fb:e0:1f:7f:6b:5c:b1:0f:81:49:04:31:
5d:fa:e0:41:69:8b:0a:33:61:83:bc:01:a0:0b:71:f1:9e:a9:
b0:11:cd:03:fc:a3:8b:d1:7b:a3:f5:80:77:01:5e:89:2f:04:
21:1b:21:0d:b7:54:ba:7d:4f:d5:80:32:75:25:7e:a0:42:b4:
9a:2f:12:48:bf:e4:99:50:60:28:94:99:92:12:a9:97:ba:20:
65:9c:01:66:26:a7:cf:bf:c0:1a:2d:8a:d8:97:d2:fc:6f:b5:
6a:48:d6:b1:70:f8:f3:84:6f:60:c6:69:c1:64:00:89:bb:89:
81:d6:df:56:81:1e:7d:ef:26:f9:bc:5b:44:6e:29:14:e5:c1:
0e:6d:d6:45:cc:45:f0:a4:b5:8b:a0:ab:61:91:d7:f2:8b:f7:
20:bd:8d:a1:b2:16:65:cb:5f:a6:92:bd:bc:ca:c2:91:53:b0:
4a:32:58:7c:8f:e0:2d:8c:6b:11:59:ac:0a:f0:c3:43:be:4a:
4f:a8:5f:db:ed:60:56:8e:cd:57:c4:63:18:20:ef:b2:3a:b4:
cb:62:eb:06:7e:10:22:f4:e2:1f:d9:e8:92:93:44:0d:5d:fd:
3e:9c:d7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:10 2024 by rpki-client on console-fra.rpki-client.org