Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d2d9f3-8d56-481c-8bc4-7c8f3fecdb2c/1/gIuAOH_MBFhjvad1JKcT3Jri2Qs.roa
File: gIuAOH_MBFhjvad1JKcT3Jri2Qs.roa (raw, json)
Hash identifier: YUmVnlji5dMGyCBrlUx3EsYA83Uq3dV/ov3HFmQ29T8=
Subject key identifier: 80:8B:80:38:7F:CC:04:58:63:BD:A7:75:24:A7:13:DC:9A:E2:D9:0B
Certificate issuer: /CN=b025bac132e479a28df33573dd1096a9b7b78d32
Certificate serial: 0D2EA1A5
Authority key identifier: B0:25:BA:C1:32:E4:79:A2:8D:F3:35:73:DD:10:96:A9:B7:B7:8D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCW6wTLkeaKN8zVz3RCWqbe3jTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d2d9f3-8d56-481c-8bc4-7c8f3fecdb2c/1/gIuAOH_MBFhjvad1JKcT3Jri2Qs.roa
Signing time: Sat 01 Jan 2022 15:03:04 +0000
ROA not before: Sat 01 Jan 2022 15:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203489
IP address blocks: 185.132.68.0/22 maxlen: 22
185.214.0.0/22 maxlen: 22
2a0b:91c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221159845 (0xd2ea1a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b025bac132e479a28df33573dd1096a9b7b78d32
Validity
Not Before: Jan 1 15:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=808b80387fcc045863bda77524a713dc9ae2d90b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:be:eb:4c:99:bf:3a:8c:ce:e9:21:5d:26:0a:
27:ac:d3:85:30:f2:06:65:d0:ad:46:e0:6b:0b:f9:
53:53:63:5f:63:f3:ee:00:93:c3:4a:58:13:78:7e:
5e:d7:36:23:80:40:ac:d8:1d:bb:21:89:ba:36:4a:
54:39:4d:c5:5f:7c:07:ad:6a:14:58:82:36:cc:1e:
da:18:7b:84:52:60:20:ab:c4:c8:2a:d7:54:57:2e:
e7:5a:ce:3b:25:1b:c5:80:57:8f:aa:ad:6c:78:ad:
38:c0:67:01:5a:0d:6d:f8:27:f7:89:6f:84:eb:f2:
69:8b:34:de:c6:ca:8c:05:cb:cf:66:34:0f:7f:db:
a2:44:1b:33:bb:bc:99:a6:52:7b:34:61:b4:b0:6b:
09:7c:7d:b8:ce:a3:da:21:63:6f:0f:8f:f4:5e:06:
4a:d6:35:db:dd:ce:03:93:36:89:a6:2c:b0:e9:8e:
53:36:59:ff:bf:b8:ca:08:56:2c:b4:d7:12:8c:1e:
e9:05:d5:5e:c0:7b:da:15:1a:ad:5c:f5:32:9b:df:
4e:b9:a7:d8:ac:15:7f:ee:d6:c4:3b:89:ba:fa:5f:
76:26:88:83:49:44:92:75:91:24:f6:5f:6f:48:96:
76:f3:21:bc:34:69:33:f6:12:e2:6a:c9:08:82:80:
25:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8B:80:38:7F:CC:04:58:63:BD:A7:75:24:A7:13:DC:9A:E2:D9:0B
X509v3 Authority Key Identifier:
keyid:B0:25:BA:C1:32:E4:79:A2:8D:F3:35:73:DD:10:96:A9:B7:B7:8D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCW6wTLkeaKN8zVz3RCWqbe3jTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d2d9f3-8d56-481c-8bc4-7c8f3fecdb2c/1/gIuAOH_MBFhjvad1JKcT3Jri2Qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d2d9f3-8d56-481c-8bc4-7c8f3fecdb2c/1/sCW6wTLkeaKN8zVz3RCWqbe3jTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.68.0/22
185.214.0.0/22
IPv6:
2a0b:91c0::/29
Signature Algorithm: sha256WithRSAEncryption
98:7a:36:a6:8f:7c:46:0b:d9:21:41:a7:dd:5b:b9:e8:db:f9:
92:05:b2:51:69:27:49:27:77:3b:c1:65:05:81:ac:23:85:6a:
28:fa:b2:e8:05:9f:04:7e:0e:cd:ec:42:fd:57:2a:91:68:bc:
4a:23:86:21:2a:e3:ab:b7:f2:ee:16:2a:bb:4c:ea:30:9b:35:
68:0a:07:78:60:67:60:de:f5:e9:db:a5:f3:1d:7d:f4:80:65:
e6:1a:3a:38:60:8c:b4:a9:36:7c:8e:90:f8:ca:8f:f7:0d:9d:
fb:c4:7f:50:c4:79:7a:b1:ec:41:49:58:cf:2f:5d:38:f4:28:
51:8f:7e:a7:ec:c9:98:c7:c0:cb:2a:b2:4e:d7:a1:fb:10:b7:
4c:34:6c:47:c5:ef:67:58:4e:53:62:b8:a2:1f:83:21:c8:0f:
25:2e:69:b2:19:0c:82:a1:fa:6e:69:1d:a5:99:6e:75:86:4c:
3e:51:3b:68:62:70:ae:e1:a3:36:18:86:62:43:39:ee:03:7c:
d4:e3:be:dc:1a:4d:50:bc:ac:ef:9e:59:ca:51:f2:fa:c2:7c:
7c:36:ec:cf:2b:79:c3:4e:38:87:ea:6f:6b:dd:b2:93:a6:17:
33:be:69:d7:6b:a7:ab:f4:74:1c:77:b3:4b:81:c7:8c:b0:55:
31:48:e1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org