Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/6ecfdf-a94d-4ff0-8800-198c7872df4f/1/7CGRVRCrirIkd3HqxoGFdDDVPls.roa
File: 7CGRVRCrirIkd3HqxoGFdDDVPls.roa (raw, json)
Hash identifier: 2TRnZhq63vREO4ajrvmThVYJY/SO9TazR4yMDc4XSLk=
Subject key identifier: EC:21:91:55:10:AB:8A:B2:24:77:71:EA:C6:81:85:74:30:D5:3E:5B
Certificate issuer: /CN=d34271d123c60ecd7ac5288c72e60e41b5791f9f
Certificate serial: 070FFA2E
Authority key identifier: D3:42:71:D1:23:C6:0E:CD:7A:C5:28:8C:72:E6:0E:41:B5:79:1F:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00Jx0SPGDs16xSiMcuYOQbV5H58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/6ecfdf-a94d-4ff0-8800-198c7872df4f/1/7CGRVRCrirIkd3HqxoGFdDDVPls.roa
Signing time: Sat 01 Jan 2022 16:06:59 +0000
ROA not before: Sat 01 Jan 2022 16:06:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48095
IP address blocks: 185.222.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118487598 (0x70ffa2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34271d123c60ecd7ac5288c72e60e41b5791f9f
Validity
Not Before: Jan 1 16:06:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec21915510ab8ab2247771eac681857430d53e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:53:a4:e3:50:46:94:d7:7b:3c:50:1a:07:
86:bd:e8:6b:da:c1:76:0f:e3:09:d5:59:90:ca:63:
39:6c:d1:59:e5:d8:25:17:9c:56:f8:c4:f8:0f:d1:
8f:e1:fc:e1:03:37:12:dc:24:b7:95:bc:6e:15:08:
0d:c6:04:5e:86:d4:8d:55:dc:31:67:50:cf:8e:12:
11:9a:0d:e1:59:61:73:d7:74:b9:3f:85:fe:40:4f:
d3:7c:00:aa:64:da:0c:49:3d:39:39:2a:6d:f3:fb:
d1:c8:e1:b8:dc:e5:47:1e:ed:63:5c:a3:23:bc:5b:
20:af:26:b1:5c:54:b4:dc:a5:49:b6:36:74:98:0c:
b4:10:57:19:eb:d4:52:2f:66:50:9a:4a:54:e5:5d:
0c:6b:89:43:07:53:d7:71:ea:c0:99:43:cb:5a:f8:
cc:dc:fa:60:29:26:0d:2e:dc:92:b6:c8:e7:5c:d7:
3c:0e:47:0a:5a:2a:5a:66:4e:c7:dc:b2:4e:f7:97:
c6:94:4a:41:19:9a:f7:dd:fa:b6:fa:1a:51:37:cc:
33:f9:6e:92:25:08:4d:9e:bf:7b:51:ea:a5:95:6d:
2a:67:b8:e4:8f:68:b0:35:99:51:c0:fb:bf:3c:e0:
33:4d:fb:81:0d:b5:61:cc:1c:57:1e:43:2d:83:d6:
74:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:21:91:55:10:AB:8A:B2:24:77:71:EA:C6:81:85:74:30:D5:3E:5B
X509v3 Authority Key Identifier:
keyid:D3:42:71:D1:23:C6:0E:CD:7A:C5:28:8C:72:E6:0E:41:B5:79:1F:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00Jx0SPGDs16xSiMcuYOQbV5H58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6ecfdf-a94d-4ff0-8800-198c7872df4f/1/7CGRVRCrirIkd3HqxoGFdDDVPls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/6ecfdf-a94d-4ff0-8800-198c7872df4f/1/00Jx0SPGDs16xSiMcuYOQbV5H58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.172.0/22
Signature Algorithm: sha256WithRSAEncryption
88:2d:09:df:4f:21:54:d2:d6:38:61:8e:29:27:29:ea:52:78:
91:f2:c1:c9:7b:01:b2:d1:90:bc:fc:a7:ea:97:c3:59:31:55:
aa:b8:06:bd:54:ca:95:d1:22:ce:cf:f5:82:0d:fb:13:49:a1:
14:e4:ee:09:42:bb:59:2a:85:c5:81:65:22:46:84:0d:16:e4:
d2:ff:7d:dc:84:75:22:a9:78:f1:6f:d8:34:b4:93:72:49:c1:
63:67:16:0e:79:96:2d:1b:8b:3a:12:93:0d:6c:80:13:b0:f7:
25:48:1c:20:08:f4:50:45:c9:da:e5:15:d4:7d:ab:d7:61:cc:
ce:e9:e8:a2:34:dc:1c:8e:03:0f:da:10:a6:bf:6d:5f:3a:2b:
f4:83:2a:6d:89:9e:93:6d:68:c0:94:6b:4c:4e:50:ab:fd:93:
83:6a:ef:c7:ce:b6:b5:59:9b:b3:5c:c8:db:e6:9a:fd:a9:37:
61:50:04:b3:8e:95:20:e0:ba:b1:4f:23:52:76:8a:e7:1a:99:
15:bd:1c:f1:60:fe:31:32:c6:ea:91:e2:84:4c:7d:b6:2d:8b:
4b:2a:d4:f7:17:ed:f0:5d:ad:b3:46:2d:b4:ed:b6:b9:28:a0:
16:fc:5a:d0:16:8d:18:b7:86:01:75:94:b1:d3:bc:f5:98:37:
b8:18:69:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:06 2024 by rpki-client on console-fra.rpki-client.org