Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/4B96ugiFxuwxqQZJH1Nscu5i8C8.roa
File: 4B96ugiFxuwxqQZJH1Nscu5i8C8.roa (raw, json)
Hash identifier: 4fINEilotjByvIWgeQJm9j7nPRZq4U2yXzQWx1pcAYk=
Subject key identifier: E0:1F:7A:BA:08:85:C6:EC:31:A9:06:49:1F:53:6C:72:EE:62:F0:2F
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 0182FE226295AD00D7729ACA0AF3DB0E91E8
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/4B96ugiFxuwxqQZJH1Nscu5i8C8.roa
Signing time: Fri 02 Sep 2022 12:17:22 +0000
ROA not before: Fri 02 Sep 2022 12:17:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44794
IP address blocks: 185.235.80.0/24 maxlen: 24
2a0d:4d00:80::/48 maxlen: 48
2a0d:4d00::/48 maxlen: 48
2a0d:4d00:83::/48 maxlen: 48
2a0d:4d00:3::/48 maxlen: 48
2a0d:4d00:1::/48 maxlen: 48
2a0d:4d00:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fe:22:62:95:ad:00:d7:72:9a:ca:0a:f3:db:0e:91:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: Sep 2 12:17:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e01f7aba0885c6ec31a906491f536c72ee62f02f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:22:a6:6a:27:ed:fa:a6:39:08:24:14:a1:64:
89:9d:3e:84:f5:d8:c3:9a:69:28:f9:88:0a:fd:2c:
d1:a8:e0:ca:01:d6:2b:2e:44:87:a9:b0:c5:af:66:
bb:7f:2f:7e:f4:b8:34:ac:76:16:4b:72:37:d1:b8:
95:c7:9d:04:b3:10:62:36:95:e4:7b:25:09:9a:ba:
93:eb:cf:51:26:c2:c4:8f:47:a7:ef:a9:8a:6e:d3:
ac:ae:df:eb:fe:f2:bd:ce:de:2d:47:4a:49:60:ad:
c1:63:6d:fa:9e:55:ef:40:c9:c3:4b:d0:87:c5:ec:
8f:e0:77:fc:69:88:70:cc:0a:4e:62:4b:93:c0:ef:
80:9b:85:27:a3:d3:76:9b:f2:f9:a7:3e:5b:0d:29:
b3:00:09:ea:d0:89:df:77:fa:7e:8d:ca:2d:61:df:
62:11:5e:97:40:3b:bf:06:a5:8b:86:a1:f7:82:91:
61:19:8a:cc:55:1b:5d:7d:95:4c:93:fe:e2:cb:02:
50:e0:e8:d9:9a:af:98:23:9c:d9:7d:55:22:69:56:
3a:8b:6a:4c:6d:c7:1a:57:d2:84:eb:e1:22:37:9e:
31:22:b0:98:0a:c5:5f:8a:95:b6:13:d4:f8:a8:16:
14:38:c3:6f:5d:19:63:2c:4b:de:91:1c:db:c8:18:
87:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:1F:7A:BA:08:85:C6:EC:31:A9:06:49:1F:53:6C:72:EE:62:F0:2F
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/4B96ugiFxuwxqQZJH1Nscu5i8C8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.80.0/24
IPv6:
2a0d:4d00::/46
2a0d:4d00:80::/48
2a0d:4d00:83::/48
Signature Algorithm: sha256WithRSAEncryption
77:87:48:39:81:ab:04:8a:9c:cc:c2:9e:c3:60:a2:51:6f:cc:
91:74:6c:cc:f3:93:46:23:97:15:26:37:11:fd:88:a1:06:c0:
e4:ad:76:76:4d:83:6e:d9:af:3d:76:2e:2a:ab:67:8a:41:66:
88:a8:e0:c1:af:cb:24:a9:4f:cc:6c:8c:7e:7b:21:ab:1e:cc:
24:14:c6:9c:05:34:42:3f:7c:33:bd:88:07:d9:d7:1b:bb:22:
43:6c:4d:09:c9:78:78:fa:61:66:8e:eb:fa:b2:eb:20:3a:28:
a1:22:32:48:b9:cd:c2:38:1d:39:58:e4:87:29:56:8e:b1:7e:
df:c3:35:91:27:64:7e:d3:47:4f:8f:f9:75:45:ed:72:95:5d:
4f:42:9f:e0:4b:b4:5d:1b:a3:f6:b2:ec:ea:1e:1f:5c:05:c6:
ba:ca:58:85:df:a1:6a:3a:f5:93:98:ef:be:94:72:01:d8:51:
14:ea:e4:4a:bf:ef:2b:c7:a8:8f:b9:c1:ef:0c:8b:12:6f:8e:
17:58:84:ea:41:b0:e7:97:f3:93:ea:80:a5:aa:59:68:c9:09:
b2:b2:a8:24:7b:cd:24:cc:15:3f:b0:c4:34:af:df:6d:c0:d8:
87:b3:b7:39:a4:7f:e9:bf:2c:49:fc:8e:3b:4b:2f:8c:8f:6c:
99:5e:87:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:00 2023 by rpki-client on console-fra.rpki-client.org