Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/48f964-a431-4de6-99ce-84ee488566f1/1/FiX6pJtYI-o2OtobvrooecRM-ZU.roa
File: FiX6pJtYI-o2OtobvrooecRM-ZU.roa (raw, json)
Hash identifier: 92ChirlqUhyWd0b3W8FQ/USl8sNb21FlWLeetCrf/oM=
Subject key identifier: 16:25:FA:A4:9B:58:23:EA:36:3A:DA:1B:BE:BA:28:79:C4:4C:F9:95
Certificate issuer: /CN=06785117986adaa437bec30a2bf9f157a9257df2
Certificate serial: 0C3E5326
Authority key identifier: 06:78:51:17:98:6A:DA:A4:37:BE:C3:0A:2B:F9:F1:57:A9:25:7D:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnhRF5hq2qQ3vsMKK_nxV6klffI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/48f964-a431-4de6-99ce-84ee488566f1/1/FiX6pJtYI-o2OtobvrooecRM-ZU.roa
Signing time: Sat 01 Jan 2022 06:57:47 +0000
ROA not before: Sat 01 Jan 2022 06:57:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205322
IP address blocks: 185.219.224.0/22 maxlen: 22
2a0f:78c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 205411110 (0xc3e5326)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06785117986adaa437bec30a2bf9f157a9257df2
Validity
Not Before: Jan 1 06:57:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1625faa49b5823ea363ada1bbeba2879c44cf995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d3:be:41:34:84:85:06:34:63:20:11:04:5c:
c8:b1:bb:39:7d:a3:48:fb:33:fc:5c:86:58:01:d0:
d3:09:e8:f4:e8:e1:25:75:bc:52:59:9a:3d:e6:03:
4a:0d:26:f5:55:7c:39:7f:e4:ba:4e:0a:ac:1a:8f:
61:26:ce:15:1a:10:e6:18:ed:6a:9f:6d:e6:4b:89:
a4:47:eb:60:0a:73:c0:20:dc:e2:f5:2b:12:cc:b3:
6b:b4:fa:6e:c3:55:ad:a8:25:86:8d:cb:cc:6f:da:
8d:6d:3e:d9:9c:ec:3d:45:29:c6:0a:a4:d1:42:a5:
1d:04:f5:4a:8b:2d:46:66:b1:fc:06:1d:0a:42:e4:
39:96:87:7b:4d:00:4e:6a:e5:f2:44:9d:0d:14:21:
41:b4:98:a1:da:ae:38:15:ca:c1:7e:00:04:48:e4:
91:eb:02:af:d7:be:52:4b:1d:1f:45:76:12:fb:33:
18:4e:1c:ad:5c:92:c4:46:7d:97:89:c4:26:80:05:
13:a8:ad:48:e7:69:41:4f:d2:66:bb:e6:76:8d:31:
26:e8:e4:2d:0e:d0:17:7c:4b:e6:db:5a:52:86:97:
c3:eb:85:3c:39:1d:ab:3f:df:d9:09:e8:80:c9:79:
91:68:c2:0b:c2:62:35:cf:75:c0:7f:fd:34:c0:66:
5b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:25:FA:A4:9B:58:23:EA:36:3A:DA:1B:BE:BA:28:79:C4:4C:F9:95
X509v3 Authority Key Identifier:
keyid:06:78:51:17:98:6A:DA:A4:37:BE:C3:0A:2B:F9:F1:57:A9:25:7D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnhRF5hq2qQ3vsMKK_nxV6klffI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/48f964-a431-4de6-99ce-84ee488566f1/1/FiX6pJtYI-o2OtobvrooecRM-ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/48f964-a431-4de6-99ce-84ee488566f1/1/BnhRF5hq2qQ3vsMKK_nxV6klffI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.224.0/22
IPv6:
2a0f:78c0::/29
Signature Algorithm: sha256WithRSAEncryption
e8:e2:42:d9:fc:b1:f9:55:44:66:90:ac:08:22:92:3f:0a:b0:
1f:e0:ae:93:40:74:11:75:88:1a:93:60:47:26:6e:70:c4:8a:
f8:4e:bc:fb:ab:25:a4:a2:31:c7:b1:8d:10:4b:cb:ce:29:57:
37:df:fd:c4:47:ac:75:47:94:b9:08:c8:76:3a:4d:48:6b:fd:
c3:e5:23:fc:03:57:35:71:0f:3d:36:5d:71:47:a8:8c:2c:ce:
72:b7:96:49:29:b7:01:30:8f:03:c6:ca:8b:a4:f5:21:06:c9:
ca:ca:e0:b0:38:d8:6d:e9:3a:71:e1:ad:e5:63:75:22:ce:b8:
ba:70:7a:0f:82:80:ec:ba:83:ce:87:67:46:b8:b6:00:6c:9b:
3a:28:10:16:6b:17:7b:bf:1e:23:b4:37:0e:c1:9d:12:14:71:
00:ca:f7:56:8b:86:ea:85:cb:d6:c2:15:7e:7a:5e:37:28:fb:
2c:8c:9b:d5:2f:31:b0:db:da:c7:52:0b:0c:64:23:a9:22:7f:
4f:0c:db:26:b2:9f:f6:5f:ce:79:40:a9:5d:ca:a5:90:7f:71:
9b:3f:69:e5:48:91:4e:b8:d1:40:d9:88:b9:bb:c0:46:52:65:
47:88:84:2c:70:4e:42:ea:2b:23:e3:94:da:5c:96:8b:d8:ea:
d9:41:9e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:12 2024 by rpki-client on console-ams.rpki-client.org