Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/f3oJ6g46r3X-pylRUrfAlxkx1JA.roa
File: f3oJ6g46r3X-pylRUrfAlxkx1JA.roa (raw, json)
Hash identifier: EPbO/wgfQihHc9n5SqGK0kWbbNw/2wLm9XMLLNcslWI=
Subject key identifier: 7F:7A:09:EA:0E:3A:AF:75:FE:A7:29:51:52:B7:C0:97:19:31:D4:90
Certificate issuer: /CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Certificate serial: 07FAD0AA
Authority key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/f3oJ6g46r3X-pylRUrfAlxkx1JA.roa
Signing time: Sat 01 Jan 2022 11:00:30 +0000
ROA not before: Sat 01 Jan 2022 11:00:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208642
IP address blocks: 185.202.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133877930 (0x7fad0aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Validity
Not Before: Jan 1 11:00:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f7a09ea0e3aaf75fea7295152b7c0971931d490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f3:bd:14:1b:20:cc:d8:ec:9c:ac:33:a3:1b:
97:f7:ab:94:34:a8:b2:6f:4d:a8:bd:93:e0:ab:93:
be:c2:e1:07:59:3f:7f:44:f5:76:9b:c2:b4:36:49:
aa:00:c4:21:ab:e9:65:51:d4:d1:68:84:a6:43:3b:
12:f2:b4:8f:4f:1b:dd:1b:78:89:4e:76:95:76:b1:
3f:bd:77:c8:0d:51:b4:3a:ff:7e:40:37:b9:dc:2d:
19:4a:dd:8d:8f:87:b1:aa:2a:e4:59:56:22:c5:45:
3b:b1:65:21:8d:5a:b2:76:41:a1:c0:80:3d:8a:a4:
40:d6:a0:c2:54:e4:d5:62:fe:f6:88:bb:d4:aa:b8:
6c:40:8b:22:73:e6:4f:18:c3:c5:53:72:2a:1c:48:
9c:c0:0c:f0:e0:d0:cf:e0:02:b6:98:61:c0:18:df:
59:02:02:60:1c:50:e3:03:02:db:3d:cc:84:f3:b0:
fc:a4:4f:50:7b:0b:f1:e6:79:74:de:a8:a5:54:44:
77:fe:b9:c7:dc:c3:3f:1d:3c:df:88:20:32:52:30:
fa:f2:da:0c:22:41:c1:6e:eb:e2:f6:75:c8:ba:62:
cb:c4:b3:88:42:a8:f6:0d:3b:1c:2c:47:b3:6d:cb:
2e:ea:fe:9e:f2:97:cf:1a:2d:40:3b:d0:9e:a8:cc:
dd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:7A:09:EA:0E:3A:AF:75:FE:A7:29:51:52:B7:C0:97:19:31:D4:90
X509v3 Authority Key Identifier:
keyid:BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/f3oJ6g46r3X-pylRUrfAlxkx1JA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.244.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:98:a2:b3:d5:69:ba:f8:27:af:b1:42:a3:bf:85:93:91:be:
38:a6:3d:4f:df:0d:46:8e:72:10:3a:82:3c:7e:47:61:be:df:
37:6d:3d:9e:1c:8c:42:f2:8c:35:61:cc:e6:2f:0b:ad:75:e6:
3e:31:63:10:ca:18:61:6c:2f:1e:07:89:a5:2d:4c:30:82:85:
20:78:c6:b0:21:0a:99:ba:a7:99:3f:b5:20:01:f4:4d:d9:c4:
1e:ba:87:9d:cd:81:d2:44:06:65:60:12:45:ff:a7:3c:05:5e:
59:7f:c7:7c:8a:f1:ab:19:26:bc:9d:fc:ec:61:d0:0d:a2:66:
90:74:23:5f:4d:62:50:4a:ef:5a:20:fc:ce:36:f4:fe:4c:9c:
9a:b6:b7:2b:f1:ef:dc:dd:a5:59:c7:92:2f:5b:70:fc:cf:5f:
1e:94:c1:0a:e5:f5:51:d9:56:00:f4:90:b3:49:0b:4b:5f:ef:
02:81:d9:22:17:5e:a0:81:7e:e2:ed:74:73:48:0c:2b:72:ed:
0a:c0:60:d2:cb:3a:82:60:c7:76:15:96:e1:28:97:be:7e:ea:
63:05:6d:80:d8:d5:86:4a:be:8b:7e:b2:3c:03:c1:c7:1d:22:
6e:ae:38:bf:46:23:fc:24:40:19:de:70:41:62:2b:9d:d8:78:
76:0a:6d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:29 2024 by rpki-client on console-fra.rpki-client.org