Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/96pui9DSmLQqDPujUDG49ikHbnQ.roa
File: 96pui9DSmLQqDPujUDG49ikHbnQ.roa (raw, json)
Hash identifier: 6Ipn/YQ+I+1fG3cAKf5KQC/OgK+TvtXOkTRNZ1KtMDY=
Subject key identifier: F7:AA:6E:8B:D0:D2:98:B4:2A:0C:FB:A3:50:31:B8:F6:29:07:6E:74
Certificate issuer: /CN=1659eb6040193df0681350905e639d0e58d5f9df
Certificate serial: 05DDEC6F
Authority key identifier: 16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/96pui9DSmLQqDPujUDG49ikHbnQ.roa
Signing time: Mon 16 May 2022 23:06:29 +0000
ROA not before: Mon 16 May 2022 23:06:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 185.154.80.0/22 maxlen: 24
2a05:f500:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98430063 (0x5ddec6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1659eb6040193df0681350905e639d0e58d5f9df
Validity
Not Before: May 16 23:06:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7aa6e8bd0d298b42a0cfba35031b8f629076e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:97:27:a2:a3:b0:f3:b5:7a:3a:c4:c4:04:f2:
35:b9:c3:ce:0c:90:42:34:b5:65:a2:f6:1b:3c:9b:
24:80:19:d4:f1:a2:99:fe:9e:8d:4e:80:0c:83:8e:
cc:f4:b1:e9:20:91:0d:8d:eb:59:d9:b3:bb:49:8b:
ea:ac:0c:71:56:2a:60:c7:25:15:2f:1c:50:c7:ee:
46:0c:55:5c:e6:f2:8a:dc:41:01:18:50:f5:69:b6:
9d:de:2f:e5:96:d6:be:8a:4d:9a:4d:dd:b3:42:f1:
e7:fa:40:d1:05:47:a5:df:a2:37:bc:cd:2f:4b:c0:
55:d1:45:24:b8:85:cd:c6:99:86:12:e7:ef:99:95:
37:c1:f1:0e:28:04:e4:78:48:ae:0b:75:98:dc:3e:
b9:6a:20:15:31:cf:44:1c:e5:98:5f:01:6b:52:15:
3d:32:08:7a:7d:a2:ab:82:0f:3d:31:1d:13:49:e0:
72:83:b0:c1:3e:01:f8:ef:50:1b:70:7d:41:0c:e3:
44:08:44:bf:b8:ed:83:15:71:0e:4a:2f:7a:6a:52:
9b:98:1d:7d:47:da:5e:93:56:e9:62:47:12:f3:ad:
3e:77:7d:c2:9c:93:12:45:f2:11:a6:d8:77:23:fa:
01:38:bb:7d:f1:d4:29:79:02:d3:10:50:2b:b0:a7:
72:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AA:6E:8B:D0:D2:98:B4:2A:0C:FB:A3:50:31:B8:F6:29:07:6E:74
X509v3 Authority Key Identifier:
keyid:16:59:EB:60:40:19:3D:F0:68:13:50:90:5E:63:9D:0E:58:D5:F9:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlnrYEAZPfBoE1CQXmOdDljV-d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/96pui9DSmLQqDPujUDG49ikHbnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/ff5133-ca11-42db-b03d-544855cc4f57/1/FlnrYEAZPfBoE1CQXmOdDljV-d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.80.0/22
IPv6:
2a05:f500:2::/48
Signature Algorithm: sha256WithRSAEncryption
11:c1:cb:12:6b:9f:bb:e4:fe:03:7e:ea:fb:9d:15:18:25:45:
0e:1d:a9:bf:32:98:70:e2:36:c8:60:e6:e5:b8:c8:d2:90:8e:
3b:51:0d:3d:2d:69:45:e0:3a:e6:9d:a2:4c:46:75:a2:bb:7d:
41:a0:9f:aa:f2:25:b7:aa:ca:d7:25:2f:f7:56:39:b6:be:3d:
f2:ae:18:49:b3:0a:29:72:c1:ee:63:dc:29:97:b1:a3:31:f8:
39:1c:5f:4e:3a:58:5e:a8:41:01:cf:e9:10:1f:36:d2:7f:8d:
9b:a6:64:06:c1:b5:3b:14:06:3f:59:e3:62:9e:73:77:5a:a2:
41:6a:78:91:db:5d:f9:0d:f4:bd:ed:4e:d1:56:7d:bc:98:ff:
ca:5b:75:5f:c3:ec:b1:c6:ae:11:4b:fd:0e:2f:66:95:1e:ad:
dd:23:24:76:b2:7a:c5:e0:7c:70:e7:88:7d:54:39:72:07:1f:
b8:f1:9e:2e:1b:92:93:40:bf:22:60:59:11:7e:ef:17:d4:08:
b3:49:40:e4:ea:cc:39:93:de:3d:7f:00:00:78:9a:16:8c:a6:
1e:94:97:4e:f5:02:c5:98:3f:c2:bc:5c:43:8d:96:68:8d:84:
22:f9:8b:eb:7f:2b:b8:41:1c:a0:eb:17:78:39:56:5b:e2:c2:
ab:b8:83:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:25 2024 by rpki-client on console-ams.rpki-client.org