Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/sfxQCg7FAlyB3zyIC2aopPuN6lA.roa
File: sfxQCg7FAlyB3zyIC2aopPuN6lA.roa (raw, json)
Hash identifier: Q2jNbrr840Y+xW6vipisDmIYjCZ++JZOWrAJhsqDIoM=
Subject key identifier: B1:FC:50:0A:0E:C5:02:5C:81:DF:3C:88:0B:66:A8:A4:FB:8D:EA:50
Certificate issuer: /CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Certificate serial: 090768FF
Authority key identifier: 07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/sfxQCg7FAlyB3zyIC2aopPuN6lA.roa
Signing time: Sat 01 Jan 2022 13:05:58 +0000
ROA not before: Sat 01 Jan 2022 13:05:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209255
IP address blocks: 92.119.52.0/22 maxlen: 22
2a09:b640::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151480575 (0x90768ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd
Validity
Not Before: Jan 1 13:05:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1fc500a0ec5025c81df3c880b66a8a4fb8dea50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3d:e7:f4:6a:0a:42:07:15:ea:0b:fd:21:38:
35:d0:56:1f:95:59:02:ac:4b:9a:3a:24:f1:af:34:
f4:da:f2:8d:b5:71:d7:04:1a:96:8f:a3:6f:96:c2:
89:38:50:d3:b7:a6:31:30:00:73:7c:34:8a:69:18:
b3:1d:a9:f8:2d:a5:3e:ec:85:58:47:83:2b:1c:42:
e9:75:82:56:64:38:f6:29:b0:da:ed:a2:ba:bc:4a:
d8:61:07:fe:00:25:35:99:a1:ea:0c:39:dd:c2:36:
c7:63:da:3f:02:67:c9:7c:d4:a1:ad:f4:4f:18:f3:
06:63:45:21:3f:9a:ab:ee:d4:88:86:93:d5:fc:5c:
fd:73:77:9c:6c:eb:a5:5f:2e:34:2d:81:c3:d9:fd:
48:94:ae:bd:d2:52:1e:95:ee:df:ed:31:c4:b8:7d:
82:3f:03:b4:c7:8c:1d:c8:a9:0f:f8:cd:81:c6:3d:
51:07:a9:72:93:f9:37:a0:5a:33:9d:de:a3:52:02:
ab:37:f3:88:e7:19:16:15:ea:8a:87:6a:56:f3:93:
2d:38:a6:49:1d:4a:43:41:60:a2:4f:7c:1b:ef:1b:
e2:e9:2e:2b:90:84:eb:9a:88:ee:ad:40:92:83:92:
a2:a3:fd:49:13:b3:e4:3e:48:bf:c6:dc:e3:9e:d9:
83:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FC:50:0A:0E:C5:02:5C:81:DF:3C:88:0B:66:A8:A4:FB:8D:EA:50
X509v3 Authority Key Identifier:
keyid:07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/sfxQCg7FAlyB3zyIC2aopPuN6lA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.52.0/22
IPv6:
2a09:b640::/29
Signature Algorithm: sha256WithRSAEncryption
3e:b9:01:6a:e6:11:f7:e5:b5:32:71:5e:09:32:5e:de:0d:8f:
48:ec:1c:7b:07:97:a9:69:34:14:d6:87:d5:19:47:6f:68:7c:
3b:a1:24:01:d2:64:dd:25:8e:af:b8:ba:36:1a:a6:dc:6c:6d:
01:fd:1e:1b:1d:bf:38:74:7a:6b:97:6e:2a:90:cb:94:76:7a:
3f:a3:9b:e7:5f:f5:c7:73:fb:cf:61:25:05:76:64:61:76:76:
71:ee:53:d3:90:29:f6:70:be:8f:0f:8f:6a:e6:01:9b:5a:7f:
47:c3:ad:66:a5:b2:a2:e6:af:f6:c6:33:69:72:2e:c0:65:c0:
48:90:53:d7:9b:7a:0f:12:0c:e4:b4:9a:c4:94:ce:24:73:7a:
49:6f:b3:15:44:54:07:71:83:e4:e5:d3:f2:13:9a:3a:a6:18:
af:9d:68:80:64:65:54:6e:95:0d:9b:13:a0:c0:66:83:d3:08:
32:32:e4:30:5d:af:41:73:30:cf:f9:ef:3a:71:96:88:98:88:
63:8e:f3:5d:b2:ca:da:df:71:bb:7c:8b:66:9b:43:dd:ef:49:
41:7a:17:c2:13:bd:8e:ba:99:0c:f2:39:90:d4:a0:94:55:7a:
0c:22:a6:be:b0:ac:03:a7:45:d1:bb:59:91:11:6d:22:69:e8:
33:d1:63:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:29 2024 by rpki-client on console-fra.rpki-client.org