Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/7oFxh3hM0d286H-Rq9c3W2XhTuc.roa
File: 7oFxh3hM0d286H-Rq9c3W2XhTuc.roa (raw, json)
Hash identifier: Fljn6vASjivcWnQYNDQkXSg8tCGn5JC4Rn6PsQw4npo=
Subject key identifier: EE:81:71:87:78:4C:D1:DD:BC:E8:7F:91:AB:D7:37:5B:65:E1:4E:E7
Certificate issuer: /CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Certificate serial: 04CAF142
Authority key identifier: 91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/7oFxh3hM0d286H-Rq9c3W2XhTuc.roa
Signing time: Sat 01 Jan 2022 10:02:09 +0000
ROA not before: Sat 01 Jan 2022 10:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41847
IP address blocks: 185.144.220.0/22 maxlen: 24
185.144.220.0/24 maxlen: 24
185.144.222.0/24 maxlen: 24
185.144.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80408898 (0x4caf142)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Validity
Not Before: Jan 1 10:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee817187784cd1ddbce87f91abd7375b65e14ee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:65:9c:bc:bd:51:2d:2c:9e:8c:9f:bd:6d:57:
f0:10:a9:e1:19:90:21:9f:65:e6:6d:56:d4:fb:a5:
f1:5b:bf:83:b4:ce:89:a0:da:7c:9e:b0:68:72:5d:
1b:b4:2a:76:6b:9f:c1:01:0f:76:50:c6:f9:33:ba:
6c:60:8c:d9:bc:c6:19:bd:bb:8c:f9:f8:f5:ec:80:
63:db:ed:3c:73:5f:40:cb:95:b6:60:38:c6:ad:3d:
a4:18:fc:d9:67:43:c2:0c:45:1b:d5:f3:a6:96:0c:
8c:51:fa:c6:46:46:bc:c3:bf:0e:bc:41:91:df:5e:
a1:e8:0f:dd:f3:de:28:57:0e:36:b6:cb:13:3f:b1:
7d:45:ba:54:b6:f0:24:d6:02:c1:ae:6f:1f:22:e0:
bc:b4:72:96:7d:b2:6d:8a:36:da:12:73:66:5d:4d:
69:ba:68:17:ea:d6:55:be:7f:90:16:67:5d:ed:91:
81:99:cf:2e:b5:dc:68:96:6b:db:65:8d:07:1c:15:
f6:1c:3f:ee:c7:da:3f:62:47:21:16:05:e3:26:ff:
57:d5:08:c4:dd:b3:06:e8:e5:d1:37:e3:ab:aa:96:
4f:1b:8d:4c:d3:9f:b9:e0:90:fa:7e:b7:1f:12:1b:
47:0a:de:dc:a1:2a:63:78:ec:80:a0:ef:03:f9:a3:
cb:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:81:71:87:78:4C:D1:DD:BC:E8:7F:91:AB:D7:37:5B:65:E1:4E:E7
X509v3 Authority Key Identifier:
keyid:91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/7oFxh3hM0d286H-Rq9c3W2XhTuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.220.0/22
Signature Algorithm: sha256WithRSAEncryption
34:a3:66:e6:06:81:f1:78:df:57:8c:19:0e:25:b3:b9:47:99:
4d:af:34:f9:fd:39:6f:f8:67:b6:66:82:13:42:af:ea:78:12:
57:37:95:37:9a:d8:21:a1:1b:67:6a:8d:91:5d:18:99:9d:d0:
67:85:d0:39:79:e5:19:fc:7d:bc:22:30:dc:b0:50:af:18:ea:
05:07:99:af:be:bd:c9:50:3c:b9:79:a2:fd:68:da:3a:36:ed:
1c:a0:bf:b7:7e:47:ff:db:55:54:29:42:09:3f:e3:f8:bc:16:
38:d0:41:8f:e3:17:0e:a7:cc:dd:e5:eb:76:7a:dd:82:f4:0e:
0b:06:2f:c6:fd:f7:15:13:51:12:b5:e1:75:99:cf:a6:47:97:
d5:8d:17:9d:c4:e4:91:eb:0a:12:41:8f:1c:9d:cf:ca:c8:c7:
dc:94:c5:f7:15:c1:c2:79:cf:bf:56:62:74:41:0a:20:8a:51:
f0:55:73:71:ad:f1:64:0d:b3:3b:5d:75:63:7e:81:7d:52:2d:
a0:ae:7b:58:07:02:ab:fb:cc:0b:22:1e:8b:b3:0f:35:47:58:
68:6f:3f:06:5b:72:56:33:16:c7:ec:13:31:22:10:0a:1a:6d:
8b:6b:9e:1f:3c:47:5a:d4:e1:db:40:3a:06:77:49:2c:eb:7f:
14:4a:9d:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:26 2024 by rpki-client on console-fra.rpki-client.org