Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7f4b5a-82e7-4fce-b6fc-317e820dfcdb/1/bHf6SmRcp61T_WqOcnQOTcuHFzY.roa
File: bHf6SmRcp61T_WqOcnQOTcuHFzY.roa (raw, json)
Hash identifier: MeWFrnXYlgud7Osq/hThk0R6O0xqeKXxPybUf+WxdGY=
Subject key identifier: 6C:77:FA:4A:64:5C:A7:AD:53:FD:6A:8E:72:74:0E:4D:CB:87:17:36
Certificate issuer: /CN=ee7a264dbccd75aa86cd361c6d366bd88c90da23
Certificate serial: 0F027AB9
Authority key identifier: EE:7A:26:4D:BC:CD:75:AA:86:CD:36:1C:6D:36:6B:D8:8C:90:DA:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7nomTbzNdaqGzTYcbTZr2IyQ2iM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7f4b5a-82e7-4fce-b6fc-317e820dfcdb/1/bHf6SmRcp61T_WqOcnQOTcuHFzY.roa
Signing time: Sat 01 Jan 2022 13:55:22 +0000
ROA not before: Sat 01 Jan 2022 13:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200635
IP address blocks: 185.100.196.0/22 maxlen: 32
2a06:1900::/29 maxlen: 120
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 251820729 (0xf027ab9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee7a264dbccd75aa86cd361c6d366bd88c90da23
Validity
Not Before: Jan 1 13:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c77fa4a645ca7ad53fd6a8e72740e4dcb871736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:52:41:58:c4:09:44:f6:71:00:f6:9e:64:f2:
fd:73:f4:27:68:85:10:10:79:62:81:7c:29:90:27:
6d:33:ba:ce:2f:e5:ef:bf:ce:80:0f:d9:4a:00:23:
35:25:64:3e:18:5a:a3:7c:2d:fc:e3:ed:e9:2c:7b:
79:55:24:ec:e6:6f:85:76:1d:29:ef:62:76:5e:a2:
ff:0c:61:f7:19:fe:68:fc:d4:7e:d2:50:74:8d:7c:
37:d5:63:c0:2f:8b:90:35:5b:54:7b:d6:b1:95:90:
bd:70:52:a4:05:0a:7f:66:f7:46:18:f9:e8:60:cd:
74:bd:4a:1b:73:49:86:f1:db:97:8b:89:ec:87:65:
7d:66:57:e2:97:bc:d5:f6:68:08:b3:39:f0:37:a0:
29:c9:64:4b:41:1f:ca:ee:07:27:9a:2d:65:07:cb:
8e:3a:c9:f7:a1:cd:41:8c:8a:95:08:29:8d:d0:4c:
f4:4a:1d:5f:f6:88:cd:d9:9b:eb:c0:a6:71:13:92:
85:c3:96:77:7e:67:b4:46:85:a6:6b:93:ed:3f:d3:
00:82:6a:69:99:66:4d:27:6e:97:61:20:8e:12:04:
31:19:c2:1c:b8:06:3e:f1:25:57:b4:76:e8:15:67:
23:ce:da:d6:09:ed:3a:ef:5d:fc:f5:be:44:c6:46:
22:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:77:FA:4A:64:5C:A7:AD:53:FD:6A:8E:72:74:0E:4D:CB:87:17:36
X509v3 Authority Key Identifier:
keyid:EE:7A:26:4D:BC:CD:75:AA:86:CD:36:1C:6D:36:6B:D8:8C:90:DA:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7nomTbzNdaqGzTYcbTZr2IyQ2iM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7f4b5a-82e7-4fce-b6fc-317e820dfcdb/1/bHf6SmRcp61T_WqOcnQOTcuHFzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7f4b5a-82e7-4fce-b6fc-317e820dfcdb/1/7nomTbzNdaqGzTYcbTZr2IyQ2iM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.196.0/22
IPv6:
2a06:1900::/29
Signature Algorithm: sha256WithRSAEncryption
1a:42:01:5d:d4:63:ef:2c:5f:bc:fe:86:69:97:ac:60:a4:43:
d3:26:26:55:3d:3e:fc:d0:8a:63:bc:7a:37:b5:40:72:d1:54:
a7:f6:b1:26:2d:6a:01:ab:78:a2:84:07:b2:ec:f2:95:9e:35:
5c:c7:3b:d1:2c:90:01:da:f1:00:e6:13:74:60:f6:c4:92:31:
be:65:d1:3f:59:b0:24:1b:2f:69:ea:94:48:e9:88:f7:9b:16:
2d:a1:6f:1b:5e:2b:81:f6:02:ee:ab:79:42:a6:f4:db:08:1a:
ae:20:80:c3:7d:72:c6:b6:00:90:fc:ef:e5:ab:3f:fc:d7:b3:
49:ef:6f:20:48:87:08:db:08:76:5f:80:0b:9e:a8:d6:ab:ec:
fb:1e:92:b1:cb:41:9c:ac:56:26:f9:53:5c:10:6c:b8:2f:d8:
a8:88:53:39:3e:15:6e:9e:8d:f9:a1:bb:f2:0e:b8:2b:52:34:
f8:2d:51:1b:6c:44:12:54:43:fe:d3:df:4f:f6:c8:c7:87:87:
1f:8d:9c:24:0a:69:8f:61:0e:8c:bd:d6:54:b4:1b:d3:2d:2e:
3e:dd:fc:f8:cd:47:b0:f8:d7:fb:a1:e8:6e:e2:80:f0:0a:04:
1a:67:e3:3a:71:93:cc:14:29:b9:48:79:ad:92:d2:cf:a7:39:
3e:c6:d5:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:48 2024 by rpki-client on console-ams.rpki-client.org