Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/494f27-4bbc-4b38-849b-d888a0689c19/1/sU17Gg0m969vhQZ9SYK-iu96nn4.roa
File: sU17Gg0m969vhQZ9SYK-iu96nn4.roa (raw, json)
Hash identifier: eP/YM+PR7AQgFxkCHE+EAYGZ3+RvKcevDxkXc7KgWQA=
Subject key identifier: B1:4D:7B:1A:0D:26:F7:AF:6F:85:06:7D:49:82:BE:8A:EF:7A:9E:7E
Certificate issuer: /CN=fdcb976bb6029216f7a2ad05b7932f4a55e0cf8a
Certificate serial: 0B7C6730
Authority key identifier: FD:CB:97:6B:B6:02:92:16:F7:A2:AD:05:B7:93:2F:4A:55:E0:CF:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_cuXa7YCkhb3oq0Ft5MvSlXgz4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/494f27-4bbc-4b38-849b-d888a0689c19/1/sU17Gg0m969vhQZ9SYK-iu96nn4.roa
Signing time: Sat 01 Jan 2022 06:52:54 +0000
ROA not before: Sat 01 Jan 2022 06:52:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201080
IP address blocks: 185.167.16.0/22 maxlen: 22
2a0b:3200::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192702256 (0xb7c6730)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdcb976bb6029216f7a2ad05b7932f4a55e0cf8a
Validity
Not Before: Jan 1 06:52:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b14d7b1a0d26f7af6f85067d4982be8aef7a9e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:39:97:fe:dc:cd:c6:ce:55:70:18:33:e6:ed:
6d:a0:2d:a1:60:00:2f:70:e2:6c:30:f1:e6:c3:39:
b4:b8:c0:c4:99:ac:03:ed:ae:7a:5b:4c:e2:fa:5c:
99:01:f1:a4:3a:85:8c:5d:4c:cb:57:6c:60:4f:26:
b3:17:f5:5b:76:3b:a1:ca:89:d5:ac:b9:ed:ec:34:
9d:c3:92:ee:dd:50:65:d3:2d:6a:fc:5d:d6:e7:9f:
5b:33:87:b4:90:e9:35:0b:e9:2f:fb:8b:ab:30:6f:
81:2f:9d:18:b2:40:c7:06:bc:ea:37:48:6e:39:4f:
97:c1:3c:d7:33:ba:3c:09:66:6c:ac:93:63:2b:a7:
1f:5f:8b:2e:8c:a3:94:18:0d:66:66:7e:1b:8f:b9:
82:20:fb:46:03:ec:e8:83:f3:09:92:d8:c2:a2:69:
6b:7f:20:bb:61:23:64:39:09:11:49:8f:ff:ff:16:
bb:9b:7a:6f:d5:20:8a:09:cb:7e:e1:08:e6:70:0b:
3e:f6:61:8f:ff:3a:c6:4c:1d:0c:cd:5c:0d:19:9f:
c1:7e:5f:84:29:0e:d2:b0:c3:70:ea:c0:67:94:7f:
4d:0c:37:75:4f:b1:33:66:46:3a:40:4e:13:71:c9:
e3:48:1e:a6:03:ab:39:a3:a7:8d:21:63:6d:ea:f9:
f1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4D:7B:1A:0D:26:F7:AF:6F:85:06:7D:49:82:BE:8A:EF:7A:9E:7E
X509v3 Authority Key Identifier:
keyid:FD:CB:97:6B:B6:02:92:16:F7:A2:AD:05:B7:93:2F:4A:55:E0:CF:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_cuXa7YCkhb3oq0Ft5MvSlXgz4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/494f27-4bbc-4b38-849b-d888a0689c19/1/sU17Gg0m969vhQZ9SYK-iu96nn4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/494f27-4bbc-4b38-849b-d888a0689c19/1/_cuXa7YCkhb3oq0Ft5MvSlXgz4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.16.0/22
IPv6:
2a0b:3200::/31
Signature Algorithm: sha256WithRSAEncryption
7f:04:bb:c6:06:6a:1b:68:d5:bf:e6:8a:db:a1:0a:b6:91:b5:
c0:3d:79:ca:7f:7e:82:50:6c:ec:45:a0:7d:18:85:4b:24:74:
05:68:59:28:22:45:51:49:8a:55:82:fd:70:87:5f:23:c3:bd:
f7:1b:6f:f1:fb:18:0b:4c:80:3e:1b:15:77:a9:41:21:28:35:
a2:63:5d:1d:2e:cc:e0:49:55:ff:7b:b4:a9:c0:1a:d8:9f:74:
2e:34:78:e4:29:6f:01:97:42:b6:12:58:06:35:21:ed:c1:5a:
67:36:3c:d4:8a:82:d7:1d:1c:ac:19:ee:e3:7b:96:ed:3c:23:
5d:bf:93:da:7a:49:d8:28:c6:58:a7:bb:18:d2:eb:aa:a3:8f:
4d:a2:95:62:db:93:a7:8a:6d:69:76:1e:93:8d:25:29:cd:6e:
b1:5d:c3:05:d4:9b:64:34:92:b8:80:2e:20:41:03:9e:b4:29:
cc:da:3b:55:22:da:79:b6:31:ec:d1:bd:4f:e6:df:1c:d2:61:
75:d5:ae:90:23:65:09:35:6a:26:87:28:70:ec:63:54:d1:d0:
cc:3e:ec:95:1b:1a:ff:7a:42:22:3c:da:7a:4c:14:46:eb:af:
9b:83:ba:f2:1f:e3:ca:34:73:1c:68:b6:57:dc:73:26:35:bc:
75:06:29:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:43 2024 by rpki-client on console-fra.rpki-client.org