Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/782447-ec8b-4289-9c1c-28f960eb7a39/1/K2DPfCrqnG5gXEDmmIdg823YcxE.roa
File: K2DPfCrqnG5gXEDmmIdg823YcxE.roa (raw, json)
Hash identifier: sJQ1WpEoqz6MRf2LYgwIROdarolUeus0uTkSUy7gJhE=
Subject key identifier: 2B:60:CF:7C:2A:EA:9C:6E:60:5C:40:E6:98:87:60:F3:6D:D8:73:11
Certificate issuer: /CN=79df50e26894bb0e81359606d82b7190c17598cc
Certificate serial: 063452EB
Authority key identifier: 79:DF:50:E2:68:94:BB:0E:81:35:96:06:D8:2B:71:90:C1:75:98:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ed9Q4miUuw6BNZYG2CtxkMF1mMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/782447-ec8b-4289-9c1c-28f960eb7a39/1/K2DPfCrqnG5gXEDmmIdg823YcxE.roa
Signing time: Sat 01 Jan 2022 01:56:39 +0000
ROA not before: Sat 01 Jan 2022 01:56:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201059
IP address blocks: 185.81.148.0/22 maxlen: 22
2a05:68c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104092395 (0x63452eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79df50e26894bb0e81359606d82b7190c17598cc
Validity
Not Before: Jan 1 01:56:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b60cf7c2aea9c6e605c40e6988760f36dd87311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bf:58:f6:e6:44:77:ad:64:0f:13:59:76:60:
37:62:96:b5:38:ef:8f:06:a1:36:bf:21:b1:d8:95:
b9:e2:f5:06:fc:0b:fb:78:97:2f:6f:b3:0d:d9:2c:
6a:44:36:da:ed:4f:1f:16:31:59:dd:a9:04:c8:47:
3d:8d:8d:a6:0c:b7:86:99:0f:53:dc:08:d2:29:ab:
ca:14:e5:b6:5e:19:77:7c:57:30:4c:a4:b7:27:c6:
45:9a:be:48:16:e4:1a:53:46:cf:e3:20:65:4f:9b:
cf:95:21:e5:1c:56:a2:c8:48:41:b7:3e:53:63:36:
a7:1d:61:a8:39:9a:ca:59:bb:cb:f6:87:6a:ad:3e:
98:7e:00:59:d2:59:a9:27:15:20:15:56:49:43:f7:
bc:1c:c5:4e:d7:69:47:9b:c9:8e:dd:1b:f7:ef:75:
ea:5d:be:ba:37:ce:8d:6b:f1:af:c0:3c:db:e3:c4:
0b:87:26:ee:33:2b:6c:fc:ef:b0:c8:8f:3b:44:0d:
ce:63:eb:f2:9b:6e:76:fd:92:db:7d:cf:9c:fc:d8:
9f:ce:fd:98:c4:18:a1:a7:b1:0d:cd:02:68:b8:07:
60:ce:3e:0d:a5:2c:03:d9:73:5f:64:b9:a8:d5:a2:
a1:77:0d:2b:65:56:af:11:a5:cc:d7:12:1f:fc:bd:
29:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:60:CF:7C:2A:EA:9C:6E:60:5C:40:E6:98:87:60:F3:6D:D8:73:11
X509v3 Authority Key Identifier:
keyid:79:DF:50:E2:68:94:BB:0E:81:35:96:06:D8:2B:71:90:C1:75:98:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed9Q4miUuw6BNZYG2CtxkMF1mMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/782447-ec8b-4289-9c1c-28f960eb7a39/1/K2DPfCrqnG5gXEDmmIdg823YcxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/782447-ec8b-4289-9c1c-28f960eb7a39/1/ed9Q4miUuw6BNZYG2CtxkMF1mMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.148.0/22
IPv6:
2a05:68c0::/29
Signature Algorithm: sha256WithRSAEncryption
0f:ca:03:ef:c6:75:c3:7f:16:10:87:bd:b4:b5:63:7b:fa:f7:
54:94:ba:38:e1:24:f3:9e:c5:77:60:fb:14:ce:97:0d:ea:fc:
14:80:21:7e:ca:6a:84:a5:65:16:c6:08:97:d8:40:8c:08:da:
88:7b:e0:d9:25:90:e0:07:a3:28:8f:39:56:73:41:d4:ab:85:
d9:15:9d:bb:10:88:e2:7e:45:0a:2b:70:68:94:b2:ab:0b:a3:
65:c4:80:d9:70:07:ba:f7:49:2a:92:2c:51:2c:d0:67:61:48:
a3:e6:cf:d6:8f:20:86:74:4b:3b:44:c6:ed:77:d2:c1:52:f0:
c0:85:5b:cb:4e:bb:04:ea:48:8b:01:e2:e5:f6:1f:ab:14:6f:
1d:a8:31:11:40:18:5b:93:29:c3:c8:9c:86:f9:0e:d4:75:57:
90:ef:6d:fc:1c:9b:a8:2f:f6:95:66:17:33:55:f6:69:e7:f6:
ab:fe:48:fc:22:06:2a:80:27:d7:8a:4e:b9:63:c9:fd:13:ca:
bc:2c:6f:ce:0d:4a:7c:d2:c1:e5:04:18:43:1d:3f:2a:f0:55:
77:d7:84:99:fa:c9:dd:7e:d6:14:21:87:40:b0:55:17:17:ab:
39:ab:80:f5:65:48:c2:4b:2c:72:b1:58:75:81:06:b7:af:94:
24:c5:f0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:53 2024 by rpki-client on console-fra.rpki-client.org