Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/4W7v60w9FI3xW_gHUuNchKVz0Kw.roa
File: 4W7v60w9FI3xW_gHUuNchKVz0Kw.roa (raw, json)
Hash identifier: hCHe0azRLghdVCqhUhplPKRPcuTLNyx4nBzeHX6upyU=
Subject key identifier: E1:6E:EF:EB:4C:3D:14:8D:F1:5B:F8:07:52:E3:5C:84:A5:73:D0:AC
Certificate issuer: /CN=fac0f0da39a22a79f80c1f379b668b90f6d74708
Certificate serial: 085F08D6
Authority key identifier: FA:C0:F0:DA:39:A2:2A:79:F8:0C:1F:37:9B:66:8B:90:F6:D7:47:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-sDw2jmiKnn4DB83m2aLkPbXRwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/4W7v60w9FI3xW_gHUuNchKVz0Kw.roa
Signing time: Sat 15 Jan 2022 10:12:57 +0000
ROA not before: Sat 15 Jan 2022 10:12:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204272
IP address blocks: 185.108.208.0/22 maxlen: 22
2a05:4100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140445910 (0x85f08d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fac0f0da39a22a79f80c1f379b668b90f6d74708
Validity
Not Before: Jan 15 10:12:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e16eefeb4c3d148df15bf80752e35c84a573d0ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cc:73:c2:d0:a3:7c:f0:45:75:50:d9:72:81:
10:fa:4f:ba:08:62:bf:66:f6:4d:5c:6f:42:ec:00:
1a:86:f9:2d:3d:0f:e1:4b:94:5a:9d:dc:a5:a5:4b:
48:b3:8f:bd:48:08:9c:3a:81:d6:89:38:04:0a:72:
74:ef:82:68:4f:94:91:87:68:7b:55:b1:32:bb:04:
ec:2a:31:1c:1d:2c:94:f0:66:cb:f7:70:9c:ac:ca:
12:10:ca:cb:ee:11:33:43:6d:71:19:91:6d:a0:c2:
26:8d:44:7f:8d:4c:de:42:05:1e:f2:f3:ea:30:1b:
ab:d0:d5:e1:98:11:e7:f0:6c:3c:0c:15:88:ae:8b:
fd:a7:b4:58:99:be:d6:87:03:e4:7b:e4:f1:2e:9e:
a4:c5:c4:48:71:25:fe:3f:a3:10:d0:66:3a:49:14:
3b:14:00:32:15:48:a7:af:25:af:c9:ae:22:74:b8:
47:88:b3:ae:7a:0a:ce:e0:cc:c6:24:6e:b3:00:53:
71:0c:8e:9c:35:16:df:91:35:26:9c:da:db:f9:51:
f4:81:a7:f5:48:1b:3f:2f:87:8f:85:ef:30:ab:49:
15:cb:ee:b4:f0:6c:e7:46:28:b2:4e:d8:39:40:d4:
0d:5e:aa:ca:40:7e:64:6c:1a:d0:49:44:72:a0:42:
d7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:6E:EF:EB:4C:3D:14:8D:F1:5B:F8:07:52:E3:5C:84:A5:73:D0:AC
X509v3 Authority Key Identifier:
keyid:FA:C0:F0:DA:39:A2:2A:79:F8:0C:1F:37:9B:66:8B:90:F6:D7:47:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-sDw2jmiKnn4DB83m2aLkPbXRwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/4W7v60w9FI3xW_gHUuNchKVz0Kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/86ed5b-bcc1-4d03-95da-b99d4d00f831/1/1-sDw2jmiKnn4DB83m2aLkPbXRwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.108.208.0/22
IPv6:
2a05:4100::/29
Signature Algorithm: sha256WithRSAEncryption
32:ec:eb:89:fb:a1:9f:d4:aa:09:8e:ff:ec:bf:e9:d8:85:a8:
d6:3f:ff:70:f8:81:cf:72:72:37:c1:a6:58:e6:41:23:d4:ef:
37:bc:c5:d6:d5:bf:53:bb:1c:2f:21:b0:13:a3:8d:b3:41:54:
08:d7:7c:83:b6:82:50:44:54:7f:0a:a3:0a:d5:fa:e6:0f:87:
b8:82:0a:27:ef:96:e1:cb:96:9e:94:1d:d6:64:5d:b1:2f:87:
80:1e:a0:77:97:ca:97:27:63:7f:c2:a4:aa:c9:8c:cb:a4:dd:
d7:54:d2:8b:b3:e6:81:c1:52:35:e1:a1:63:a0:7e:da:1b:a7:
cd:a9:76:f9:29:be:32:45:0c:e0:85:ac:f2:1f:c7:d2:ea:17:
71:3b:67:46:08:a6:17:8d:3d:6e:6c:ce:b6:67:e0:f8:e5:3f:
1d:13:99:7e:cb:02:f3:17:03:90:b4:25:75:79:dc:2d:20:ba:
de:b5:2e:12:51:1e:e9:e2:9a:8d:93:87:51:0a:85:09:e4:0b:
97:13:20:c0:07:ca:9d:e0:d0:ff:9b:ec:93:d8:3f:77:45:f8:
c9:65:a8:2c:16:b3:bd:dd:84:0e:94:04:da:2a:ff:55:f7:c2:
46:73:16:0d:47:a3:32:8a:85:a7:2b:c2:b9:64:6d:15:30:49:
ae:de:5a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org