Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/F3LZKyg9B7h5pU7wQ4wzdhf4d30.roa
File: F3LZKyg9B7h5pU7wQ4wzdhf4d30.roa (raw, json)
Hash identifier: QLjYUNm6pep/6avWPs1CrKKd6BMTsORAA9KEUAmf4as=
Subject key identifier: 17:72:D9:2B:28:3D:07:B8:79:A5:4E:F0:43:8C:33:76:17:F8:77:7D
Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Certificate serial: 0ABFF174
Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/F3LZKyg9B7h5pU7wQ4wzdhf4d30.roa
Signing time: Sat 01 Jan 2022 09:59:39 +0000
ROA not before: Sat 01 Jan 2022 09:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200069
IP address blocks: 185.211.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180351348 (0xabff174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d
Validity
Not Before: Jan 1 09:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1772d92b283d07b879a54ef0438c337617f8777d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:57:fb:ca:d9:3d:e8:2f:cf:47:9d:7a:19:e5:
e1:b7:9e:e8:ce:4f:32:c2:27:a4:39:7c:13:9b:16:
fe:c2:9b:81:61:9d:1a:5a:77:bc:2e:29:f1:1a:85:
15:a8:75:04:2d:b6:80:ac:b4:87:96:c4:25:36:c7:
87:ab:3e:bf:69:d9:1b:9f:69:eb:84:b7:db:de:24:
1a:08:f1:74:28:86:48:0d:61:61:09:d6:c7:eb:41:
0b:0a:14:e1:35:34:76:4e:f4:02:17:5e:e0:4f:f1:
53:13:12:2c:23:46:c8:b3:9f:76:9a:8e:af:7f:51:
c2:09:06:f0:14:2e:8a:e9:fc:eb:5f:24:39:89:61:
df:53:b4:c3:b7:09:8e:ec:54:0e:83:02:22:b7:9f:
9a:d0:32:b3:1e:5d:c7:ea:d7:06:e5:0b:db:03:2b:
a0:f1:b0:b5:52:d5:57:02:9b:05:37:79:5d:fc:df:
8c:6f:9e:f1:6a:37:d3:5b:1b:bf:0e:82:9c:3b:ca:
79:f9:0d:ea:b0:de:13:e4:ba:d8:7f:13:37:f0:c8:
e2:ca:74:a3:12:43:51:ec:d5:a8:57:83:c2:1a:de:
a0:aa:6d:1d:9f:37:26:4f:e1:0e:da:64:27:18:9a:
75:f9:ec:42:72:ec:e3:19:a0:0d:6d:03:26:54:fe:
10:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:72:D9:2B:28:3D:07:B8:79:A5:4E:F0:43:8C:33:76:17:F8:77:7D
X509v3 Authority Key Identifier:
keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/F3LZKyg9B7h5pU7wQ4wzdhf4d30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.120.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:48:4a:39:98:4f:c1:d0:4a:5f:a0:0a:b5:34:80:b1:ca:87:
f3:70:58:e6:b7:9c:b5:bb:13:80:1d:ef:96:b0:e1:1f:ba:62:
59:d0:72:20:46:56:c3:77:d2:d8:85:6a:b3:a4:63:1a:0d:ca:
c7:ae:e5:c4:81:20:86:d8:cf:b8:09:ee:a8:ca:16:92:28:de:
a5:2b:73:5f:c5:81:5c:02:1d:2f:88:d1:03:35:f7:5b:b5:41:
d9:17:0f:5b:3a:c6:0f:d7:97:d3:b4:23:c8:ad:f6:5f:a9:6c:
78:8d:9e:ab:9d:71:d0:d6:37:8f:5d:b4:d0:e6:a7:34:66:5d:
d5:e6:e7:74:c2:b5:e9:3c:24:9d:06:7d:bd:7b:87:7d:c1:f2:
db:16:af:79:ef:ec:c1:87:98:b0:c6:d7:4f:9a:60:d5:8b:e8:
cd:af:8b:64:f6:95:7d:17:2e:65:17:0d:50:35:e6:33:04:e0:
4b:2a:27:6d:63:3d:62:a1:56:3b:16:8a:b6:33:ff:af:c5:3d:
3a:d3:e4:27:80:5a:60:64:c6:70:04:57:46:42:64:66:e8:58:
54:86:1e:21:3c:7c:9c:36:48:2a:25:e4:fa:b7:7c:a3:10:6b:
b2:8c:0c:ff:16:c7:1b:4c:14:ce:32:8f:23:29:71:3f:fc:0a:
05:42:3b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:52 2024 by rpki-client on console-fra.rpki-client.org