Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/1cGhlLoNZXDqNka6XvGXSwstKjk.roa
File: 1cGhlLoNZXDqNka6XvGXSwstKjk.roa (raw, json)
Hash identifier: 9MgCNtAIrnDkUIgi6thjX81xfmp8UID8eyDM5yMz9/o=
Subject key identifier: D5:C1:A1:94:BA:0D:65:70:EA:36:46:BA:5E:F1:97:4B:0B:2D:2A:39
Certificate issuer: /CN=3cabc3dde8f16cf6d918a40f1682ca41be4d0a41
Certificate serial: 019427
Authority key identifier: 3C:AB:C3:DD:E8:F1:6C:F6:D9:18:A4:0F:16:82:CA:41:BE:4D:0A:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKvD3ejxbPbZGKQPFoLKQb5NCkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/1cGhlLoNZXDqNka6XvGXSwstKjk.roa
Signing time: Sun 03 Apr 2022 19:45:29 +0000
ROA not before: Sun 03 Apr 2022 19:45:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12984
IP address blocks: 185.118.80.0/22 maxlen: 22
2a06:9280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103463 (0x19427)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cabc3dde8f16cf6d918a40f1682ca41be4d0a41
Validity
Not Before: Apr 3 19:45:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5c1a194ba0d6570ea3646ba5ef1974b0b2d2a39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d8:c6:a5:05:73:43:9b:0e:48:fe:c2:ea:9c:
a7:b0:70:19:2b:7c:84:0f:28:00:40:8e:f8:8e:d4:
21:8d:b1:c2:60:a8:6e:95:a6:0d:bd:62:25:f0:43:
41:c8:1d:6a:9f:2e:05:84:bf:c1:be:f8:26:b5:68:
a9:6d:f3:e3:2f:3c:8a:de:1e:30:69:25:3d:5d:be:
a9:ff:a6:d8:5e:15:c6:e0:f5:c0:78:02:16:be:25:
4e:63:a5:19:64:47:25:14:a6:44:9a:21:1b:bc:d6:
13:7b:8d:02:00:88:44:67:04:8b:7a:ae:62:3c:72:
39:66:a8:93:e6:52:02:e3:68:a8:a9:e1:4e:b5:25:
bd:4c:96:0d:f5:53:73:db:95:ad:7e:0c:4c:f7:ab:
fd:5a:36:d2:1b:f9:1a:88:4e:06:a0:68:2a:d1:a2:
ab:78:59:83:05:d6:02:1a:df:f6:13:ca:85:04:b8:
12:ea:33:1a:d4:07:1c:f8:cb:6f:ee:b7:7b:2d:d0:
b5:36:3d:94:4c:dc:5b:af:dc:6f:08:80:af:e4:60:
21:dc:31:02:be:37:4a:f1:e7:93:af:46:3a:fc:7a:
93:19:39:e4:46:93:cc:12:d6:09:2a:97:37:ac:94:
45:66:58:4d:cb:02:61:61:98:a1:ad:da:d1:8b:6a:
2a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C1:A1:94:BA:0D:65:70:EA:36:46:BA:5E:F1:97:4B:0B:2D:2A:39
X509v3 Authority Key Identifier:
keyid:3C:AB:C3:DD:E8:F1:6C:F6:D9:18:A4:0F:16:82:CA:41:BE:4D:0A:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKvD3ejxbPbZGKQPFoLKQb5NCkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/1cGhlLoNZXDqNka6XvGXSwstKjk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/910633-de46-4ae2-a15a-29c87c8d8335/1/PKvD3ejxbPbZGKQPFoLKQb5NCkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.80.0/22
IPv6:
2a06:9280::/29
Signature Algorithm: sha256WithRSAEncryption
82:f3:24:16:2c:fa:35:78:ca:48:89:98:27:68:37:6a:a9:e6:
52:cd:94:df:0d:b4:34:8b:33:5e:49:b5:76:b7:10:e3:db:0f:
eb:9e:47:ea:e4:88:33:69:97:2b:b4:27:49:e0:23:7e:2d:12:
42:38:f4:86:f6:68:ea:15:35:13:f2:f1:a0:7c:ae:b5:3b:51:
bc:cb:2b:35:5e:e8:65:fe:f1:4d:4a:7f:cb:f3:ad:21:6d:cf:
62:e6:76:e3:d7:8c:68:b3:2a:a4:74:05:5b:29:af:76:a4:36:
ab:47:0b:f6:e2:a8:88:da:1a:b9:4d:f7:d3:29:c6:57:11:c0:
5e:70:97:0a:fa:e6:fd:30:3a:1a:d2:8e:a3:1a:17:c7:8a:10:
af:45:4e:32:9b:73:42:6b:42:ee:09:b3:15:fd:17:a5:35:d4:
57:e1:fe:0d:26:5b:f7:85:c2:49:ac:b8:31:15:5f:02:4a:34:
bd:4f:d3:35:97:3b:60:d5:ff:61:7e:c5:e6:19:13:83:50:1d:
67:89:e4:94:79:f5:3c:58:74:3c:e9:1a:dd:e5:a6:30:16:34:
5e:03:f0:fa:bc:38:42:95:03:2f:6e:90:14:17:7c:78:02:78:
80:af:5a:de:b6:52:e2:7a:42:c5:39:b2:87:a8:66:1c:ce:34:
41:6d:89:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:07 2024 by rpki-client on console-fra.rpki-client.org