Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/7d2944-1ed6-4fcd-8c5c-77b4bbe35a9e/1/KC7cZheGRY-F94KSVcMuJ6jV5Hk.roa
File: KC7cZheGRY-F94KSVcMuJ6jV5Hk.roa (raw, json)
Hash identifier: U2/MDTTF6UPxo1MZ883EX0uv7SrPRQdH6nEbagQHn50=
Subject key identifier: 28:2E:DC:66:17:86:45:8F:85:F7:82:92:55:C3:2E:27:A8:D5:E4:79
Certificate issuer: /CN=bc6d2ed7794d3217cfaafe1cad53f755b82ce3a9
Certificate serial: 0A1664EA
Authority key identifier: BC:6D:2E:D7:79:4D:32:17:CF:AA:FE:1C:AD:53:F7:55:B8:2C:E3:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vG0u13lNMhfPqv4crVP3Vbgs46k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/7d2944-1ed6-4fcd-8c5c-77b4bbe35a9e/1/KC7cZheGRY-F94KSVcMuJ6jV5Hk.roa
Signing time: Sat 01 Jan 2022 09:58:00 +0000
ROA not before: Sat 01 Jan 2022 09:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39668
IP address blocks: 185.132.172.0/22 maxlen: 22
2a09:4080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169239786 (0xa1664ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc6d2ed7794d3217cfaafe1cad53f755b82ce3a9
Validity
Not Before: Jan 1 09:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=282edc661786458f85f7829255c32e27a8d5e479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7a:64:ae:1c:79:f4:84:a0:7c:c4:29:af:c4:
83:6f:df:4c:6b:40:da:15:d8:5b:9d:80:63:6c:69:
d6:06:d1:17:ef:51:3d:21:7e:fc:11:0a:ef:2e:73:
ba:d2:5d:ff:78:98:3f:a2:01:92:c8:2f:85:90:06:
a3:a5:64:be:c1:ea:34:d3:f6:6e:1b:4b:34:2f:1b:
30:61:24:b6:9e:28:c4:67:8d:50:e6:7a:d1:88:ac:
b8:33:26:fd:d7:5d:47:c6:73:7e:8c:9e:84:65:2d:
e4:db:19:8e:29:2c:35:98:79:f8:f2:2b:17:e5:a6:
8d:23:5e:f9:8f:ee:41:6f:cc:0d:3e:69:e5:a3:02:
b9:5e:3c:8f:1b:41:fe:9e:2b:87:8f:94:47:be:c1:
51:37:12:7b:f9:13:9a:54:f8:b7:61:3c:73:2d:88:
57:37:a7:7c:4b:58:1f:a0:68:00:1c:b3:2f:4f:02:
a1:6e:ac:ed:87:28:7b:17:b0:51:ec:36:90:2f:b2:
ab:54:cd:24:49:9d:cf:52:cb:7d:92:a5:ec:4c:fc:
88:9c:84:6d:66:34:fe:78:bf:0f:32:d6:3e:49:3d:
dc:a4:f4:41:d5:1f:0f:22:ca:71:2a:69:79:39:2d:
de:13:65:7e:88:d8:2e:bf:1a:13:66:25:40:52:fe:
2d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2E:DC:66:17:86:45:8F:85:F7:82:92:55:C3:2E:27:A8:D5:E4:79
X509v3 Authority Key Identifier:
keyid:BC:6D:2E:D7:79:4D:32:17:CF:AA:FE:1C:AD:53:F7:55:B8:2C:E3:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vG0u13lNMhfPqv4crVP3Vbgs46k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7d2944-1ed6-4fcd-8c5c-77b4bbe35a9e/1/KC7cZheGRY-F94KSVcMuJ6jV5Hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/7d2944-1ed6-4fcd-8c5c-77b4bbe35a9e/1/vG0u13lNMhfPqv4crVP3Vbgs46k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.172.0/22
IPv6:
2a09:4080::/29
Signature Algorithm: sha256WithRSAEncryption
09:f4:f6:ee:2d:f5:20:79:45:eb:e0:8e:64:11:5d:73:66:28:
c3:a6:8e:0f:b6:4d:26:f8:32:51:65:33:4f:46:a9:3e:00:07:
c7:23:98:e6:d3:de:71:10:0e:26:5c:5e:d7:99:00:ca:99:d7:
43:fa:cb:32:36:2e:e7:3e:3b:6b:cf:31:f2:f5:5a:1b:f5:85:
3c:00:12:b0:1a:45:e9:99:cb:c0:0f:32:25:a6:56:86:bd:49:
56:f7:f7:dd:be:8a:d9:19:2d:3f:57:58:94:c2:e3:9d:1e:d2:
3b:6b:87:52:d0:a9:a1:62:68:2b:37:10:ea:db:59:0b:3e:e1:
2e:fe:3b:54:c8:c6:ad:34:a5:06:0e:93:4d:fb:a3:76:19:fc:
14:78:97:e3:ea:c6:8d:aa:0e:97:29:03:5b:e5:56:9c:01:35:
13:29:17:13:eb:20:02:63:26:0b:9c:8d:ed:59:fe:97:a4:1d:
61:f5:94:96:5f:da:81:7d:91:1f:07:79:85:e6:77:8f:ec:e9:
77:d4:bb:1a:4a:aa:43:29:4d:cd:70:1d:58:0d:b9:79:fe:20:
c8:ad:6f:55:d2:eb:f7:c4:36:39:bf:f3:9b:73:36:9e:18:3f:
5b:6c:79:73:5a:e3:e2:94:a0:33:49:7e:c3:54:3f:80:97:2d:
8c:78:b6:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:55 2024 by rpki-client on console-fra.rpki-client.org