Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/S2__T9lzYj_DfiNe9trVnAmWQbk.roa
File: S2__T9lzYj_DfiNe9trVnAmWQbk.roa (raw, json)
Hash identifier: /pvzotnrgQXHTPlyt1oSCCismDqcAppNK7Y/PWmS4FU=
Subject key identifier: 4B:6F:FF:4F:D9:73:62:3F:C3:7E:23:5E:F6:DA:D5:9C:09:96:41:B9
Certificate issuer: /CN=0747a36d7768a7b30a4eecbb6964c8c237d74401
Certificate serial: 08CA4EC1
Authority key identifier: 07:47:A3:6D:77:68:A7:B3:0A:4E:EC:BB:69:64:C8:C2:37:D7:44:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0ejbXdop7MKTuy7aWTIwjfXRAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/S2__T9lzYj_DfiNe9trVnAmWQbk.roa
Signing time: Sat 01 Jan 2022 15:04:53 +0000
ROA not before: Sat 01 Jan 2022 15:04:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203676
IP address blocks: 185.126.172.0/22 maxlen: 24
2a06:ca40::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147476161 (0x8ca4ec1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0747a36d7768a7b30a4eecbb6964c8c237d74401
Validity
Not Before: Jan 1 15:04:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b6fff4fd973623fc37e235ef6dad59c099641b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d7:d5:ea:be:d0:c4:6a:ab:45:06:87:8a:ce:
fe:6b:f2:e2:2b:40:88:60:bd:9a:41:30:94:4a:30:
34:81:7e:f8:91:95:bd:61:30:30:94:95:a1:81:00:
13:05:63:d3:61:05:83:c6:50:32:cc:18:71:cc:f1:
ad:74:d0:ad:65:59:83:81:1f:84:bb:41:6a:1a:84:
2f:24:b8:9e:81:42:04:fe:45:13:6e:9c:64:be:af:
92:1a:e6:11:12:d3:8e:65:bc:68:5f:df:1e:51:94:
c8:0b:c9:97:5d:f9:f1:cd:2c:b7:00:f7:83:28:f1:
c1:b1:4a:fb:f4:c5:e7:e7:f2:ac:a8:21:f7:4e:ed:
4c:85:8b:ce:12:69:7a:36:ec:83:1d:9c:94:e5:8d:
73:41:4b:91:55:2b:49:ce:19:3f:8e:69:f9:2b:60:
be:93:67:eb:f1:d9:e8:bd:26:d2:24:af:eb:d0:09:
b1:8c:ac:48:2e:45:47:ed:76:d3:bd:a4:e6:be:9d:
84:d5:ad:74:f6:4e:7f:ec:fc:ec:57:0d:33:7b:fc:
a6:c0:c8:3e:1d:f9:f9:e7:f4:f1:49:fe:9b:8b:ca:
63:3e:09:43:87:72:a4:70:ce:55:37:94:b2:84:ff:
64:94:56:3b:ed:8a:44:81:db:20:7c:d0:cc:3a:e7:
dc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6F:FF:4F:D9:73:62:3F:C3:7E:23:5E:F6:DA:D5:9C:09:96:41:B9
X509v3 Authority Key Identifier:
keyid:07:47:A3:6D:77:68:A7:B3:0A:4E:EC:BB:69:64:C8:C2:37:D7:44:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0ejbXdop7MKTuy7aWTIwjfXRAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/S2__T9lzYj_DfiNe9trVnAmWQbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/B0ejbXdop7MKTuy7aWTIwjfXRAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.172.0/22
IPv6:
2a06:ca40::/29
Signature Algorithm: sha256WithRSAEncryption
54:70:3c:9e:dd:13:c3:ad:92:5e:a4:9f:a6:6f:63:fa:8d:2e:
ca:2d:5e:a4:1a:2a:ee:b3:c4:18:72:c1:de:c5:49:5a:ec:d3:
4a:8d:a0:27:16:4b:3a:81:d5:79:21:03:25:81:19:59:d9:a3:
bf:24:01:33:0c:82:3e:53:f4:0e:23:4b:4f:8f:9c:c4:73:d4:
66:60:e8:d7:cc:3a:a1:42:31:63:15:05:a9:b7:cf:d4:ac:30:
06:a0:00:eb:e9:e8:e6:c3:1f:5e:dd:1d:4f:13:d8:7e:c8:29:
f2:92:0d:e7:1b:84:df:87:0b:cd:81:6e:9a:59:39:5b:5b:e7:
bf:1e:df:a8:47:a0:94:f9:b2:15:6b:62:c1:6b:e6:2a:26:af:
d4:4f:39:2b:51:30:48:e7:f4:17:b4:1a:d6:1f:b0:71:60:93:
0d:11:a7:a0:33:1a:85:13:87:ad:8c:8d:a0:8e:d1:ae:98:49:
f6:4d:78:85:d6:e2:3f:d5:a5:92:ff:73:1d:be:9d:2c:7b:6d:
e5:c7:3a:2a:28:88:07:b7:fe:7b:49:29:4f:65:c6:4f:ab:8c:
1b:6e:79:68:a4:ed:7b:83:23:4b:27:08:3d:21:2d:fa:f9:36:
31:c0:e0:68:41:3c:8d:f3:34:a4:c6:29:0a:a1:78:5b:9d:58:
28:0e:c5:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:49 2024 by rpki-client on console-ams.rpki-client.org