Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/6b169d-7f1f-4214-a25b-8c498077578f/1/7oNggwwbAqrbu48uXS6LMGNZBTQ.roa
File: 7oNggwwbAqrbu48uXS6LMGNZBTQ.roa (raw, json)
Hash identifier: Eas64jsUT3yqrrWrzBqNpudA2KKsT+Hb7fZtIwV5Ek4=
Subject key identifier: EE:83:60:83:0C:1B:02:AA:DB:BB:8F:2E:5D:2E:8B:30:63:59:05:34
Certificate issuer: /CN=d7ca53ae8442236757a78066e4e21733f758407a
Certificate serial: 0376CCCE
Authority key identifier: D7:CA:53:AE:84:42:23:67:57:A7:80:66:E4:E2:17:33:F7:58:40:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18pTroRCI2dXp4Bm5OIXM_dYQHo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/6b169d-7f1f-4214-a25b-8c498077578f/1/7oNggwwbAqrbu48uXS6LMGNZBTQ.roa
Signing time: Fri 22 Apr 2022 06:44:19 +0000
ROA not before: Fri 22 Apr 2022 06:44:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211941
IP address blocks: 185.197.237.0/24 maxlen: 24
185.197.236.0/24 maxlen: 24
185.197.236.0/22 maxlen: 24
2a0a:7fc0:4::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58117326 (0x376ccce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7ca53ae8442236757a78066e4e21733f758407a
Validity
Not Before: Apr 22 06:44:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee8360830c1b02aadbbb8f2e5d2e8b3063590534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:03:e5:41:3e:58:08:8a:10:ee:b1:b4:39:37:
d1:fa:55:02:f1:27:b2:20:6d:3f:48:9b:ab:54:64:
92:87:a3:43:df:9f:c0:30:49:4e:ac:23:24:5b:38:
6f:36:b2:64:49:89:53:3d:9a:5e:69:2a:93:5f:fc:
9c:12:c4:a2:ce:e7:4f:aa:b0:92:07:e1:df:bc:22:
33:60:3c:b9:3f:71:73:28:d8:b4:58:ba:c3:4c:b1:
b8:dd:1b:0c:86:a1:68:b9:16:09:33:57:db:6f:ef:
c5:8e:7e:b0:ac:a7:e5:b5:32:07:53:2a:b9:60:5f:
1a:fc:08:ac:aa:9d:42:a1:1d:28:95:3e:df:2f:54:
ca:43:4b:4f:39:fe:d9:b9:f6:05:54:19:71:aa:a0:
f8:c7:02:25:c0:59:a1:c6:5c:35:6a:c6:7c:ce:e3:
ee:9a:0b:03:ff:4e:8d:9c:ac:40:78:b7:da:6c:72:
b6:25:d8:24:f2:f0:7c:5a:9a:2e:0c:47:c3:1c:9e:
07:df:75:32:87:1e:c3:29:56:bc:7d:4d:34:90:e6:
0b:f5:21:e1:3f:f5:a4:f9:93:2e:03:ef:39:9c:64:
eb:8c:82:12:d9:af:3b:e7:85:79:9d:73:48:9a:e9:
91:7b:92:be:93:a0:ce:79:d8:f6:c3:c0:e5:3b:0b:
c8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:83:60:83:0C:1B:02:AA:DB:BB:8F:2E:5D:2E:8B:30:63:59:05:34
X509v3 Authority Key Identifier:
keyid:D7:CA:53:AE:84:42:23:67:57:A7:80:66:E4:E2:17:33:F7:58:40:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18pTroRCI2dXp4Bm5OIXM_dYQHo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/6b169d-7f1f-4214-a25b-8c498077578f/1/7oNggwwbAqrbu48uXS6LMGNZBTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/6b169d-7f1f-4214-a25b-8c498077578f/1/18pTroRCI2dXp4Bm5OIXM_dYQHo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.236.0/22
IPv6:
2a0a:7fc0:4::/46
Signature Algorithm: sha256WithRSAEncryption
09:67:f9:c8:ca:2a:df:f7:dc:c9:7c:0f:7b:ab:a7:5f:f5:df:
12:e6:50:51:64:c4:83:dc:13:c0:9a:35:3c:a6:3a:eb:58:fd:
ff:da:a8:a6:17:24:4a:9f:8b:1a:99:e1:79:e3:0f:d6:e2:1f:
d6:8f:b1:11:e7:36:b4:bf:e5:eb:1e:14:ba:7a:31:4b:af:f5:
a2:f4:98:a6:21:c2:14:d2:16:ed:8a:e7:57:6e:f9:c1:62:d2:
44:ca:f4:c8:46:b5:a2:fb:74:0c:9c:b0:c5:ea:6e:5b:18:ba:
8e:88:9e:52:74:25:97:ff:76:f9:e4:ef:ce:f4:c3:7a:4d:26:
8e:5a:d0:84:a5:2d:d3:c9:3a:24:b7:7e:cc:8b:4a:3d:40:c1:
7e:11:79:7b:46:2f:dc:4e:8e:d6:9a:70:d3:38:bb:a8:bd:1b:
2f:ff:17:f4:0f:b0:f9:6d:ec:d3:90:35:8b:70:ac:38:37:97:
0f:7b:0a:cf:56:e9:4b:c6:c4:d8:c7:4c:1b:db:85:31:7a:b1:
66:3e:0b:2f:57:36:93:9a:0b:9b:eb:3d:27:23:cc:b1:8b:fc:
fe:24:a2:f7:8f:12:d3:ca:ae:f4:32:90:39:2c:6e:d0:4c:5c:
95:b0:4a:51:c0:b0:9a:cc:c0:25:6a:87:46:cf:ab:89:53:e1:
60:51:69:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org