Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/b1ce34-e043-45a8-bebd-8982b7a8f614/1/1-BPdTU5rl9N8PkdAXQ8xeQkJquw.roa
File: 1-BPdTU5rl9N8PkdAXQ8xeQkJquw.roa (raw, json)
Hash identifier: v9OWezPay3eGRU2kpXh4tYopQm/r2AhYYfi/4OmqVYM=
Subject key identifier: F8:13:DD:4D:4E:6B:97:D3:7C:3E:47:40:5D:0F:31:79:09:09:AA:EC
Certificate issuer: /CN=7d6340e37ccfc12aebaac2a5f33d45ea0a887a8a
Certificate serial: 019C0295
Authority key identifier: 7D:63:40:E3:7C:CF:C1:2A:EB:AA:C2:A5:F3:3D:45:EA:0A:88:7A:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWNA43zPwSrrqsKl8z1F6gqIeoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/b1ce34-e043-45a8-bebd-8982b7a8f614/1/1-BPdTU5rl9N8PkdAXQ8xeQkJquw.roa
Signing time: Sat 01 Jan 2022 12:06:46 +0000
ROA not before: Sat 01 Jan 2022 12:06:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34803
IP address blocks: 195.166.192.0/19 maxlen: 24
185.104.220.0/22 maxlen: 24
85.115.128.0/19 maxlen: 24
2a02:638::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27001493 (0x19c0295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d6340e37ccfc12aebaac2a5f33d45ea0a887a8a
Validity
Not Before: Jan 1 12:06:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f813dd4d4e6b97d37c3e47405d0f31790909aaec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7d:2d:87:f8:ad:9e:41:ad:05:7c:56:bc:43:
4b:e8:a7:e9:22:ad:33:b3:16:13:4c:0a:bf:fe:3b:
19:40:40:0e:35:80:c8:4b:ab:9c:af:49:8b:39:9c:
c7:ae:8d:9b:90:8b:22:a1:f2:65:99:df:94:b0:13:
be:e1:a5:15:4c:37:1e:d6:b8:7f:4e:db:dc:40:07:
08:74:a8:a2:e6:aa:6c:3a:a5:97:3f:43:da:53:d3:
15:e8:78:0f:71:18:a2:4f:a5:f5:51:9d:08:7f:34:
5c:87:f1:c5:f6:7b:64:08:87:e1:8e:65:91:36:fc:
a6:b5:b1:61:41:45:16:1e:5a:78:80:30:0e:bc:12:
19:e9:84:b4:07:41:91:f2:c2:9d:89:33:38:d1:33:
7b:f0:e0:12:b1:c8:0b:ef:ce:7e:5f:6e:4f:66:5b:
63:23:6f:5f:0b:1e:cd:d9:99:bf:48:9a:c7:30:87:
ed:cd:4f:10:a0:5f:80:6e:0f:8a:b1:7c:b1:37:99:
31:d7:3e:49:0a:63:a3:0e:10:0a:30:44:f9:3e:e4:
65:c5:a4:90:86:a4:7b:a3:ef:bc:72:69:93:34:f7:
b4:84:15:c2:e8:0e:a4:ae:7e:c7:39:bf:69:e4:39:
72:c0:b3:18:71:5f:dc:ed:e2:6e:e8:c8:86:47:91:
56:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:13:DD:4D:4E:6B:97:D3:7C:3E:47:40:5D:0F:31:79:09:09:AA:EC
X509v3 Authority Key Identifier:
keyid:7D:63:40:E3:7C:CF:C1:2A:EB:AA:C2:A5:F3:3D:45:EA:0A:88:7A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWNA43zPwSrrqsKl8z1F6gqIeoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b1ce34-e043-45a8-bebd-8982b7a8f614/1/1-BPdTU5rl9N8PkdAXQ8xeQkJquw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b1ce34-e043-45a8-bebd-8982b7a8f614/1/fWNA43zPwSrrqsKl8z1F6gqIeoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.128.0/19
185.104.220.0/22
195.166.192.0/19
IPv6:
2a02:638::/32
Signature Algorithm: sha256WithRSAEncryption
7d:f9:8d:51:b2:7c:8f:e5:2e:47:ec:b1:bf:64:9b:0e:bc:d4:
b2:22:d4:b1:c7:f3:97:6a:19:44:f4:2d:26:80:c7:59:92:c6:
ff:e6:43:ee:16:05:2e:c5:c1:9e:68:09:9c:b8:88:81:fb:cb:
28:5f:8c:ba:9b:2a:fd:67:98:88:49:0b:39:ad:ac:0b:aa:0f:
c1:64:b8:3d:2a:55:36:3a:e5:73:00:1d:2a:b2:5c:b4:9c:6b:
b3:4c:e2:cd:64:ea:47:3b:6e:fb:65:d2:0e:bb:da:26:bc:e5:
6e:51:cb:c3:67:c3:da:7f:c7:fe:3e:8e:88:a1:82:98:a4:e6:
ae:95:55:9a:f0:f3:91:05:19:89:3a:c5:ba:0d:2d:77:cf:90:
21:99:75:6f:6d:94:64:8a:00:ba:4e:76:a6:df:37:ae:93:80:
94:f2:ed:71:9a:e9:33:3a:ed:6f:25:de:7f:18:c1:cd:fb:b8:
1c:f0:fa:11:f9:d1:9a:8e:65:91:eb:df:fa:1c:9c:85:5b:4d:
45:f6:6a:4a:80:84:39:c7:07:ab:a4:18:ce:dd:19:c3:c8:99:
38:47:ac:76:c5:ca:86:f8:90:b2:e2:a0:ea:4a:ce:16:54:88:
51:cf:77:c2:ed:99:29:7c:97:3d:86:9a:84:36:5c:e1:70:da:
39:c4:16:87
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:40 2024 by rpki-client on console-fra.rpki-client.org