Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/7bUfEdsMFrJQ9ZHrXdq1B8shHiA.roa
File: 7bUfEdsMFrJQ9ZHrXdq1B8shHiA.roa (raw, json)
Hash identifier: 945z5Wsvqu0PHgS1vK40/3myrdhXRrCy81Z7g7IlehI=
Subject key identifier: ED:B5:1F:11:DB:0C:16:B2:50:F5:91:EB:5D:DA:B5:07:CB:21:1E:20
Certificate issuer: /CN=4ddd0f9dcd88949b8f3a3771063562a057679290
Certificate serial: 0B8C7CD3
Authority key identifier: 4D:DD:0F:9D:CD:88:94:9B:8F:3A:37:71:06:35:62:A0:57:67:92:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Td0Pnc2IlJuPOjdxBjVioFdnkpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/7bUfEdsMFrJQ9ZHrXdq1B8shHiA.roa
Signing time: Sat 01 Jan 2022 06:54:07 +0000
ROA not before: Sat 01 Jan 2022 06:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204810
IP address blocks: 185.239.56.0/22 maxlen: 22
2a0c:4b80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193756371 (0xb8c7cd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ddd0f9dcd88949b8f3a3771063562a057679290
Validity
Not Before: Jan 1 06:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edb51f11db0c16b250f591eb5ddab507cb211e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fb:d7:27:c3:57:b9:79:68:6e:82:27:59:23:
f6:cf:d9:aa:22:ac:fb:b5:32:7f:e4:cd:af:39:54:
a9:ee:d9:96:1f:22:d9:15:7a:d9:34:58:40:c7:c6:
2b:95:c6:9d:ba:d1:5b:5c:fd:a1:2a:7c:67:bb:fb:
9c:c2:c3:48:e1:3e:dc:8a:98:68:d6:e1:bc:65:d0:
a2:0a:bd:44:42:84:19:39:f2:8c:29:6e:f7:b2:4a:
d4:c9:0e:28:c1:e6:e5:a9:67:64:3b:d7:33:16:02:
64:f6:0b:8a:d3:2b:8a:d2:4d:06:2f:2a:58:dd:7b:
e4:91:78:00:49:fe:33:29:88:09:c0:5d:d6:55:08:
72:0d:7d:b5:8e:04:ea:fd:05:8c:09:ae:23:26:fb:
7c:50:42:3b:08:9f:f8:c6:8f:6a:64:28:61:f1:0f:
ef:2c:9d:8f:67:e0:17:76:11:f9:80:1a:33:02:b0:
a8:33:d3:48:1c:c8:bb:78:fe:7b:cf:81:f5:9a:08:
5c:1c:4e:d1:0f:82:68:d2:18:e4:9d:56:38:6f:c2:
a8:c3:22:f6:e2:df:d3:cb:42:93:07:6f:bc:ee:f3:
a1:48:f5:2f:c1:5c:5c:fa:16:9f:f9:2d:3e:e1:7b:
78:39:7e:9b:51:53:2c:ce:17:f8:a9:46:ea:fe:e9:
a8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B5:1F:11:DB:0C:16:B2:50:F5:91:EB:5D:DA:B5:07:CB:21:1E:20
X509v3 Authority Key Identifier:
keyid:4D:DD:0F:9D:CD:88:94:9B:8F:3A:37:71:06:35:62:A0:57:67:92:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Td0Pnc2IlJuPOjdxBjVioFdnkpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/7bUfEdsMFrJQ9ZHrXdq1B8shHiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3a7e49-9d27-4e4e-aa36-6f6ccb6e2cda/1/Td0Pnc2IlJuPOjdxBjVioFdnkpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.56.0/22
IPv6:
2a0c:4b80::/29
Signature Algorithm: sha256WithRSAEncryption
7e:dd:ca:ac:24:ec:f9:b3:7e:88:b4:60:e2:59:bc:0b:12:5e:
40:9e:8a:b5:7a:91:65:9d:a0:63:1a:ec:d8:1f:12:5c:7b:80:
c8:f4:cf:ac:69:6c:18:89:65:af:6f:89:fc:ba:11:cb:fa:c8:
00:c7:fa:c8:35:bb:38:53:34:13:b9:37:fe:74:94:23:04:ab:
77:3e:c5:42:ee:e5:2c:9e:48:8b:21:ec:a5:99:8d:53:fc:39:
17:7a:f3:df:3d:af:5d:6c:ea:5e:90:a2:88:ba:36:a6:3c:ff:
ec:e8:60:3c:66:e1:b2:87:f9:ff:18:b4:d3:21:9b:29:4b:c2:
8d:1b:65:e9:df:62:b4:ed:37:94:c5:5a:47:fc:c8:2d:7a:5d:
45:f8:b9:a2:90:6d:09:bb:09:00:3c:2d:22:c9:cb:f3:82:e6:
cd:c0:3d:e7:d4:84:f5:0f:81:88:b5:f7:0c:9c:94:94:ff:e7:
44:2c:bf:2c:75:53:3e:57:db:f9:9c:10:58:59:96:9a:38:92:
cc:76:46:58:5f:fb:85:60:cb:1b:d5:65:11:5e:33:46:3e:0e:
01:c4:a5:a9:b8:5c:8d:6d:98:86:97:6d:5d:80:b9:6a:76:0e:
4e:c5:c8:58:be:d7:d9:b2:05:82:ed:00:f4:fa:27:87:af:21:
42:ad:1c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:05 2024 by rpki-client on console-fra.rpki-client.org