Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/t8_2qVgZK5ZYApBMOFBR-NjYrNs.roa
File: t8_2qVgZK5ZYApBMOFBR-NjYrNs.roa (raw, json)
Hash identifier: 0vvW8jgFTASwV0xODPD+jwXEEpNaUBZplWCUBvdl/v0=
Subject key identifier: B7:CF:F6:A9:58:19:2B:96:58:02:90:4C:38:50:51:F8:D8:D8:AC:DB
Certificate issuer: /CN=88e719f426793b1e9063771460abd311a3dff116
Certificate serial: 05EF3C0E
Authority key identifier: 88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/t8_2qVgZK5ZYApBMOFBR-NjYrNs.roa
Signing time: Sat 01 Jan 2022 01:54:08 +0000
ROA not before: Sat 01 Jan 2022 01:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27552
IP address blocks: 185.134.180.0/22 maxlen: 22
2a06:ee01::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99564558 (0x5ef3c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e719f426793b1e9063771460abd311a3dff116
Validity
Not Before: Jan 1 01:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7cff6a958192b965802904c385051f8d8d8acdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:cb:89:06:76:3f:ff:33:c0:7f:fc:ca:4e:
39:7e:8a:1b:0c:68:7b:31:2d:2f:de:81:4a:88:eb:
7a:39:cc:14:88:6e:5a:03:96:e7:52:95:41:59:6d:
65:82:18:c2:5b:7e:ec:fe:17:39:8d:2b:be:26:fe:
c8:4d:e9:2c:a4:b1:ac:f6:47:4c:4c:95:cb:41:25:
dd:31:dd:f0:1a:4d:bb:ff:ee:b3:89:51:8e:b0:af:
95:2b:21:fa:39:c0:b4:c8:2b:f2:25:4a:d8:b5:36:
e6:f4:d1:31:01:fb:88:c6:de:81:9c:87:99:7d:35:
9e:71:33:96:b4:e2:e2:a9:f7:e9:92:19:38:63:1b:
03:4f:1b:dd:72:0f:1b:00:b3:bd:01:0f:86:cc:73:
9a:78:83:f6:9f:93:78:11:f2:16:b7:eb:4d:3f:fe:
0f:56:18:12:88:e9:5e:5d:70:02:f5:34:1a:a5:f2:
02:d8:4d:c3:2f:0b:64:37:d2:dd:23:35:24:cc:04:
88:ad:c7:b3:30:b5:49:52:b6:47:9c:09:c5:d3:89:
15:0b:8e:ff:b0:d3:45:e9:db:da:87:41:54:68:d8:
fa:99:9f:d2:fd:b2:88:68:ea:cb:58:b8:5e:c6:de:
44:75:fd:c2:fb:69:05:20:2b:6a:e6:37:f5:c5:ee:
ee:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CF:F6:A9:58:19:2B:96:58:02:90:4C:38:50:51:F8:D8:D8:AC:DB
X509v3 Authority Key Identifier:
keyid:88:E7:19:F4:26:79:3B:1E:90:63:77:14:60:AB:D3:11:A3:DF:F1:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/t8_2qVgZK5ZYApBMOFBR-NjYrNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/00d45d-5e48-458d-92f7-ae52e156b77e/1/iOcZ9CZ5Ox6QY3cUYKvTEaPf8RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.180.0/22
IPv6:
2a06:ee01::/32
Signature Algorithm: sha256WithRSAEncryption
80:9a:a0:c4:d1:c7:c7:97:84:6a:00:ea:6a:b8:f6:98:50:fc:
4a:f2:87:7e:d6:53:94:53:42:ec:0a:33:31:ae:a7:66:57:3f:
23:df:f0:cb:30:8f:85:57:f2:b6:d7:f9:61:22:06:e7:a0:6b:
cd:2d:2a:74:97:85:b4:4c:39:f7:41:48:89:a8:a6:48:14:02:
91:28:ad:3c:df:95:03:83:c7:1e:e8:3d:bd:c7:c1:15:58:01:
f9:96:5e:bf:94:ac:b1:39:30:84:91:78:5e:e4:2a:5f:61:bd:
93:a9:a8:64:4c:c9:9b:12:1e:e2:b4:3c:0f:f9:35:80:bc:2f:
6f:31:63:c0:66:01:53:ac:ef:6c:23:83:19:84:02:54:83:80:
8c:3f:a7:fa:ba:7e:7c:1f:82:0a:00:40:41:d1:49:96:ca:3b:
74:38:10:48:fc:88:45:c1:80:37:df:cf:d1:4c:0e:83:84:d2:
45:df:7d:c8:8c:9f:90:d7:2a:c4:07:da:af:f3:15:b7:81:9a:
fe:f1:32:f7:93:d6:e2:4d:32:55:58:f2:43:df:7d:a1:06:8a:
1a:54:c3:b4:60:23:78:64:b2:43:d5:9e:8a:dc:af:83:80:7f:
f1:a3:10:0d:43:52:53:7b:c3:97:15:ba:91:9d:f8:a0:fa:f1:
87:9c:7d:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:16 2024 by rpki-client on console-ams.rpki-client.org