Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/W9vmv9uKzj7jhOk3LLhRc1vyMtg.roa
File: W9vmv9uKzj7jhOk3LLhRc1vyMtg.roa (raw, json)
Hash identifier: 9sUFELE4l1268et+vSUKJJAtgXHYyBTA4+D2NDuPrqA=
Subject key identifier: 5B:DB:E6:BF:DB:8A:CE:3E:E3:84:E9:37:2C:B8:51:73:5B:F2:32:D8
Certificate issuer: /CN=fbd83efdd9996f8c75e7f4114e466ebf836968ea
Certificate serial: 30448A6B
Authority key identifier: FB:D8:3E:FD:D9:99:6F:8C:75:E7:F4:11:4E:46:6E:BF:83:69:68:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-9g-_dmZb4x15_QRTkZuv4NpaOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/W9vmv9uKzj7jhOk3LLhRc1vyMtg.roa
Signing time: Sat 01 Jan 2022 13:04:29 +0000
ROA not before: Sat 01 Jan 2022 13:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28854
IP address blocks: 185.60.128.0/22 maxlen: 24
80.84.32.0/20 maxlen: 24
88.206.128.0/17 maxlen: 24
2a04:f40::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 809798251 (0x30448a6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbd83efdd9996f8c75e7f4114e466ebf836968ea
Validity
Not Before: Jan 1 13:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bdbe6bfdb8ace3ee384e9372cb851735bf232d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:28:4c:ae:d6:1b:b4:ba:c9:c3:6e:fa:0e:3e:
7c:e0:fa:bf:8b:5e:e4:16:c6:71:b0:7b:7a:ba:28:
c4:bf:78:40:67:d3:20:81:dd:9d:9a:8c:11:12:06:
86:f5:59:b9:79:08:8a:20:1f:f8:47:52:64:52:a6:
25:11:93:35:72:62:e7:d5:5f:ff:68:75:a0:f3:2d:
94:e8:8e:a2:ed:5f:37:fa:d1:5f:d2:f1:99:5b:00:
fe:c9:84:51:cb:1c:ea:5c:7d:7e:47:63:ce:32:ef:
55:3b:9b:c3:b9:3c:62:bd:d9:02:6f:30:dc:0f:e4:
6f:55:7f:ef:bc:e1:35:4a:53:e1:fb:17:6d:bd:fe:
76:e9:66:e6:58:9c:51:f9:68:2a:07:9b:60:b6:90:
42:84:49:81:c9:4b:6b:c7:7e:60:d5:73:0f:20:61:
5c:2a:0a:04:d5:44:ce:5b:fd:32:b4:0f:6f:97:60:
79:4d:a5:25:8a:4f:bc:de:20:06:07:cb:1d:f7:a1:
cd:50:8d:69:bf:c1:59:6f:8d:17:1c:e0:89:04:c3:
3d:8c:fb:5f:45:11:eb:ec:92:90:2e:5a:b6:47:be:
fb:2e:b1:3c:ce:15:b7:17:a6:56:a8:5c:0f:cb:60:
51:e8:9d:5a:a0:40:cd:1e:7e:29:1c:a1:fd:bd:c2:
59:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:DB:E6:BF:DB:8A:CE:3E:E3:84:E9:37:2C:B8:51:73:5B:F2:32:D8
X509v3 Authority Key Identifier:
keyid:FB:D8:3E:FD:D9:99:6F:8C:75:E7:F4:11:4E:46:6E:BF:83:69:68:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-9g-_dmZb4x15_QRTkZuv4NpaOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/W9vmv9uKzj7jhOk3LLhRc1vyMtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/aa06a5-7ef6-4bc9-b0a0-2fa839017d75/1/1-9g-_dmZb4x15_QRTkZuv4NpaOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.84.32.0/20
88.206.128.0/17
185.60.128.0/22
IPv6:
2a04:f40::/29
Signature Algorithm: sha256WithRSAEncryption
01:dc:0c:a8:f6:43:60:13:1b:ca:23:26:27:4e:1d:e4:86:00:
3f:0c:79:a1:98:d5:34:5f:9d:43:2e:16:e6:16:41:e3:b4:6c:
96:ca:6d:1d:be:44:f0:4c:f4:7d:0d:90:f4:48:98:c3:6d:d8:
7a:66:9d:ce:b7:a2:75:c8:16:0d:2c:e0:cc:b8:a6:e4:09:48:
8b:e2:90:c4:f6:d8:d8:ce:02:80:75:b9:f9:03:1d:34:2d:10:
af:7f:c9:14:82:7f:38:f3:7e:9e:92:f1:20:44:97:8d:e7:35:
07:31:b1:9d:a0:12:fa:80:10:f0:64:e7:91:f1:09:f3:45:73:
e8:ec:fd:3b:23:51:f3:27:ac:2c:de:f9:d5:30:f8:b7:bb:3c:
13:bf:5a:f9:2b:0b:e7:88:f5:b0:49:07:75:01:38:63:52:d2:
c8:59:3e:42:fc:32:52:0a:f6:b6:21:a8:8e:3d:b3:e2:51:a5:
eb:d1:d1:75:88:87:41:e1:77:5e:e2:78:9d:63:b5:d7:84:84:
36:74:44:85:30:76:e8:12:80:31:25:6e:37:1b:28:cb:6e:9c:
22:c7:78:ee:57:f5:8b:96:a8:d9:f2:24:1c:45:74:86:66:69:
ae:b4:9d:c6:be:97:8a:7c:c6:b1:c0:ea:57:df:58:74:d6:72:
37:6f:90:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:38 2024 by rpki-client on console-ams.rpki-client.org