Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/geQ2IiHHHJOk1GvhrDIgxVIhIvo.roa
File: geQ2IiHHHJOk1GvhrDIgxVIhIvo.roa (raw, json)
Hash identifier: ZM0OgeUok6iSRSsU30q+GJ+yqpaovhIls60eCVpCm6Y=
Subject key identifier: 81:E4:36:22:21:C7:1C:93:A4:D4:6B:E1:AC:32:20:C5:52:21:22:FA
Certificate issuer: /CN=0747a36d7768a7b30a4eecbb6964c8c237d74401
Certificate serial: 08C86830
Authority key identifier: 07:47:A3:6D:77:68:A7:B3:0A:4E:EC:BB:69:64:C8:C2:37:D7:44:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B0ejbXdop7MKTuy7aWTIwjfXRAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/geQ2IiHHHJOk1GvhrDIgxVIhIvo.roa
Signing time: Sat 01 Jan 2022 15:04:52 +0000
ROA not before: Sat 01 Jan 2022 15:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44749
IP address blocks: 185.126.172.0/22 maxlen: 24
2a06:ca40::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147351600 (0x8c86830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0747a36d7768a7b30a4eecbb6964c8c237d74401
Validity
Not Before: Jan 1 15:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81e4362221c71c93a4d46be1ac3220c5522122fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:51:80:4f:d4:6a:68:77:80:87:dc:81:2d:38:
a8:09:18:5c:9e:ae:48:cf:a2:ee:fe:c8:f8:f9:16:
8e:2a:90:0e:5b:9f:eb:04:3e:21:6f:78:f7:96:60:
6d:6e:46:6e:52:ea:30:09:43:81:85:9c:bc:e7:f3:
0c:04:f3:2b:10:99:3e:44:09:b2:95:b4:77:ef:08:
76:4b:cf:40:46:89:e3:78:97:e5:29:2a:0d:fe:f7:
0e:aa:26:1e:e2:98:0c:3f:88:52:a3:80:c3:28:67:
d4:76:81:f4:b0:20:86:31:f6:2f:7f:44:16:93:91:
1d:e3:a8:53:11:25:34:25:eb:3d:2d:90:3f:3c:16:
07:43:e2:fc:81:fe:85:1c:c7:6e:f5:9e:f1:d1:f2:
99:9e:91:37:c1:f2:6d:b3:6c:98:9e:ba:67:5e:e9:
4f:83:61:91:bf:b0:c5:36:6a:60:15:cf:35:5f:cc:
f6:c6:76:cd:a1:a8:72:58:7e:50:1f:3c:13:44:e2:
4f:5e:90:ed:4f:96:0e:2c:d1:b4:a0:1d:89:fa:3f:
aa:1c:27:e1:33:52:9a:bf:b0:b4:44:f5:97:d5:77:
20:14:66:f3:7a:c1:cb:d2:bc:c9:99:85:fd:73:3f:
cd:dd:5c:7d:a8:07:af:bc:58:e7:d7:22:3f:12:09:
9d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E4:36:22:21:C7:1C:93:A4:D4:6B:E1:AC:32:20:C5:52:21:22:FA
X509v3 Authority Key Identifier:
keyid:07:47:A3:6D:77:68:A7:B3:0A:4E:EC:BB:69:64:C8:C2:37:D7:44:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B0ejbXdop7MKTuy7aWTIwjfXRAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/geQ2IiHHHJOk1GvhrDIgxVIhIvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/9eaf1e-c9ec-466d-8371-aabadd0719ba/1/B0ejbXdop7MKTuy7aWTIwjfXRAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.172.0/22
IPv6:
2a06:ca40::/29
Signature Algorithm: sha256WithRSAEncryption
3d:83:57:11:75:84:61:c0:43:f3:04:5f:a5:dc:32:8a:6a:43:
9d:32:10:72:fb:2b:e6:b3:e2:84:9d:d5:a7:5a:b5:29:9a:d9:
50:9f:62:bd:1d:70:9e:70:e3:0e:f2:cf:80:dc:68:af:c6:93:
71:83:bb:2c:2f:dd:6d:40:08:6c:d8:f9:95:86:56:ea:72:7c:
46:a8:04:1b:62:a6:21:9b:e4:91:aa:3c:45:b0:61:30:46:5e:
ed:d7:a2:52:ee:99:3a:1f:8c:57:2d:07:ad:69:f1:0e:c9:58:
f8:a9:a8:71:1e:7d:65:41:13:05:76:8e:26:ca:8c:55:34:05:
6a:7a:cc:f1:9a:e4:8c:7e:c8:10:e6:36:cf:0d:07:9d:dd:2b:
89:7a:4b:72:c7:22:00:b6:a7:1a:8c:bd:f8:25:ca:f3:fc:f5:
19:74:10:a1:f7:e6:5e:f9:2d:86:fa:41:0b:9a:35:68:32:7c:
55:ba:88:c1:46:55:d4:e2:a9:b1:78:c2:af:56:9b:1f:36:18:
d9:bf:8d:28:ae:38:67:34:e2:ad:d7:3e:06:09:68:b3:09:f6:
61:ac:79:c6:e9:21:0f:e5:ae:b7:90:55:b0:f8:71:10:0d:30:
d6:b9:d2:15:db:75:fc:66:1c:07:0a:6f:f5:aa:aa:22:91:44:
18:09:e1:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:25 2024 by rpki-client on console-fra.rpki-client.org