Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/1-rEHsge_DTyOV-4o8tUNes7H0Cw.roa
File: 1-rEHsge_DTyOV-4o8tUNes7H0Cw.roa (raw, json)
Hash identifier: bPmVPNZPsL+0ELOZYZ/7Hgaet1taPrVUeCs4t5kxcag=
Subject key identifier: FA:B1:07:B2:07:BF:0D:3C:8E:57:EE:28:F2:D5:0D:7A:CE:C7:D0:2C
Certificate issuer: /CN=0502861f923c7ec1132b548f7abb861baca1f406
Certificate serial: 0182F8983CBA3920A1B37C7DF98D72344C6D
Authority key identifier: 05:02:86:1F:92:3C:7E:C1:13:2B:54:8F:7A:BB:86:1B:AC:A1:F4:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQKGH5I8fsETK1SPeruGG6yh9AY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/1-rEHsge_DTyOV-4o8tUNes7H0Cw.roa
Signing time: Thu 01 Sep 2022 10:28:22 +0000
ROA not before: Thu 01 Sep 2022 10:28:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 185.104.28.0/22 maxlen: 24
2a06:2ec0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:98:3c:ba:39:20:a1:b3:7c:7d:f9:8d:72:34:4c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0502861f923c7ec1132b548f7abb861baca1f406
Validity
Not Before: Sep 1 10:28:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fab107b207bf0d3c8e57ee28f2d50d7acec7d02c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f5:5a:c5:1d:47:bd:d1:eb:28:e4:fb:a5:81:
a4:bc:5a:f0:8f:f6:28:bc:a0:4a:72:7e:6a:7b:d3:
d7:07:ee:6f:c5:b9:e8:cd:62:ee:fc:2c:56:d2:e5:
4c:87:a4:15:4a:1f:e4:cf:69:ad:f9:db:83:3f:b9:
5b:6c:e2:99:0f:06:f4:4e:97:24:1c:a3:d5:ec:d1:
c9:56:e6:ac:7c:d3:8d:1f:4c:36:4e:85:66:cb:de:
fc:e8:2b:08:79:47:0c:bc:74:9f:03:5f:76:be:07:
1a:c2:8b:24:e2:ed:4b:5d:0d:94:6f:96:d5:b5:e4:
ad:20:0d:c6:d0:bb:40:9a:5a:50:b3:b7:35:08:00:
41:f5:cc:44:58:6c:f8:9a:af:ae:93:54:bf:a7:da:
7d:c6:3a:9d:a5:1b:af:89:63:1e:d9:6f:2e:e0:78:
82:cb:d7:21:54:36:b2:17:74:9b:be:d2:10:e9:48:
90:de:bd:b9:f8:d4:f0:0a:67:da:d9:f5:04:01:4c:
2e:7f:0d:2f:52:b0:d6:2a:25:d9:bd:81:67:89:6f:
db:be:0a:b1:5a:53:97:40:48:40:4a:86:40:93:28:
b4:73:fa:9c:dc:2d:bb:1f:9d:49:25:f7:26:50:32:
ed:e5:b9:a4:32:84:4c:f9:79:5b:90:76:c0:9f:6a:
57:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B1:07:B2:07:BF:0D:3C:8E:57:EE:28:F2:D5:0D:7A:CE:C7:D0:2C
X509v3 Authority Key Identifier:
keyid:05:02:86:1F:92:3C:7E:C1:13:2B:54:8F:7A:BB:86:1B:AC:A1:F4:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQKGH5I8fsETK1SPeruGG6yh9AY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/1-rEHsge_DTyOV-4o8tUNes7H0Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/a9276f-e8c1-45d6-a42d-0c64debe9ec4/1/BQKGH5I8fsETK1SPeruGG6yh9AY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.28.0/22
IPv6:
2a06:2ec0::/29
Signature Algorithm: sha256WithRSAEncryption
92:a0:fa:38:85:e2:75:b1:10:54:bb:62:a1:4b:c2:b4:16:08:
44:03:a1:74:4a:bd:17:aa:60:d8:47:42:2b:09:6c:81:94:32:
1d:73:50:fb:14:af:5a:b7:22:b0:c2:ab:2e:7a:d8:45:73:14:
79:a6:15:f4:13:f9:24:5f:a3:45:c8:38:14:fc:dd:e2:e0:0d:
a2:c8:72:77:8a:e2:65:10:96:9c:25:01:45:63:b2:44:e9:8c:
1a:57:c2:35:64:36:b2:4e:e3:f3:f3:86:39:be:2e:97:91:fb:
14:0a:77:7d:d4:98:5d:66:2a:d3:bd:cc:29:3e:5e:37:7c:e1:
1f:72:f6:e7:ff:e5:6d:13:02:e4:b0:b8:51:ed:26:88:4d:af:
73:e8:da:69:26:eb:17:72:c0:a0:ed:3c:6e:00:65:14:3b:6a:
b7:32:28:8a:31:47:52:be:27:88:1d:ef:16:65:13:dc:eb:88:
7d:ee:f7:cf:1a:a7:08:80:c3:2a:68:d5:d0:82:46:cc:cf:9f:
58:a8:81:6b:77:35:1a:88:85:30:05:75:99:86:99:0c:6f:30:
d7:bf:5d:1c:4a:2e:62:12:86:b8:7a:90:28:d9:1c:d5:c9:ad:
16:f6:a2:51:2d:7a:6c:37:1b:b1:c5:37:2d:74:42:76:fe:b2:
f3:1f:90:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org