Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/702829-0d8e-49db-84ae-04925194c5e6/1/son4Ag0UGXqKDfJCHvSEOAAsnls.roa
File: son4Ag0UGXqKDfJCHvSEOAAsnls.roa (raw, json)
Hash identifier: sdeYuKWcGPrpFMV4o+6sH7F/2fvnvfedPIvYJ8Bms+M=
Subject key identifier: B2:89:F8:02:0D:14:19:7A:8A:0D:F2:42:1E:F4:84:38:00:2C:9E:5B
Certificate issuer: /CN=06484d1f57db0cc2326faa53d3a7aad268dbc266
Certificate serial: 1C133554
Authority key identifier: 06:48:4D:1F:57:DB:0C:C2:32:6F:AA:53:D3:A7:AA:D2:68:DB:C2:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkhNH1fbDMIyb6pT06eq0mjbwmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/702829-0d8e-49db-84ae-04925194c5e6/1/son4Ag0UGXqKDfJCHvSEOAAsnls.roa
Signing time: Sat 01 Jan 2022 13:56:46 +0000
ROA not before: Sat 01 Jan 2022 13:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44066
IP address blocks: 185.15.8.0/22 maxlen: 22
2a02:fb00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 471020884 (0x1c133554)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06484d1f57db0cc2326faa53d3a7aad268dbc266
Validity
Not Before: Jan 1 13:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b289f8020d14197a8a0df2421ef48438002c9e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c1:3a:16:a8:12:58:f9:8d:dd:73:67:16:d2:
f6:61:7b:c9:3e:75:7d:4e:05:5c:6d:7f:9c:fb:e1:
41:22:c3:a2:e8:8e:9d:17:2e:e8:0b:3c:10:d3:37:
ac:5f:20:65:ad:88:33:4a:be:c5:49:ad:95:00:5c:
fa:1d:44:da:2a:cd:1e:df:a2:20:ba:1e:2c:d3:28:
a9:07:b7:88:ea:80:68:2a:f2:bd:e1:64:9a:62:30:
b9:12:d6:1e:25:25:56:d8:ea:13:51:54:ef:e9:fa:
94:51:16:55:02:a0:7a:db:c8:8c:d9:89:a8:5b:2e:
2b:10:cd:5b:f6:3e:36:cd:ba:63:57:c9:79:0c:ac:
c8:84:6c:6b:62:32:45:54:73:e3:52:b9:9a:b4:25:
2b:3a:9d:c7:d1:09:30:25:1c:31:ce:7e:7f:ae:56:
59:4c:20:54:40:44:6f:08:c3:37:69:55:11:41:31:
9a:30:57:75:56:1d:55:65:83:c9:84:1e:c2:e9:e9:
18:81:61:55:35:58:b7:4e:b9:26:0e:ac:ff:90:b2:
d2:5c:90:e1:76:c7:1b:05:8c:4a:ac:56:f7:0d:be:
91:c7:36:08:cc:8f:ff:f0:a0:2c:d2:f6:87:e3:fe:
aa:a9:d2:95:f0:eb:b4:c1:61:b4:59:c7:14:b4:ec:
84:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:89:F8:02:0D:14:19:7A:8A:0D:F2:42:1E:F4:84:38:00:2C:9E:5B
X509v3 Authority Key Identifier:
keyid:06:48:4D:1F:57:DB:0C:C2:32:6F:AA:53:D3:A7:AA:D2:68:DB:C2:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkhNH1fbDMIyb6pT06eq0mjbwmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/702829-0d8e-49db-84ae-04925194c5e6/1/son4Ag0UGXqKDfJCHvSEOAAsnls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/702829-0d8e-49db-84ae-04925194c5e6/1/BkhNH1fbDMIyb6pT06eq0mjbwmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.8.0/22
IPv6:
2a02:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
93:7a:8a:b4:74:e0:64:55:66:11:40:52:3b:24:58:1e:1d:34:
4d:a8:da:5c:34:42:01:5d:80:0e:fc:10:25:fe:84:52:ff:19:
bb:5f:53:21:b4:7c:99:c2:a0:4c:e0:9f:70:f8:fe:89:a6:b7:
16:88:77:8b:3b:82:4b:01:00:52:c1:3c:fe:62:fb:cf:2d:4b:
99:0a:a2:e1:ba:9e:fc:38:f2:a0:16:42:0f:b5:e7:f7:ad:96:
9b:7d:80:2b:cb:7b:68:3f:5f:36:c6:22:58:0b:68:f9:96:21:
2a:ae:17:bf:56:7a:a4:52:e7:d7:27:0c:cd:66:ac:4b:80:6d:
91:3f:ec:8a:3f:55:22:b1:8d:1b:e2:17:88:67:ce:44:c4:3d:
8e:2b:ea:be:11:4e:82:32:38:26:72:9c:14:c2:09:ee:85:83:
30:2f:98:0f:a2:40:cd:32:b9:b9:ca:fe:df:a2:39:ea:0d:4d:
35:98:eb:90:6d:57:72:79:5f:48:b5:b4:d2:d5:60:33:3b:b5:
0b:58:37:a0:d6:a1:6c:9f:9f:13:df:5e:57:c3:48:56:dc:5f:
00:38:56:0f:fe:11:e4:27:de:a3:46:9a:ab:49:ce:25:a5:a8:
a8:a5:56:40:00:01:b7:55:de:58:4c:74:7a:1d:78:35:4a:5b:
b4:27:b6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:28 2023 by rpki-client on console-fra.rpki-client.org