Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4560e9-7173-429c-b6f1-5f4a15cb9054/1/8A_u7pg85mAU5tcFZKa-WFz0ggI.roa
File: 8A_u7pg85mAU5tcFZKa-WFz0ggI.roa (raw, json)
Hash identifier: TKQdtchpDGoO8KC/5hNrupAoi5gopSBt+/v+4e8rx5s=
Subject key identifier: F0:0F:EE:EE:98:3C:E6:60:14:E6:D7:05:64:A6:BE:58:5C:F4:82:02
Certificate issuer: /CN=a0e049d00ba8421e4c45a948492945c78fd9e16d
Certificate serial: 0BC271D4
Authority key identifier: A0:E0:49:D0:0B:A8:42:1E:4C:45:A9:48:49:29:45:C7:8F:D9:E1:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOBJ0AuoQh5MRalISSlFx4_Z4W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4560e9-7173-429c-b6f1-5f4a15cb9054/1/8A_u7pg85mAU5tcFZKa-WFz0ggI.roa
Signing time: Sat 01 Jan 2022 05:00:33 +0000
ROA not before: Sat 01 Jan 2022 05:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20811
IP address blocks: 185.141.84.0/22 maxlen: 24
2a0b:aa00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 197292500 (0xbc271d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e049d00ba8421e4c45a948492945c78fd9e16d
Validity
Not Before: Jan 1 05:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f00feeee983ce66014e6d70564a6be585cf48202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b9:48:21:c1:c6:a6:5d:f7:34:37:a0:7f:c7:
c5:17:f4:24:a3:89:2c:4b:8d:85:63:53:7f:43:7d:
51:41:71:41:7f:5f:8e:60:af:6e:95:2f:ff:dd:84:
24:bf:86:d3:ba:7e:0a:92:e1:d5:e9:1b:34:f1:41:
06:9a:64:4e:28:e3:9b:fa:96:fe:24:e0:c8:f1:63:
22:af:82:0f:20:76:61:74:09:86:f8:7b:11:23:bd:
a9:1a:78:34:96:f8:ce:93:f8:38:53:f5:30:31:37:
92:d5:2e:2c:7c:28:82:14:6a:ce:80:57:2d:f2:7e:
fc:7a:17:83:cc:b6:fa:54:4c:e4:3e:d9:42:01:2a:
ca:38:63:6f:1d:2b:91:58:fa:53:79:d5:6b:61:04:
c2:77:aa:71:f9:60:0b:40:82:52:21:da:e3:22:f2:
1b:94:47:1e:fa:39:e3:b7:cc:42:8b:21:d2:07:ef:
88:58:73:f4:df:93:18:b8:c3:89:b4:99:89:02:40:
a2:f0:fe:94:62:ef:c4:36:55:42:ae:5d:9e:16:6e:
7b:f8:3f:42:92:38:5e:fe:89:3f:b9:1e:3f:01:9d:
bf:01:00:7d:c6:3b:35:a3:d6:b7:c7:38:59:0a:25:
43:e8:e8:d8:ae:60:cc:71:4f:d3:f5:d8:1f:4a:49:
34:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0F:EE:EE:98:3C:E6:60:14:E6:D7:05:64:A6:BE:58:5C:F4:82:02
X509v3 Authority Key Identifier:
keyid:A0:E0:49:D0:0B:A8:42:1E:4C:45:A9:48:49:29:45:C7:8F:D9:E1:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOBJ0AuoQh5MRalISSlFx4_Z4W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4560e9-7173-429c-b6f1-5f4a15cb9054/1/8A_u7pg85mAU5tcFZKa-WFz0ggI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4560e9-7173-429c-b6f1-5f4a15cb9054/1/oOBJ0AuoQh5MRalISSlFx4_Z4W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.84.0/22
IPv6:
2a0b:aa00::/29
Signature Algorithm: sha256WithRSAEncryption
b0:7d:42:d7:01:65:4b:ed:cb:16:bd:a8:18:a4:00:6f:97:3e:
7f:7c:4b:76:39:b3:7d:d1:bb:b1:26:51:91:09:7a:4a:ad:03:
db:42:72:ed:34:d6:3b:40:a5:fe:7c:c2:34:d7:42:21:a4:e0:
f6:91:83:27:ec:46:58:c0:41:6b:b6:eb:4a:6e:cc:08:fe:02:
48:ef:51:c7:53:d3:09:c4:90:f3:fd:80:18:8a:b8:03:b7:a4:
ed:26:e4:6e:09:ef:d1:ed:5a:7b:c6:d9:89:76:ed:78:81:1d:
f6:d0:09:0e:4b:e8:4d:bb:d0:5e:0f:2c:52:b5:30:63:47:65:
1e:19:56:e8:07:55:b7:59:85:94:7a:55:8e:57:49:12:75:fb:
5d:f3:b3:5a:80:a8:d7:a2:c8:0f:c8:d6:e8:2e:c3:32:2f:bb:
5b:f0:c5:78:c0:bc:98:22:88:97:89:81:16:bc:60:5c:8a:6e:
a6:16:e9:66:a8:63:99:b5:67:3e:ce:58:65:82:6b:be:d5:21:
cb:5e:0d:1e:7e:1f:f6:5a:56:06:c1:bd:44:48:1a:88:92:91:
44:01:e7:de:a7:c7:53:d0:fa:4e:14:ff:3c:d8:6a:a8:51:aa:
23:c1:c0:75:ce:ac:4a:b4:05:7d:01:3f:a4:71:11:2c:fa:26:
f2:36:77:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:30 2024 by rpki-client on console-fra.rpki-client.org