Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/4f7246-ce8f-44f8-a831-ae60bea06a9c/1/7kghxqF4-ubWqETehwWDv3HIQy4.roa
File: 7kghxqF4-ubWqETehwWDv3HIQy4.roa (raw, json)
Hash identifier: LtJ0IpzfGToOKTrLVTSIr2Z7onoxuaoW3ouODLJRBnY=
Subject key identifier: EE:48:21:C6:A1:78:FA:E6:D6:A8:44:DE:87:05:83:BF:71:C8:43:2E
Certificate issuer: /CN=85370cc5d260f3e2aeff5dd8f8f4a415a2345a81
Certificate serial: 04F3F189
Authority key identifier: 85:37:0C:C5:D2:60:F3:E2:AE:FF:5D:D8:F8:F4:A4:15:A2:34:5A:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTcMxdJg8-Ku_13Y-PSkFaI0WoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/4f7246-ce8f-44f8-a831-ae60bea06a9c/1/7kghxqF4-ubWqETehwWDv3HIQy4.roa
Signing time: Sat 01 Jan 2022 07:56:59 +0000
ROA not before: Sat 01 Jan 2022 07:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34702
IP address blocks: 80.79.112.0/20 maxlen: 20
185.246.184.0/22 maxlen: 22
46.22.208.0/20 maxlen: 20
2a01:97a0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83095945 (0x4f3f189)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85370cc5d260f3e2aeff5dd8f8f4a415a2345a81
Validity
Not Before: Jan 1 07:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee4821c6a178fae6d6a844de870583bf71c8432e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c7:7d:c3:71:23:3d:e8:51:ce:ea:8e:18:8e:
62:23:43:05:4b:bd:c0:f9:cd:44:f4:68:21:c3:f2:
25:96:6d:03:cc:bc:f8:d6:2e:96:f3:ab:6d:df:3f:
b9:15:23:27:24:af:fc:af:56:2e:43:9c:6e:f8:73:
69:5e:46:3a:d2:15:bd:35:c0:82:db:7e:1c:58:e9:
f0:c8:d2:2e:75:db:8b:f8:ab:d1:d5:41:25:a0:f5:
7d:71:fc:74:04:97:b3:ec:44:e4:54:77:26:45:79:
b0:fe:f9:5c:04:0a:34:74:c7:a1:e2:e7:d1:8f:f8:
1b:1d:cc:de:1f:5c:52:65:be:9b:12:d9:19:88:f9:
1e:e3:7e:3a:6a:c9:10:1c:3d:e7:ca:7a:bf:c4:1f:
19:47:14:d2:7d:dc:33:bd:00:d5:e4:d3:8a:b2:77:
2f:75:19:1e:7f:04:46:aa:63:b6:8f:4a:e0:74:e3:
3e:45:9f:47:3d:79:2f:25:33:84:1d:11:40:39:35:
17:83:f1:b1:8d:69:75:99:62:1b:68:7d:a0:7a:f7:
29:f1:dc:8d:a7:1f:af:b2:06:9f:0b:18:fe:78:72:
f6:a4:4d:8e:2f:66:62:04:5d:dd:b7:e5:ab:4e:bb:
d5:ed:d5:1a:8f:c9:44:3c:13:5f:6b:b0:88:9b:fe:
93:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:48:21:C6:A1:78:FA:E6:D6:A8:44:DE:87:05:83:BF:71:C8:43:2E
X509v3 Authority Key Identifier:
keyid:85:37:0C:C5:D2:60:F3:E2:AE:FF:5D:D8:F8:F4:A4:15:A2:34:5A:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTcMxdJg8-Ku_13Y-PSkFaI0WoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4f7246-ce8f-44f8-a831-ae60bea06a9c/1/7kghxqF4-ubWqETehwWDv3HIQy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4f7246-ce8f-44f8-a831-ae60bea06a9c/1/hTcMxdJg8-Ku_13Y-PSkFaI0WoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.22.208.0/20
80.79.112.0/20
185.246.184.0/22
IPv6:
2a01:97a0::/32
Signature Algorithm: sha256WithRSAEncryption
91:2e:9f:4f:b2:9e:00:8b:04:2a:0a:1f:9d:55:6c:d2:b7:65:
10:ff:d1:a7:31:6d:e5:da:6e:a2:b3:59:48:c7:7f:f7:02:b9:
5f:ec:78:b7:d4:0a:97:3c:b4:5f:2f:82:aa:e3:6f:70:05:97:
00:10:5a:b2:f4:19:ef:35:86:5a:40:55:d9:30:5d:e7:0a:ec:
8d:e0:53:07:79:58:94:0d:9b:af:52:8e:f3:79:42:cc:bd:7f:
dd:cd:28:6a:8d:12:9b:71:67:e6:bf:3c:0d:63:4b:a6:49:ec:
b2:c2:62:20:d6:ae:19:52:df:0e:22:7a:ca:26:b3:1d:c3:b0:
7b:72:be:1e:ca:e0:f9:bb:a0:38:2d:1e:84:67:09:0f:e2:2e:
9c:51:a9:1a:98:5f:4c:a7:0c:8a:c2:e6:c5:be:4c:14:9a:e0:
b0:ad:5e:f4:4c:4b:df:38:ba:ca:1e:68:c7:a3:46:24:cb:6f:
83:a1:93:28:c9:b1:f2:a5:0c:6c:d2:48:1e:70:cf:89:0d:35:
91:2e:ba:4a:d7:fb:75:99:04:91:3c:81:67:1e:87:c2:d5:a0:
b9:39:e7:72:f7:84:6e:aa:64:b9:0b:20:51:12:c6:02:96:3c:
29:9c:59:4f:b8:e5:43:28:df:11:75:e3:d8:1d:ba:eb:10:e0:
a9:c5:80:00
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org