Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/cb2vJVtPLO2THkQLt8OLbnxgab4.roa
File: cb2vJVtPLO2THkQLt8OLbnxgab4.roa (raw, json)
Hash identifier: jE1vIO9bYHm3otIFepHZ4/CrMLrYD+xIOnV264uAJR4=
Subject key identifier: 71:BD:AF:25:5B:4F:2C:ED:93:1E:44:0B:B7:C3:8B:6E:7C:60:69:BE
Certificate issuer: /CN=07bb5bfa64b0d5d18a3061a9869b1ca57172eaba
Certificate serial: 11CD3643
Authority key identifier: 07:BB:5B:FA:64:B0:D5:D1:8A:30:61:A9:86:9B:1C:A5:71:72:EA:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B7tb-mSw1dGKMGGphpscpXFy6ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/cb2vJVtPLO2THkQLt8OLbnxgab4.roa
Signing time: Sat 01 Jan 2022 09:55:22 +0000
ROA not before: Sat 01 Jan 2022 09:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203815
IP address blocks: 185.155.76.0/22 maxlen: 22
2a05:b8c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298661443 (0x11cd3643)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07bb5bfa64b0d5d18a3061a9869b1ca57172eaba
Validity
Not Before: Jan 1 09:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71bdaf255b4f2ced931e440bb7c38b6e7c6069be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:91:3b:f8:3b:df:a4:5e:d1:10:76:18:eb:24:
ab:30:6d:3a:e0:b7:2f:5c:f2:a6:3f:8a:2a:27:29:
c0:58:8d:44:8b:9e:fc:16:c7:81:e7:55:79:a9:f7:
43:77:08:68:88:52:d0:f7:c0:0e:05:c2:87:31:cf:
02:fb:7e:11:83:6e:ca:8d:5a:ab:f3:8f:b9:2c:94:
de:6f:52:78:c7:7f:44:dd:24:15:38:3b:83:ad:ee:
06:44:e7:de:d0:97:9e:ae:10:5b:b5:05:1f:5c:7f:
d5:a8:5e:f2:a1:ca:6f:b9:51:41:6b:16:9f:08:f2:
44:71:e5:74:c7:c0:50:37:d9:67:32:af:bb:6f:a8:
eb:8c:e7:57:ee:f8:be:1d:ac:1d:b3:af:c9:4a:66:
af:2e:61:1c:cd:eb:d0:d7:aa:81:56:0f:8f:11:4f:
ed:4f:54:fb:49:13:37:cf:9f:aa:9c:1a:b7:e8:30:
9a:d3:d5:96:ad:d3:60:e4:6e:7b:56:9d:40:f6:97:
49:2c:4f:9f:d7:7a:45:7f:68:49:75:e4:75:39:53:
ef:1b:9e:94:eb:a8:f5:8d:94:58:7a:4e:8e:e8:0c:
80:f9:d0:df:21:60:6a:df:b9:ff:b0:2c:48:48:b6:
b5:e7:e3:2b:86:37:9d:b8:de:a2:78:ce:67:0c:fa:
85:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BD:AF:25:5B:4F:2C:ED:93:1E:44:0B:B7:C3:8B:6E:7C:60:69:BE
X509v3 Authority Key Identifier:
keyid:07:BB:5B:FA:64:B0:D5:D1:8A:30:61:A9:86:9B:1C:A5:71:72:EA:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B7tb-mSw1dGKMGGphpscpXFy6ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/cb2vJVtPLO2THkQLt8OLbnxgab4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/acfd98-b736-49f4-a660-f908d21718f7/1/B7tb-mSw1dGKMGGphpscpXFy6ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.76.0/22
IPv6:
2a05:b8c0::/29
Signature Algorithm: sha256WithRSAEncryption
38:38:83:e6:f1:c9:3f:0a:9b:95:2a:43:ae:bd:9f:21:11:dd:
15:96:09:98:1f:c9:17:36:16:c1:0d:35:ce:ed:8e:d4:96:0a:
ed:ab:2b:e0:3f:33:9b:77:92:80:7e:dc:1a:22:32:11:da:60:
b5:67:e8:6f:14:53:5c:de:04:b7:15:86:8a:a8:ae:ba:59:e1:
7c:4a:d1:30:8a:01:2f:15:12:ad:9e:f6:bb:14:19:01:9c:72:
71:6a:38:b5:e3:a0:7f:d9:05:81:82:94:68:69:dd:85:52:eb:
db:17:98:37:33:ee:00:4c:9d:77:c1:7d:df:a0:a4:38:0f:88:
2e:61:78:20:3c:01:16:94:8d:52:1f:29:ee:bc:5c:3e:cf:e4:
0d:29:f1:d8:9b:b5:36:60:8d:3f:35:29:a9:19:8c:6b:0f:ce:
6e:64:4c:b1:d2:9d:60:01:a1:7c:99:97:3f:66:ba:bf:64:3c:
ac:f8:3c:93:3b:82:5d:cb:91:03:4f:16:ad:fd:de:8d:49:5f:
f4:bb:f3:c1:c3:45:2c:8f:8f:9a:15:40:9d:8f:4a:9f:6d:37:
34:44:b0:f8:b0:fc:48:29:39:02:77:d4:7f:bb:5f:eb:f6:79:
d0:f2:bd:e4:4b:aa:f1:3d:8c:51:f6:2b:eb:fa:08:d6:a2:c3:
73:1e:ea:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:37 2023 by rpki-client on console-ams.rpki-client.org