Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/g1aaZB6LXOqHq8PM3qeOEiRMI2o.roa
File: g1aaZB6LXOqHq8PM3qeOEiRMI2o.roa (raw, json)
Hash identifier: 9yKl8HYkM5F65PtAimGt29FuYCYqdvFHGefP70TxHpk=
Subject key identifier: 83:56:9A:64:1E:8B:5C:EA:87:AB:C3:CC:DE:A7:8E:12:24:4C:23:6A
Certificate issuer: /CN=bef2158a0f2a42617a821a0b4fcc9c9a93f4246d
Certificate serial: 07C92336
Authority key identifier: BE:F2:15:8A:0F:2A:42:61:7A:82:1A:0B:4F:CC:9C:9A:93:F4:24:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vvIVig8qQmF6ghoLT8ycmpP0JG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/g1aaZB6LXOqHq8PM3qeOEiRMI2o.roa
Signing time: Sat 01 Jan 2022 01:54:55 +0000
ROA not before: Sat 01 Jan 2022 01:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47943
IP address blocks: 185.255.32.0/22 maxlen: 22
2a0c:5740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130622262 (0x7c92336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bef2158a0f2a42617a821a0b4fcc9c9a93f4246d
Validity
Not Before: Jan 1 01:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83569a641e8b5cea87abc3ccdea78e12244c236a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:39:cb:c4:68:b3:00:8c:a5:e3:c6:0c:ec:11:
57:d6:38:e6:44:8f:44:ef:14:42:f6:55:2d:ae:2f:
43:85:95:90:a7:6d:55:14:d7:e1:82:e4:51:ca:7a:
0d:6d:b0:f1:81:67:70:c4:b6:b2:1a:02:24:30:dd:
d8:37:11:4d:16:77:61:6b:3e:93:dd:89:62:c3:95:
65:a2:0e:de:87:28:27:0c:4a:52:43:79:c8:d1:1e:
6a:6c:10:c0:cd:dd:72:9a:7c:cf:e7:90:5d:54:51:
be:ef:fb:f1:4c:a6:05:63:3e:4a:98:7b:90:06:5a:
f0:d7:90:41:95:19:cc:9b:ad:6f:42:07:92:b4:15:
0a:9d:16:62:24:0a:6f:23:f8:77:a3:12:92:ba:ff:
ce:9b:65:11:2c:37:9b:c4:ad:26:1a:41:7a:71:2e:
fa:5e:18:49:e5:e9:b8:3b:48:3a:a8:f0:cd:04:a8:
5c:09:f8:e3:9b:2e:a3:67:36:9c:93:1c:85:7c:63:
4a:60:a4:0c:89:ff:aa:42:1d:07:04:ba:d7:52:7a:
58:e8:f6:5b:ee:47:cd:5d:05:f7:e7:d6:78:ca:f1:
5f:28:13:05:37:4c:41:58:b9:65:17:94:30:01:ff:
f7:56:d5:ea:2d:03:d1:c3:fa:9b:67:99:e6:c2:a5:
55:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:56:9A:64:1E:8B:5C:EA:87:AB:C3:CC:DE:A7:8E:12:24:4C:23:6A
X509v3 Authority Key Identifier:
keyid:BE:F2:15:8A:0F:2A:42:61:7A:82:1A:0B:4F:CC:9C:9A:93:F4:24:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vvIVig8qQmF6ghoLT8ycmpP0JG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/g1aaZB6LXOqHq8PM3qeOEiRMI2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/42d821-74af-4ced-94ea-027b58e6fdc5/1/vvIVig8qQmF6ghoLT8ycmpP0JG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.32.0/22
IPv6:
2a0c:5740::/29
Signature Algorithm: sha256WithRSAEncryption
52:bc:f9:9d:5e:1c:bf:b0:4b:74:65:97:f3:32:ea:ca:dc:97:
f9:59:1b:a3:ea:60:f9:7c:c8:8d:ab:12:74:9b:37:9e:52:43:
15:bc:8e:f6:37:c8:02:3b:b5:28:d5:62:98:f7:2e:43:2e:4c:
6c:3a:83:6d:a3:7a:3a:cf:e9:38:00:c0:cf:1c:34:97:50:c4:
c9:3f:fc:0e:96:2c:8b:71:eb:d0:2d:1a:7b:e1:20:b6:60:be:
62:d6:28:fa:90:0d:7f:79:46:87:0d:f3:65:f9:d9:eb:b6:d3:
b7:06:52:b5:54:6d:17:ee:9b:64:d1:34:7c:8e:16:ca:a8:80:
05:df:31:6e:b0:f3:5d:29:01:85:40:0b:e4:48:0b:74:ca:24:
ca:38:a0:3a:bc:f9:3e:17:bd:37:c8:8c:9c:1b:a4:16:38:33:
37:31:e5:ba:10:97:66:c6:7a:fa:2e:d5:84:d6:b0:d0:33:3f:
36:46:21:17:81:bb:a3:62:38:c9:9e:54:99:b7:36:6f:7b:f9:
15:b5:be:dc:b1:b8:b9:88:41:97:48:ca:d4:d4:88:b7:dd:e0:
61:a1:c1:8e:6a:8b:ad:38:61:44:ad:dd:7b:52:48:55:3e:08:
2b:88:98:e7:4a:9d:a1:2f:89:a0:41:82:6e:f9:04:04:85:75:
21:8b:7a:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:21 2024 by rpki-client on console-fra.rpki-client.org