Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b2f7a0-06c4-4ab5-85aa-10144c1bcafc/1/Tx_Qs2KNLpW0tDuRiuBrfSIgYVs.roa
File: Tx_Qs2KNLpW0tDuRiuBrfSIgYVs.roa (raw, json)
Hash identifier: OsSF5DqFQKRI8+buXOvTKVy1rxOSMapWRuRY8098XKg=
Subject key identifier: 4F:1F:D0:B3:62:8D:2E:95:B4:B4:3B:91:8A:E0:6B:7D:22:20:61:5B
Certificate issuer: /CN=2f7a464b894841b3b940e0b357b865e393b1dd46
Certificate serial: 018267C7CB1EB6AA583391B5AA62193FC957
Authority key identifier: 2F:7A:46:4B:89:48:41:B3:B9:40:E0:B3:57:B8:65:E3:93:B1:DD:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L3pGS4lIQbO5QOCzV7hl45Ox3UY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/b2f7a0-06c4-4ab5-85aa-10144c1bcafc/1/Tx_Qs2KNLpW0tDuRiuBrfSIgYVs.roa
Signing time: Thu 04 Aug 2022 07:35:23 +0000
ROA not before: Thu 04 Aug 2022 07:35:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60672
IP address blocks: 185.137.222.0/24 maxlen: 24
185.137.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:67:c7:cb:1e:b6:aa:58:33:91:b5:aa:62:19:3f:c9:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f7a464b894841b3b940e0b357b865e393b1dd46
Validity
Not Before: Aug 4 07:35:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f1fd0b3628d2e95b4b43b918ae06b7d2220615b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7e:3b:64:58:43:0c:d0:f5:02:67:3f:ed:c4:
a3:eb:31:08:cb:e8:6a:12:f6:47:44:21:17:b9:c0:
85:5d:aa:2f:b5:6e:92:5b:4d:a9:76:6d:0f:77:3f:
39:6a:40:f8:3e:63:85:21:d3:b7:14:42:32:90:36:
5f:95:f8:e6:7f:23:27:ab:f2:be:51:3c:ea:c8:3e:
fd:30:42:fd:f9:14:e5:90:fc:0c:a0:4a:0e:87:f6:
b0:bf:ae:72:be:fd:c3:6c:00:73:4f:43:3b:bf:58:
1c:2c:da:4c:70:b6:4a:35:c3:42:c2:91:57:21:00:
fa:d7:6b:c4:5e:0d:f2:88:d9:2a:be:5e:08:eb:62:
35:2e:de:0f:b6:5a:41:c8:63:2a:71:cf:6d:e6:a2:
6f:46:77:50:5c:3f:4f:c7:c2:90:8d:dc:fc:9f:22:
66:8a:d1:69:5e:8c:97:86:97:fd:2c:d9:f6:7b:83:
59:28:3e:73:50:2f:7d:57:60:34:c6:83:3f:a4:fe:
ef:db:96:2c:1e:5d:af:0d:39:87:2d:7f:4a:91:4d:
58:78:99:f0:7c:ff:c0:21:03:4c:7d:6a:91:a5:f9:
23:f9:5d:96:a8:32:3c:b7:05:32:8e:5e:dc:3e:0e:
09:6f:9c:7e:1c:d1:4a:c2:a6:b0:c7:be:45:bf:45:
26:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:1F:D0:B3:62:8D:2E:95:B4:B4:3B:91:8A:E0:6B:7D:22:20:61:5B
X509v3 Authority Key Identifier:
keyid:2F:7A:46:4B:89:48:41:B3:B9:40:E0:B3:57:B8:65:E3:93:B1:DD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L3pGS4lIQbO5QOCzV7hl45Ox3UY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b2f7a0-06c4-4ab5-85aa-10144c1bcafc/1/Tx_Qs2KNLpW0tDuRiuBrfSIgYVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b2f7a0-06c4-4ab5-85aa-10144c1bcafc/1/L3pGS4lIQbO5QOCzV7hl45Ox3UY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.220.0-185.137.222.255
Signature Algorithm: sha256WithRSAEncryption
90:8e:63:bd:bb:75:cf:9b:5b:f0:5a:fb:a3:c4:b5:a6:b7:11:
1b:43:26:ef:3b:86:45:ad:9b:72:0e:d5:99:ee:6b:a7:81:84:
50:da:b6:2a:ea:e1:d4:a4:7b:6b:db:e8:ad:50:46:23:ec:cf:
03:c0:94:3f:aa:8d:6f:c8:fd:51:e5:c9:e0:83:51:03:da:dc:
80:ac:ea:74:7d:9a:d5:02:82:bc:cd:06:30:04:0d:ac:f6:63:
1a:1f:af:ce:57:29:f1:f8:2e:02:5f:2b:1f:e6:91:3a:88:0b:
5a:70:0b:be:1d:a6:31:22:6b:cb:c2:63:df:e8:a9:0b:d1:30:
ca:d1:74:6a:b6:9d:d4:42:d9:85:53:17:eb:e9:af:d8:a3:61:
5f:ca:85:2f:b6:d4:fa:2d:73:84:c7:ac:a8:6e:4e:d3:83:4d:
43:ff:cf:2c:65:b5:85:72:82:9c:70:ab:3e:85:11:f0:c6:96:
db:13:0e:7d:aa:10:59:07:95:59:6e:f7:a9:13:cc:7c:c6:e7:
77:7e:08:5c:46:33:2e:cf:b5:9f:7f:e0:7b:18:b7:c1:03:21:
13:ac:98:88:be:2a:64:34:d9:35:bc:84:29:79:b3:36:39:55:
22:3e:d4:04:c6:55:93:9e:ab:c2:bc:f8:44:77:af:1a:b0:70:
0a:c5:26:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:01 2024 by rpki-client on console-fra.rpki-client.org