Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/_c_tBHqZttYnDKtQLo3UXFUs2nA.roa
File: _c_tBHqZttYnDKtQLo3UXFUs2nA.roa (raw, json)
Hash identifier: C6HJDbqvLtsbBiLerxwM1C4Rb/NCroGET1kyEDvlFRY=
Subject key identifier: FD:CF:ED:04:7A:99:B6:D6:27:0C:AB:50:2E:8D:D4:5C:55:2C:DA:70
Certificate issuer: /CN=5ff7352d47db9785f49118092de8704a67f6520d
Certificate serial: 088D6EF4
Authority key identifier: 5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/_c_tBHqZttYnDKtQLo3UXFUs2nA.roa
Signing time: Sat 01 Jan 2022 13:04:37 +0000
ROA not before: Sat 01 Jan 2022 13:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204751
IP address blocks: 185.241.188.0/22 maxlen: 22
2a0c:b080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143486708 (0x88d6ef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff7352d47db9785f49118092de8704a67f6520d
Validity
Not Before: Jan 1 13:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdcfed047a99b6d6270cab502e8dd45c552cda70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8a:22:9e:a8:8b:b3:ad:5a:df:7c:8a:d2:2e:
87:6f:b9:86:7d:e4:b3:ac:2e:e0:81:a3:52:a5:78:
84:1a:b5:12:62:4e:30:bf:d3:33:41:62:14:3c:96:
29:89:78:40:34:f8:cc:de:cc:6f:60:e3:c7:8f:8a:
10:0a:8f:9f:e7:3e:b9:36:4f:59:42:27:43:4a:28:
1d:70:01:e6:02:e7:e7:2a:1d:5d:fa:c0:d1:8f:04:
a0:57:10:f9:12:64:c6:fd:cc:10:bc:f0:da:a1:09:
8e:3e:83:2c:ef:21:cd:15:60:1c:05:14:39:c4:93:
fd:16:0e:5d:29:12:8e:fa:32:ce:aa:9c:2c:14:4b:
e2:75:56:ea:d7:a8:c4:47:45:29:01:a8:68:03:1e:
a8:69:33:d1:86:95:67:43:16:e1:48:1a:ce:b5:c6:
26:27:76:ad:9d:b5:fa:fe:24:b9:9e:02:a1:5b:9a:
a4:c1:76:42:f4:fa:94:d6:36:90:b9:21:19:62:a4:
1c:bf:ce:55:90:e4:64:f8:ac:74:9b:4c:8c:d9:fe:
5c:f1:23:52:c8:7c:1a:c4:90:ba:53:45:b6:97:49:
59:c5:c7:82:7c:7b:3e:aa:79:b9:9a:a2:d6:3d:44:
9a:a5:79:b5:91:77:6f:db:35:84:94:72:51:40:90:
e1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:CF:ED:04:7A:99:B6:D6:27:0C:AB:50:2E:8D:D4:5C:55:2C:DA:70
X509v3 Authority Key Identifier:
keyid:5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/_c_tBHqZttYnDKtQLo3UXFUs2nA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/X_c1LUfbl4X0kRgJLehwSmf2Ug0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.188.0/22
IPv6:
2a0c:b080::/29
Signature Algorithm: sha256WithRSAEncryption
2c:49:40:d1:1e:c7:44:0d:88:2c:70:40:ff:e2:de:08:e8:d4:
e3:21:fe:ee:e8:19:35:ef:8a:98:c2:1e:8d:21:07:58:27:80:
99:bd:06:f9:ca:98:dd:ab:a5:10:52:38:c6:18:b2:1f:03:ff:
cb:bb:23:6e:78:65:19:50:58:b9:f5:ec:2f:06:0e:52:0b:73:
27:fb:ac:a0:e7:ef:4e:da:31:a4:96:27:6e:37:9a:34:54:87:
f9:9d:90:05:1b:a6:f7:d2:99:a3:a7:9a:b9:60:dd:e4:72:f9:
79:79:e8:49:7b:7f:f0:be:c4:41:f8:6a:f4:03:3f:3a:8b:c7:
89:da:9b:7a:9f:f1:23:bf:de:be:af:04:f5:6c:64:e0:42:eb:
dc:ff:9f:20:3d:b8:65:61:3a:04:01:c1:83:df:87:fd:26:7b:
fe:53:1b:25:a1:dd:e6:16:95:c2:4c:03:9a:26:f4:d9:0b:96:
52:2a:cb:be:98:8d:1a:29:1e:89:7b:fb:2d:28:f1:78:ab:0c:
d2:d9:00:53:7b:f0:06:e1:96:5c:5e:47:4c:f5:88:6b:f0:87:
1a:f7:77:02:ac:fb:17:c4:86:11:cc:93:21:29:6a:0c:bc:c0:
70:30:0d:71:89:13:12:00:13:ae:dd:c6:42:83:1f:16:c1:f7:
50:a0:53:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:21 2024 by rpki-client on console-fra.rpki-client.org