Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/oEigQDavDlezGmlv6TXa2QKuLhU.roa
File: oEigQDavDlezGmlv6TXa2QKuLhU.roa (raw, json)
Hash identifier: SgF19L4Mu1fG5XCWJKpRugYoU5xwK/i+IkUXX0Cfw0I=
Subject key identifier: A0:48:A0:40:36:AF:0E:57:B3:1A:69:6F:E9:35:DA:D9:02:AE:2E:15
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 5AB961
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/oEigQDavDlezGmlv6TXa2QKuLhU.roa
Signing time: Tue 15 Mar 2022 11:12:56 +0000
ROA not before: Tue 15 Mar 2022 11:12:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7473
IP address blocks: 185.84.219.0/24 maxlen: 24
185.84.218.0/24 maxlen: 24
193.103.148.0/24 maxlen: 24
2a05:a884:de20::/48 maxlen: 48
2a05:a884:de10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5945697 (0x5ab961)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Mar 15 11:12:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a048a04036af0e57b31a696fe935dad902ae2e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b8:43:e0:68:e4:27:b3:97:96:9c:d8:bd:35:
75:9f:e2:b0:41:f0:bd:55:83:67:b2:03:24:a8:cf:
06:4e:fd:0b:4a:ee:a7:0d:9d:bf:b4:f8:7e:e0:2e:
1a:d2:5a:46:ef:3a:e1:61:d5:0c:24:1d:66:1e:c7:
35:8a:b8:75:34:be:8c:e4:eb:34:f7:e6:e9:30:af:
24:98:6c:53:8b:50:d3:7a:8a:d3:b8:42:ae:f8:8d:
5c:34:1f:34:00:a0:63:25:96:cc:dc:ca:7b:c9:dc:
d5:81:87:37:17:b0:79:ed:5e:b3:d6:ce:8a:76:3e:
d3:56:a1:48:50:13:8f:f3:b6:4d:c2:64:ec:39:1d:
8f:6d:c5:78:48:05:77:15:c8:c3:95:f2:4f:01:ec:
ab:ec:28:ad:02:96:c1:89:47:11:0d:ab:3d:5d:4a:
c2:ea:16:db:1d:1f:3f:1e:ba:36:92:a7:04:57:75:
5e:20:f1:da:30:49:a1:aa:1e:62:ea:71:26:0f:d6:
4b:5c:69:5d:6e:46:01:13:c5:f1:0f:fc:08:98:9d:
40:b2:f3:47:81:a4:5d:ce:a8:b6:10:07:31:1f:3e:
69:df:d5:02:88:c1:33:f4:6b:65:2b:5c:cb:1a:b7:
e4:86:4e:df:14:0e:6f:90:56:4d:32:f1:6f:09:e5:
4b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:48:A0:40:36:AF:0E:57:B3:1A:69:6F:E9:35:DA:D9:02:AE:2E:15
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/oEigQDavDlezGmlv6TXa2QKuLhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.218.0/23
193.103.148.0/24
IPv6:
2a05:a884:de10::/48
2a05:a884:de20::/48
Signature Algorithm: sha256WithRSAEncryption
c1:70:6f:a7:3c:9a:5b:1b:78:bf:df:e8:bb:a7:61:b8:fb:62:
f1:7d:8f:7c:33:81:da:66:8d:c6:9f:2e:36:0f:d0:9c:ac:75:
39:8c:7e:f9:67:c6:a0:27:99:fc:e6:5f:cf:80:93:a7:1e:13:
f7:45:2f:98:b1:f9:63:ba:e3:6b:98:06:34:7b:c6:52:50:f7:
f4:59:22:c8:ef:1e:e9:1e:35:d9:ee:2a:40:17:77:9b:f0:dd:
2f:36:7c:33:51:e3:7f:b6:76:f2:29:d8:9f:22:00:60:13:52:
9c:f8:08:bd:f8:11:48:af:89:1a:86:2e:58:9a:2d:53:42:7b:
c4:88:e7:4c:18:1b:1e:ae:3b:aa:71:54:98:4e:00:91:4f:d0:
24:1c:03:6b:64:91:b8:ff:64:46:8f:7a:04:95:9c:d6:d6:72:
78:0e:36:9b:b6:d1:fd:1a:74:4a:b6:7d:ff:c8:00:04:f5:b4:
4d:f6:4b:d4:5b:76:95:37:03:f1:df:61:0a:6c:29:60:5a:0c:
5e:ce:e5:74:27:0e:84:53:19:00:63:39:25:5f:4d:aa:65:1d:
25:e3:76:fb:13:10:ad:ef:f6:0e:95:e9:be:c2:9f:df:a4:71:
f5:88:4d:1b:74:12:c4:31:b9:ca:73:08:82:09:49:cc:96:6b:
b5:32:63:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:14 2023 by rpki-client on console-fra.rpki-client.org