Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/9159ea-076c-49a5-916b-110b7e58ede8/1/7-50QLN181h4EJIG34rSSqRHB98.roa
File: 7-50QLN181h4EJIG34rSSqRHB98.roa (raw, json)
Hash identifier: 2LWLWfESE81LdBExAazC11XjUPZmiIjIhKnHEtCXA6I=
Subject key identifier: EF:EE:74:40:B3:75:F3:58:78:10:92:06:DF:8A:D2:4A:A4:47:07:DF
Certificate issuer: /CN=2b6b822eddcfd1219daa94fc43463ca8baaec780
Certificate serial: 0E9279E0
Authority key identifier: 2B:6B:82:2E:DD:CF:D1:21:9D:AA:94:FC:43:46:3C:A8:BA:AE:C7:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2uCLt3P0SGdqpT8Q0Y8qLqux4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/9159ea-076c-49a5-916b-110b7e58ede8/1/7-50QLN181h4EJIG34rSSqRHB98.roa
Signing time: Sat 01 Jan 2022 12:05:24 +0000
ROA not before: Sat 01 Jan 2022 12:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58075
IP address blocks: 185.186.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244480480 (0xe9279e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b6b822eddcfd1219daa94fc43463ca8baaec780
Validity
Not Before: Jan 1 12:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=efee7440b375f35878109206df8ad24aa44707df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6f:d5:e9:8b:de:2f:d0:4f:30:38:c3:3e:b6:
91:fe:ac:54:b8:96:e7:a3:98:b8:e9:59:d8:b2:9a:
f9:84:ad:47:a0:d1:f1:6f:fa:ac:4d:a6:47:96:11:
28:79:23:43:ea:2b:11:99:a3:42:33:ff:29:c8:25:
aa:f3:bd:ca:89:de:dd:1d:6e:aa:32:28:60:24:15:
16:9a:25:31:2e:60:b7:c3:0a:45:80:b9:0a:3a:95:
20:ce:2c:b3:14:b2:1c:a1:25:14:dd:70:6b:0f:9a:
18:3b:40:47:29:1c:b4:31:45:b7:bc:7b:79:6a:cb:
0e:21:cf:c9:6e:39:14:c9:b8:3a:33:68:12:0c:00:
29:73:2a:f5:48:1b:1d:a5:3e:bb:a3:ca:c7:16:4e:
26:3e:60:f8:b2:a2:27:f3:35:bc:fc:9c:88:ba:3e:
6a:c8:4c:b3:ef:e5:76:bd:94:b9:31:6d:65:11:7c:
ce:f0:3e:9d:99:2d:d6:b7:bc:71:06:d0:4c:3d:b0:
33:b9:9a:3e:60:5a:74:85:ef:8d:ad:65:5a:b8:57:
05:c1:26:8f:46:e8:94:01:ad:d1:7f:5e:f7:08:c9:
22:dc:3b:6f:1f:db:32:5d:46:2e:31:09:e7:1e:0e:
4e:d5:2f:f4:bf:40:37:95:dc:73:89:c9:2b:58:1a:
43:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:EE:74:40:B3:75:F3:58:78:10:92:06:DF:8A:D2:4A:A4:47:07:DF
X509v3 Authority Key Identifier:
keyid:2B:6B:82:2E:DD:CF:D1:21:9D:AA:94:FC:43:46:3C:A8:BA:AE:C7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2uCLt3P0SGdqpT8Q0Y8qLqux4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/9159ea-076c-49a5-916b-110b7e58ede8/1/7-50QLN181h4EJIG34rSSqRHB98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/9159ea-076c-49a5-916b-110b7e58ede8/1/K2uCLt3P0SGdqpT8Q0Y8qLqux4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.172.0/22
Signature Algorithm: sha256WithRSAEncryption
63:bd:42:3b:9e:f7:b7:ec:7e:fe:27:c1:23:ad:51:fb:8b:bf:
f2:f0:66:9e:1f:61:87:f0:bf:7b:f0:10:d5:5f:0e:5c:c3:fc:
11:07:e6:40:b5:bc:db:cb:ce:07:4a:07:bb:fd:e6:02:12:97:
3c:89:00:ef:85:35:f0:2a:d5:1b:f9:09:f7:21:ff:20:ed:35:
1b:65:80:cf:d3:1d:5f:5e:06:d4:24:1d:d3:07:a9:7b:7e:87:
77:b5:f5:56:eb:9e:29:c4:bf:76:a8:62:30:e2:fe:8f:9a:bb:
a0:a0:79:90:dd:d6:20:5b:9c:43:f8:f3:49:be:36:19:7d:f0:
6c:9a:b3:20:3f:38:ae:b9:a0:9d:5c:10:ba:91:bc:f9:7b:db:
97:70:6f:a5:8c:b9:4c:30:7e:28:bf:8d:83:96:43:6b:9f:9d:
4b:f5:56:b9:a0:ba:13:80:19:83:8e:ac:82:18:41:55:6f:2a:
07:d4:0c:08:4e:62:90:1d:5f:1e:8d:e3:76:f1:87:09:ab:84:
e1:b6:1f:69:50:f0:fe:db:22:54:0a:9b:23:54:f7:64:e5:d7:
f3:a9:d7:e2:a1:44:f6:5e:0d:b6:41:a1:40:47:28:09:36:fe:
f4:67:ac:20:5a:c4:97:8c:61:57:76:de:cc:7b:82:e4:66:bb:
80:9b:01:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:22 2024 by rpki-client on console-fra.rpki-client.org