Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/_aK_E0P20OYmm38cp7ktj52i9sE.roa
File: _aK_E0P20OYmm38cp7ktj52i9sE.roa (raw, json)
Hash identifier: 9ZrRSixtvcLQD6CnLu9NAZGIIBBCIVdd3YJRc0aLqwE=
Subject key identifier: FD:A2:BF:13:43:F6:D0:E6:26:9B:7F:1C:A7:B9:2D:8F:9D:A2:F6:C1
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 03EC3BD2
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/_aK_E0P20OYmm38cp7ktj52i9sE.roa
Signing time: Sat 01 Jan 2022 06:00:44 +0000
ROA not before: Sat 01 Jan 2022 06:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.180.0/24 maxlen: 24
2001:7f8:fd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65813458 (0x3ec3bd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 06:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fda2bf1343f6d0e6269b7f1ca7b92d8f9da2f6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fd:e7:87:15:01:cc:c0:33:d1:5d:c3:8a:94:
d5:9f:b2:3d:90:a1:20:1f:c0:68:b1:f7:f9:6e:55:
7c:97:29:36:60:0a:e6:aa:eb:f3:c1:78:cf:b7:44:
76:51:e4:58:a9:ef:a2:41:8e:0e:6e:40:0b:73:d3:
a1:63:55:8c:c2:7e:c3:10:c7:97:c4:74:43:e2:4f:
33:78:0b:fb:47:eb:eb:37:f6:d9:44:53:e0:ce:13:
f1:45:26:b9:70:bf:5b:dd:48:d0:e1:2f:78:cc:55:
cb:7b:f3:22:32:38:78:48:16:c7:77:dc:a9:0f:42:
33:89:38:6b:8d:cd:80:15:bc:a9:a8:c2:06:11:2f:
94:aa:c1:c2:5e:29:28:82:bc:f1:d5:09:c1:c4:7a:
b4:16:1d:43:0b:c9:00:7a:26:66:3c:f6:47:2e:61:
b9:52:d8:ad:de:68:ed:a0:e8:c3:38:3f:4b:e3:de:
5c:11:94:d7:77:65:42:84:24:08:b2:d6:c2:dd:e9:
f5:1a:68:10:25:eb:23:21:1e:d2:4f:36:8d:08:96:
dc:1a:2f:62:30:16:ec:62:6e:f3:da:9a:99:bc:2e:
36:80:a3:55:fe:53:56:61:05:eb:9d:3f:09:c8:d1:
c2:13:3c:89:c2:b6:54:9b:42:6c:43:5c:3c:fe:f5:
c6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A2:BF:13:43:F6:D0:E6:26:9B:7F:1C:A7:B9:2D:8F:9D:A2:F6:C1
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/_aK_E0P20OYmm38cp7ktj52i9sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.180.0/24
IPv6:
2001:7f8:fd::/48
Signature Algorithm: sha256WithRSAEncryption
2c:d8:59:cd:8b:5f:68:95:97:7b:b1:33:07:91:82:ab:d3:41:
d6:6d:cf:6f:25:71:22:99:23:fe:88:46:ef:2d:08:85:77:55:
46:46:e9:1d:83:9b:35:07:36:6e:2c:8f:fa:57:56:90:6a:f4:
8f:2e:da:c5:49:4a:34:34:4f:fc:e3:38:7a:48:2c:0c:71:02:
79:f0:44:c7:2c:06:59:cb:df:cb:72:48:4f:fa:0a:09:b8:1f:
d4:d7:8e:b0:dd:db:26:8c:3c:a4:cb:60:14:8f:22:5f:64:cd:
60:ec:0d:ec:b6:24:cb:e7:4e:ba:a5:dc:49:03:6b:24:9c:22:
8b:35:80:10:28:c6:fc:2d:7f:71:d1:00:4a:c1:1a:0b:94:18:
81:45:50:63:ee:77:de:9d:ce:98:94:40:76:7e:f7:81:38:15:
ee:c3:d4:b5:f8:57:37:23:8a:f7:77:f3:86:eb:9f:0e:70:6d:
41:a8:93:8d:92:ff:3e:08:87:7f:6d:cf:c5:f6:dd:33:34:fa:
b4:73:70:c5:e6:ca:dd:0d:7e:f1:7d:8b:fe:dd:34:70:51:69:
46:ce:08:6d:95:39:e1:f3:08:bc:d3:db:cc:08:c4:d5:46:58:
0d:ca:0b:ea:1c:67:bc:bf:99:35:93:ee:d5:b4:8d:48:34:22:
39:95:1b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:48 2024 by rpki-client on console-fra.rpki-client.org