Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/v_tAl8WSUzLQr5zTU7FhpOKEfsI.roa
File: v_tAl8WSUzLQr5zTU7FhpOKEfsI.roa (raw, json)
Hash identifier: SQE4TfS/DoWMu6imjQBngWae185Y7M4E/xyHfSDvoVs=
Subject key identifier: BF:FB:40:97:C5:92:53:32:D0:AF:9C:D3:53:B1:61:A4:E2:84:7E:C2
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 174842CF
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/v_tAl8WSUzLQr5zTU7FhpOKEfsI.roa
Signing time: Sat 01 Jan 2022 08:05:44 +0000
ROA not before: Sat 01 Jan 2022 08:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6908
IP address blocks: 185.4.116.0/22 maxlen: 24
185.4.116.0/24 maxlen: 24
185.4.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390611663 (0x174842cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Jan 1 08:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bffb4097c5925332d0af9cd353b161a4e2847ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3a:64:fe:8f:4d:1a:43:f0:42:e8:87:21:4e:
57:9e:0d:c4:d4:c3:6f:3b:66:31:ae:4d:d6:b0:9f:
44:34:b7:d4:4b:41:3c:31:28:00:cd:3c:68:30:34:
59:18:0d:a2:04:98:d0:40:14:ec:08:b6:b3:71:71:
cd:ed:45:0b:46:7f:5e:0b:5c:c9:b3:8e:4c:4b:8d:
c8:9f:76:67:db:8d:86:2a:e5:2c:78:40:cd:56:87:
10:55:b0:5b:9f:29:ac:62:01:04:41:6e:17:37:7d:
f2:de:71:1b:61:bf:e0:85:1d:9f:b4:7f:33:75:05:
57:ee:47:1e:84:a0:59:de:48:58:0b:ac:32:34:e2:
04:b7:a1:0c:29:2a:d5:64:29:65:05:16:40:2c:6a:
57:57:06:2c:48:be:f6:88:78:1e:a9:64:47:08:f1:
65:31:06:2b:1f:a4:9d:88:4d:62:aa:48:51:d5:c4:
2e:59:63:86:7d:48:f3:d6:d9:5c:c1:fb:cd:32:6d:
e9:50:59:55:8f:06:c7:93:45:69:64:6a:46:13:62:
b9:b9:d6:02:9b:22:71:bd:b9:a3:d2:46:cb:15:70:
32:eb:5f:de:5f:18:e0:fb:ee:a2:7b:cc:4f:b0:1b:
8a:d8:5b:40:c3:b7:58:b4:2a:17:07:ab:77:d5:16:
6f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FB:40:97:C5:92:53:32:D0:AF:9C:D3:53:B1:61:A4:E2:84:7E:C2
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/v_tAl8WSUzLQr5zTU7FhpOKEfsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.116.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:d5:20:2f:0f:97:fc:ad:19:13:9b:56:24:9e:56:d6:8a:89:
62:0e:32:57:3c:b5:ac:df:00:08:78:56:54:b6:9b:c9:98:72:
68:20:3f:03:9b:45:0f:96:00:fc:cf:62:63:ae:1b:54:2b:e9:
b0:ab:ce:99:1e:3a:eb:a9:38:c1:f9:af:1c:3c:aa:8b:35:6e:
c8:2d:d7:5a:8a:11:66:65:58:06:66:d5:33:3e:9f:8c:b9:54:
1d:cd:35:4d:d2:39:07:ef:23:94:2b:7e:fe:ec:e9:13:3b:7f:
4a:cc:c8:ce:1d:dd:6f:18:e9:59:36:f1:0a:9b:f0:e6:c5:86:
64:cc:14:fa:d9:d7:da:22:92:45:3d:59:d3:8c:7d:fb:1d:3d:
28:81:74:85:b4:1b:17:27:fa:d5:d3:da:b8:fa:69:43:7f:74:
67:13:e9:bd:0f:a9:84:aa:6c:88:62:83:1d:38:fa:89:83:f0:
9d:37:0a:f4:42:25:8b:3b:19:a3:20:01:72:8e:f5:f9:52:46:
9e:b3:e8:0f:31:1a:b2:2b:61:03:c8:3f:ae:91:76:8c:bf:fe:
c2:6b:27:8f:cc:c1:20:4b:a5:c2:5e:13:e6:67:56:08:db:99:
cb:4d:53:2f:95:81:f2:e5:c4:40:bb:1f:20:b6:cf:9e:72:e1:
ad:73:70:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:01 2024 by rpki-client on console-fra.rpki-client.org