Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/848406-5826-4dbc-b93e-5d27c75aae6f/1/pP75CrCcijcDXxdtEihLXkpbf70.roa
File: pP75CrCcijcDXxdtEihLXkpbf70.roa (raw, json)
Hash identifier: nt7TPVvIeEKRpq2Xy+5/wh2OJiPtu9jeRgNfDclDono=
Subject key identifier: A4:FE:F9:0A:B0:9C:8A:37:03:5F:17:6D:12:28:4B:5E:4A:5B:7F:BD
Certificate issuer: /CN=8c07ecd7666ccef91e82f7ecbce0ba285336fb45
Certificate serial: 035869AC
Authority key identifier: 8C:07:EC:D7:66:6C:CE:F9:1E:82:F7:EC:BC:E0:BA:28:53:36:FB:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jAfs12ZszvkegvfsvOC6KFM2-0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/848406-5826-4dbc-b93e-5d27c75aae6f/1/pP75CrCcijcDXxdtEihLXkpbf70.roa
Signing time: Sat 01 Jan 2022 11:53:49 +0000
ROA not before: Sat 01 Jan 2022 11:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48303
IP address blocks: 185.199.104.0/22 maxlen: 22
2a0a:9bc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56125868 (0x35869ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c07ecd7666ccef91e82f7ecbce0ba285336fb45
Validity
Not Before: Jan 1 11:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4fef90ab09c8a37035f176d12284b5e4a5b7fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:03:00:3a:61:0a:79:0e:35:f9:ab:0b:39:c2:
4d:f6:06:44:5c:66:c6:9a:38:d7:f8:32:8c:0c:dd:
82:23:0d:ab:15:f3:9b:ec:02:4d:98:04:aa:e0:fa:
1f:74:c5:84:cc:79:5f:52:d5:19:07:c9:59:cd:07:
70:6b:cb:e8:19:2c:fc:87:2f:f6:07:ad:99:c0:9d:
c7:c7:bc:30:ea:ca:09:7d:3d:50:cc:b3:b8:a6:51:
7c:67:b6:af:3e:15:c8:11:8e:22:d3:7c:3c:54:40:
28:79:ba:4e:ba:8d:80:c3:fd:88:24:3d:d3:a1:d8:
bb:df:60:11:9a:ad:17:00:40:16:b1:2c:97:8b:5e:
76:1a:c8:f6:c3:19:77:55:36:7d:be:6e:64:51:e1:
0b:01:ac:2d:c6:53:f8:a4:b6:10:1b:58:c1:72:4a:
be:45:d4:52:e8:54:18:13:c9:75:5a:46:4a:67:f9:
a0:87:f7:fe:28:6e:9d:22:b1:f2:5a:27:81:aa:d0:
71:d6:fc:5e:1c:eb:6d:c1:8a:38:5a:08:8b:48:e8:
da:3f:88:0a:69:a9:b0:81:74:6c:fd:d5:4f:a9:a5:
57:ce:e0:16:3b:8f:3c:f5:bf:d2:d9:2d:8f:fb:0a:
c2:f1:21:e4:30:4f:ff:08:3e:4f:90:f4:37:18:8b:
65:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:FE:F9:0A:B0:9C:8A:37:03:5F:17:6D:12:28:4B:5E:4A:5B:7F:BD
X509v3 Authority Key Identifier:
keyid:8C:07:EC:D7:66:6C:CE:F9:1E:82:F7:EC:BC:E0:BA:28:53:36:FB:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jAfs12ZszvkegvfsvOC6KFM2-0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/848406-5826-4dbc-b93e-5d27c75aae6f/1/pP75CrCcijcDXxdtEihLXkpbf70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/848406-5826-4dbc-b93e-5d27c75aae6f/1/jAfs12ZszvkegvfsvOC6KFM2-0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.104.0/22
IPv6:
2a0a:9bc0::/29
Signature Algorithm: sha256WithRSAEncryption
57:ab:67:f1:b4:78:f1:5a:62:2a:28:46:63:9b:4a:94:7f:f0:
bd:c7:78:a6:14:43:30:81:bf:d0:6c:d7:45:9e:9c:14:a8:e5:
70:60:e8:63:f7:db:d5:c1:41:b6:a6:1c:e3:f9:aa:f5:74:73:
f8:f8:00:96:b2:cd:92:56:28:6f:10:f0:0f:42:d1:35:3a:ba:
4a:47:41:7f:8a:0f:da:9c:f8:10:9b:34:ac:e1:36:ef:ef:2f:
1b:79:85:9a:57:93:b3:e1:a5:5a:e6:4e:7d:b8:b5:7d:79:f0:
9a:c8:a5:34:16:09:ec:51:15:68:de:2f:b6:90:6a:95:e2:5c:
d9:e0:04:3f:79:e2:67:41:8a:1a:b5:ce:53:56:23:6b:84:e4:
23:5d:f3:58:7e:8a:8f:c1:ad:ce:d0:6e:ba:3f:4c:5a:f4:95:
4d:de:d9:72:cd:9b:29:42:fe:d1:d9:38:29:77:15:54:1e:26:
a7:71:25:d1:4a:50:60:ef:80:79:cb:10:12:b9:2b:ab:9b:4a:
90:d3:d7:c4:fc:98:c2:6c:a1:f0:77:0e:66:e2:f0:06:a3:7c:
e2:fe:29:0f:fa:4d:b1:7f:be:de:24:68:db:24:fa:cf:00:69:
e7:6c:86:f5:97:58:f7:7f:b1:e8:fa:02:f9:12:9b:3c:a0:eb:
18:e7:b3:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:56 2023 by rpki-client on console-fra.rpki-client.org