Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/A02sRufBV2O6GDsUA7qRKq1OSfg.roa
File: A02sRufBV2O6GDsUA7qRKq1OSfg.roa (raw, json)
Hash identifier: beNjNQji9pguHz+hUY9mEEhKrwXXcf2v7GVZN8gwLqg=
Subject key identifier: 03:4D:AC:46:E7:C1:57:63:BA:18:3B:14:03:BA:91:2A:AD:4E:49:F8
Certificate issuer: /CN=942588b91da9cca81b49e603a988e2b1eabddc98
Certificate serial: 07C367E2
Authority key identifier: 94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/A02sRufBV2O6GDsUA7qRKq1OSfg.roa
Signing time: Sat 01 Jan 2022 08:05:51 +0000
ROA not before: Sat 01 Jan 2022 08:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8647
IP address blocks: 193.200.175.0/24 maxlen: 24
185.23.164.0/22 maxlen: 22
2a0f:3a00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130246626 (0x7c367e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942588b91da9cca81b49e603a988e2b1eabddc98
Validity
Not Before: Jan 1 08:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=034dac46e7c15763ba183b1403ba912aad4e49f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:95:ce:3d:9b:4d:48:ee:2d:0e:97:17:87:df:
d2:a4:4f:ca:03:8a:d1:d3:10:09:35:e7:ae:c1:fe:
2f:7b:2f:b8:a5:a9:3d:fb:6a:a5:91:8f:4e:40:16:
9c:5a:39:f1:e6:d1:d3:ad:f2:34:c3:25:22:f1:4d:
28:23:f9:da:cf:2e:79:96:e1:90:35:f5:ea:63:d7:
ca:0f:0e:02:16:c8:cc:e9:66:53:73:f6:b7:4f:1d:
d3:d6:ed:4f:5a:65:9f:d0:b6:de:7a:8f:ad:4f:f4:
2d:78:14:ee:cc:fe:d3:ef:90:4b:ca:25:e9:80:1a:
ec:0d:4e:ac:48:6f:62:63:d2:8f:6d:ae:4a:6c:6c:
f0:c1:41:0a:8d:dd:5f:e1:22:94:59:85:14:b8:53:
d8:f9:c6:87:06:9a:27:98:d6:9b:22:d7:9e:8c:fc:
69:95:a0:98:57:0f:27:fa:d3:46:19:e3:8d:3b:96:
e5:70:57:08:dd:f8:7b:90:f8:63:83:3a:c7:69:de:
a0:68:7e:62:db:f6:af:5c:f5:94:6e:8a:cf:bc:69:
80:43:3a:2a:85:42:d7:b8:d0:44:23:44:ee:28:a0:
dc:7e:03:84:e6:85:33:35:c1:ec:9b:fc:bf:3a:43:
0b:44:b7:97:2c:ad:be:0f:25:a5:6d:63:be:01:b8:
e8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4D:AC:46:E7:C1:57:63:BA:18:3B:14:03:BA:91:2A:AD:4E:49:F8
X509v3 Authority Key Identifier:
keyid:94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/A02sRufBV2O6GDsUA7qRKq1OSfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.164.0/22
193.200.175.0/24
IPv6:
2a0f:3a00::/29
Signature Algorithm: sha256WithRSAEncryption
0a:a1:a6:ee:47:2f:ab:1c:e1:6d:28:a7:96:c7:6b:8c:9b:87:
70:1f:09:71:4c:9e:bd:3d:23:25:80:5f:3b:2c:64:44:1f:ee:
9e:16:d6:e3:de:2c:6e:9e:0e:61:97:c1:fa:f1:c8:13:f0:6a:
7d:0e:93:c8:d1:5c:4b:c1:34:e2:a3:c7:62:e0:64:0b:f0:79:
e8:51:3d:85:ae:2c:2b:ad:5e:88:5b:3d:2e:a7:ec:54:0b:5c:
0a:9e:43:4b:5b:06:79:64:4f:d5:14:7d:f4:13:3d:55:d0:4d:
97:76:fd:ff:88:6d:57:0a:45:44:e2:64:56:70:bd:c7:df:ea:
8f:f5:d8:74:92:1d:57:27:d0:39:e0:70:b7:1d:f0:c4:39:80:
9c:2e:a7:ae:5b:74:ff:3c:f5:8e:02:79:53:24:69:e5:0a:16:
ef:8a:11:a0:40:14:ea:c9:09:73:64:e8:51:ec:17:5d:9c:41:
8e:4f:85:97:0d:09:c0:28:32:1a:5a:bb:5e:0f:ae:38:5d:99:
a8:fd:52:a2:1e:05:52:4e:d0:2d:62:21:89:92:5e:b5:92:7f:
3c:76:e2:d2:1a:d5:47:01:a2:ae:62:4b:7f:52:37:7e:6d:17:
27:0b:97:20:2b:3c:7b:46:04:ee:a4:00:0e:1b:a5:8f:77:28:
e9:94:72:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:22 2024 by rpki-client on console-fra.rpki-client.org