Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e82d2a-4041-4811-87a5-783469269b35/1/9Gg08tO4EFzv7ZDsj0bgeCOAALQ.roa
File: 9Gg08tO4EFzv7ZDsj0bgeCOAALQ.roa (raw, json)
Hash identifier: 5f7+XNys31LD6QP64HJ3zchwe2xxIS9z9oogdB1mS+U=
Subject key identifier: F4:68:34:F2:D3:B8:10:5C:EF:ED:90:EC:8F:46:E0:78:23:80:00:B4
Certificate issuer: /CN=4afacad2798856f0f065a265a109706941aca8ea
Certificate serial: 0299D1F6
Authority key identifier: 4A:FA:CA:D2:79:88:56:F0:F0:65:A2:65:A1:09:70:69:41:AC:A8:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SvrK0nmIVvDwZaJloQlwaUGsqOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e82d2a-4041-4811-87a5-783469269b35/1/9Gg08tO4EFzv7ZDsj0bgeCOAALQ.roa
Signing time: Sat 01 Jan 2022 04:52:26 +0000
ROA not before: Sat 01 Jan 2022 04:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47176
IP address blocks: 91.222.84.0/22 maxlen: 22
185.94.100.0/22 maxlen: 22
2a04:aa40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43635190 (0x299d1f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4afacad2798856f0f065a265a109706941aca8ea
Validity
Not Before: Jan 1 04:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f46834f2d3b8105cefed90ec8f46e078238000b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:29:f6:4b:22:86:ba:c0:87:e9:44:2c:6f:fe:
e4:3c:31:c8:c2:57:a9:ad:96:94:9d:3f:da:26:54:
2d:20:9b:e4:82:52:79:6c:ec:35:58:0a:54:46:47:
f1:72:41:53:d3:c3:dd:8b:54:42:b2:f2:f7:8a:70:
62:56:f6:bc:4b:8a:a6:26:7e:e5:90:da:55:5b:4c:
33:8e:8c:08:ac:e4:5b:32:ba:c0:0c:23:53:47:61:
46:cd:14:33:10:8f:78:91:91:7c:6a:ff:99:30:eb:
76:24:df:0a:9f:31:e6:6a:a1:79:09:e2:7d:5e:02:
5c:c2:90:0d:e7:b0:e1:fe:7f:2f:a9:63:8e:85:69:
2a:2a:08:6d:6a:4a:94:e5:95:76:c0:1a:dc:59:a3:
89:c8:00:ba:ff:df:26:13:10:e6:ef:b9:12:5e:ca:
2e:9a:f7:67:cd:aa:03:55:38:c0:fb:c0:c3:fd:92:
48:9d:c5:88:4e:7d:0a:22:05:da:01:4b:c7:af:4c:
aa:a5:8a:46:1a:f4:31:b3:53:7b:fa:f4:26:8d:a7:
43:73:33:1b:8d:9c:14:92:78:61:b5:9c:0a:8d:24:
fc:7d:c5:23:eb:f4:d9:55:08:81:57:bc:3c:f2:e1:
44:59:97:81:43:15:8c:80:82:09:8d:10:30:e8:f7:
16:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:68:34:F2:D3:B8:10:5C:EF:ED:90:EC:8F:46:E0:78:23:80:00:B4
X509v3 Authority Key Identifier:
keyid:4A:FA:CA:D2:79:88:56:F0:F0:65:A2:65:A1:09:70:69:41:AC:A8:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SvrK0nmIVvDwZaJloQlwaUGsqOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e82d2a-4041-4811-87a5-783469269b35/1/9Gg08tO4EFzv7ZDsj0bgeCOAALQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e82d2a-4041-4811-87a5-783469269b35/1/SvrK0nmIVvDwZaJloQlwaUGsqOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.84.0/22
185.94.100.0/22
IPv6:
2a04:aa40::/29
Signature Algorithm: sha256WithRSAEncryption
09:36:11:00:f6:19:55:5e:09:63:55:19:07:89:12:92:b1:35:
2a:e8:c3:bb:c0:78:b2:f4:af:8b:3f:b5:57:9e:9f:ce:48:57:
ea:5d:c6:79:b3:5c:41:d5:38:cf:7b:45:68:dc:7d:55:19:04:
63:55:36:b2:82:88:45:26:72:ec:ac:a5:d6:57:3f:ce:40:f7:
25:d5:a2:2f:73:40:5c:72:44:ee:7c:9d:b1:bd:2b:cd:3a:e4:
d8:bc:14:ff:8a:6d:43:dd:9a:28:66:4b:7a:2b:5b:b2:c4:33:
cd:10:cd:55:7a:13:c0:1f:98:11:2d:91:2a:f7:53:b2:e0:55:
a6:82:62:90:c2:f6:12:99:0a:b3:c3:af:87:6d:70:75:8e:ec:
d7:df:92:f7:df:48:d5:f6:5e:22:5e:67:cb:7a:cc:60:45:ad:
d1:9d:d4:25:eb:81:84:49:1e:41:fe:84:0d:b1:70:71:4e:47:
16:38:32:69:ac:42:f7:93:83:25:74:a3:74:f6:5b:34:80:b8:
52:d8:69:74:17:4b:29:2b:af:20:dd:15:e5:57:40:01:d1:fd:
db:49:d0:f2:3b:d0:26:40:1a:b9:6c:fe:e5:6e:47:f8:19:bb:
29:3c:4b:3b:44:c6:ce:d1:5b:80:cd:dd:21:1a:45:24:1a:28:
28:72:f8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:39 2024 by rpki-client on console-ams.rpki-client.org