Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/IuQOmTxuMR9qpf6aJjlFqSAdfF0.roa
File: IuQOmTxuMR9qpf6aJjlFqSAdfF0.roa (raw, json)
Hash identifier: nRTgFVyznATdbsvixHD0T6c/lLUNWpjYwezEvuIyw4c=
Subject key identifier: 22:E4:0E:99:3C:6E:31:1F:6A:A5:FE:9A:26:39:45:A9:20:1D:7C:5D
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 6D24
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/IuQOmTxuMR9qpf6aJjlFqSAdfF0.roa
Signing time: Wed 09 Feb 2022 12:27:54 +0000
ROA not before: Wed 09 Feb 2022 12:27:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20765
IP address blocks: 185.84.219.0/24 maxlen: 24
193.96.96.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27940 (0x6d24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Feb 9 12:27:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22e40e993c6e311f6aa5fe9a263945a9201d7c5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:96:89:5d:01:2f:9c:2e:79:9e:b6:c0:ca:7b:
7d:3c:34:fb:8d:56:44:c0:0b:15:8d:96:95:7a:48:
34:ef:1a:78:4b:f7:e9:4e:a7:f5:88:7c:90:e0:b8:
07:3d:aa:21:9b:c6:68:a5:62:38:9f:02:4b:d8:a8:
9f:0a:43:6e:39:1b:5f:0e:67:7f:60:a5:e4:ab:ee:
ba:82:c1:cc:47:15:fb:c7:b3:47:a6:dd:42:7d:21:
14:92:22:4e:17:30:ef:76:13:e6:da:3f:4e:6f:d4:
4c:1d:9b:dd:18:25:34:ac:a4:24:e6:c1:aa:e9:03:
13:cc:3a:db:6e:be:3c:b3:91:d7:3f:34:73:ea:10:
31:63:6c:d7:fc:f7:7b:dc:66:43:39:08:b3:d1:13:
cf:3f:2f:71:fe:39:1d:61:3d:f8:65:d0:1c:ec:95:
8e:31:f8:d8:8f:f8:1d:b4:8f:e6:81:34:91:8b:22:
b2:84:ff:d0:ba:07:ea:cf:f7:ef:af:a2:ff:d4:bf:
3e:41:63:76:6d:19:c9:01:c5:3a:9a:c8:7c:4e:69:
ac:78:a2:b3:df:77:a4:5d:a5:39:13:6d:8a:b0:7c:
79:82:81:f8:14:09:eb:7d:1f:f4:e9:3c:b4:2e:73:
50:a4:e1:cb:1b:b4:9b:da:91:6c:19:03:9e:5e:75:
a8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E4:0E:99:3C:6E:31:1F:6A:A5:FE:9A:26:39:45:A9:20:1D:7C:5D
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/IuQOmTxuMR9qpf6aJjlFqSAdfF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.219.0/24
193.96.96.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:45:5f:84:89:bd:28:fe:b8:80:8a:49:e4:49:e5:f0:8a:03:
6f:a6:76:9a:23:85:8e:b0:b3:69:60:db:39:90:5e:cb:14:7c:
f9:90:7d:24:e8:e4:4b:be:92:9b:39:2b:01:79:8f:98:3b:ba:
ad:bf:88:13:18:3f:32:b3:9d:b9:f2:15:a0:38:ef:e2:47:90:
b7:36:7b:d7:29:9c:1f:30:b8:e7:77:e2:80:b8:9e:25:03:f9:
a5:7c:dc:75:f8:35:bd:d1:a8:ee:4a:6a:b0:a2:d7:b7:c7:78:
1a:1e:33:a7:c7:c5:70:05:78:76:67:af:cd:f1:4c:8c:ab:2d:
fe:c5:67:8a:43:c9:0c:7c:26:eb:f9:0d:fa:27:14:56:86:cc:
37:f2:b9:1b:ac:2d:ad:c4:85:93:a6:d2:a2:6a:59:f7:21:f8:
14:82:97:23:0b:9e:b2:bc:fb:36:00:39:4a:4e:d1:2c:67:3e:
e6:44:6b:c6:b8:97:6e:d4:24:6e:36:05:bc:0a:3f:2d:90:6e:
b1:c7:9f:1f:11:b3:c6:ea:77:f8:a3:a7:d6:dd:33:da:fe:87:
bc:ed:b0:f8:bb:fe:b3:1a:b6:6f:2a:ea:17:5c:6a:49:05:9a:
59:19:0e:bc:70:f7:9d:2f:70:12:53:62:71:0e:84:7b:10:14:
0a:36:df:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:42 2024 by rpki-client on console-fra.rpki-client.org