Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/92262e-2276-4a88-a733-049bd7b1e119/1/7h5PRaZOSDDxZXHySvE1igezZek.roa
File: 7h5PRaZOSDDxZXHySvE1igezZek.roa (raw, json)
Hash identifier: QD3NhTj+iMpvlGr4/daxCdtinOQ9glV0nolGn8gD8OM=
Subject key identifier: EE:1E:4F:45:A6:4E:48:30:F1:65:71:F2:4A:F1:35:8A:07:B3:65:E9
Certificate issuer: /CN=fd3af2b06f4a5016e0e5abed183f465db15f41d5
Certificate serial: CA8E
Authority key identifier: FD:3A:F2:B0:6F:4A:50:16:E0:E5:AB:ED:18:3F:46:5D:B1:5F:41:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TrysG9KUBbg5avtGD9GXbFfQdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/92262e-2276-4a88-a733-049bd7b1e119/1/7h5PRaZOSDDxZXHySvE1igezZek.roa
Signing time: Tue 25 Jan 2022 14:14:20 +0000
ROA not before: Tue 25 Jan 2022 14:14:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24971
IP address blocks: 185.145.160.0/22 maxlen: 22
2a07:4880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51854 (0xca8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd3af2b06f4a5016e0e5abed183f465db15f41d5
Validity
Not Before: Jan 25 14:14:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee1e4f45a64e4830f16571f24af1358a07b365e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:31:ba:04:59:8b:55:94:f3:1b:cb:1b:be:59:
a1:70:43:7f:e4:5d:28:09:08:50:17:3d:e8:6a:32:
fc:6d:5b:d1:c4:c3:ee:4d:41:1c:b2:8b:67:63:82:
a9:90:62:f0:40:95:f3:3c:7e:94:58:2e:c5:ca:d3:
f4:cb:95:40:7c:63:c5:ff:61:29:0f:e2:e8:2a:a5:
c1:ff:5c:73:07:22:80:0f:b0:ec:d1:32:0d:15:f0:
ac:9d:61:0b:d3:ea:d3:41:9c:15:53:52:70:4e:de:
cb:17:1f:b6:34:c2:29:57:2a:40:41:22:04:f9:2f:
d8:a1:a5:9e:5b:a9:57:53:9e:54:7a:f6:68:08:7e:
cb:8a:8f:8e:93:0c:0f:78:d7:6d:60:38:1f:61:75:
10:88:b7:91:a2:08:b1:92:4f:c7:ea:a2:8d:0f:59:
83:8a:c3:d8:b0:5a:8d:a1:bd:e1:7e:07:c5:58:39:
95:c0:de:ab:c5:05:b2:b2:1a:ba:18:28:65:c2:5d:
59:32:47:da:54:b8:bc:68:90:09:7e:e7:3f:80:c5:
fc:33:70:a6:86:bd:83:97:38:f3:b0:b4:60:22:c5:
d6:b9:96:ea:59:11:87:bf:15:2e:29:b3:b5:fb:bd:
e7:96:1b:22:9b:73:7c:b1:50:69:c2:84:bf:33:43:
0e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:1E:4F:45:A6:4E:48:30:F1:65:71:F2:4A:F1:35:8A:07:B3:65:E9
X509v3 Authority Key Identifier:
keyid:FD:3A:F2:B0:6F:4A:50:16:E0:E5:AB:ED:18:3F:46:5D:B1:5F:41:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TrysG9KUBbg5avtGD9GXbFfQdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/92262e-2276-4a88-a733-049bd7b1e119/1/7h5PRaZOSDDxZXHySvE1igezZek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/92262e-2276-4a88-a733-049bd7b1e119/1/_TrysG9KUBbg5avtGD9GXbFfQdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.160.0/22
IPv6:
2a07:4880::/29
Signature Algorithm: sha256WithRSAEncryption
44:9c:f0:62:ca:63:22:cf:d2:53:b6:8e:a4:cc:ff:46:26:20:
03:15:05:de:f8:35:87:04:37:54:e6:24:a8:75:9c:e9:c1:84:
82:d8:b8:fa:d4:1a:c4:79:db:5c:c2:db:41:d7:0b:ee:94:34:
0f:c2:07:fd:b6:e6:5e:cc:c7:88:9a:1e:5d:c6:8f:d0:19:04:
a9:dd:c1:77:82:d1:82:32:3a:12:8e:81:22:20:a6:ae:a7:f1:
e7:a1:72:ad:0b:fb:b0:b4:62:58:89:21:f9:c9:b3:52:bd:e1:
76:fd:4c:df:41:f8:70:50:c9:b2:22:1c:30:47:0b:dc:1a:8a:
41:7f:74:c3:2e:ba:40:17:b6:f3:2e:61:50:ea:c0:ad:1a:cb:
c4:16:f7:e0:d1:07:89:33:fb:f6:fd:9c:e8:60:03:ee:df:9b:
b6:17:43:0f:19:5a:d7:f1:d6:7a:47:a7:06:b1:59:68:d2:58:
59:05:92:39:e8:cd:df:9e:b7:7e:b1:65:07:fa:4a:7e:f0:de:
71:df:aa:68:4b:b3:42:ed:91:ba:f4:20:5b:c8:62:93:cb:7b:
a1:38:f2:a6:a9:b5:76:cc:d0:2b:6b:52:98:47:ac:4a:76:18:
f5:e2:76:67:12:d9:28:aa:4d:87:34:d0:74:4f:4e:ae:fc:bf:
b8:e0:0d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:23 2024 by rpki-client on console-ams.rpki-client.org