Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/bcbd03-d231-4d33-b3c5-98fa827186a9/1/3xfep7ypiSpxp620mBI6hSPiTbc.roa
File: 3xfep7ypiSpxp620mBI6hSPiTbc.roa (raw, json)
Hash identifier: ZnW+NexhEwn7mi7KQ2A3LJQ/7bqazPXVvyxOD9AS+X4=
Subject key identifier: DF:17:DE:A7:BC:A9:89:2A:71:A7:AD:B4:98:12:3A:85:23:E2:4D:B7
Certificate issuer: /CN=162d78249b721b4d2ce8cf6dfcfbc4422213ac9d
Certificate serial: 12278953
Authority key identifier: 16:2D:78:24:9B:72:1B:4D:2C:E8:CF:6D:FC:FB:C4:42:22:13:AC:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fi14JJtyG00s6M9t_PvEQiITrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/bcbd03-d231-4d33-b3c5-98fa827186a9/1/3xfep7ypiSpxp620mBI6hSPiTbc.roa
Signing time: Sat 01 Jan 2022 05:06:27 +0000
ROA not before: Sat 01 Jan 2022 05:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203944
IP address blocks: 185.118.218.0/23 maxlen: 23
185.118.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304580947 (0x12278953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=162d78249b721b4d2ce8cf6dfcfbc4422213ac9d
Validity
Not Before: Jan 1 05:06:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df17dea7bca9892a71a7adb498123a8523e24db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:94:24:c6:ab:d1:2b:c0:5e:75:6b:7f:e8:
bf:15:16:d5:9f:d6:67:af:23:d6:2d:cd:67:be:e8:
ea:67:e0:ee:9f:e5:1e:e2:5e:1b:ed:7d:bd:e7:68:
dc:75:10:8a:bc:98:6d:65:37:69:26:07:df:57:c9:
d4:19:ff:a1:98:c3:3f:e6:a7:c5:4d:50:9e:ef:a8:
54:ea:e9:ab:bd:fc:cb:da:2e:5a:93:b6:1f:c6:d7:
ae:58:11:4a:07:50:cf:60:24:fc:8f:d2:c8:ab:b3:
e0:a2:3d:ab:74:91:b6:d8:4b:ae:cb:ba:13:71:7d:
59:ad:42:c5:c0:a6:70:bd:fe:25:a3:e2:46:f7:59:
21:ce:e9:4e:ad:ce:fb:88:fc:98:dc:0b:96:1c:8a:
c8:9d:27:1b:78:bf:51:ea:bd:be:43:49:20:8b:03:
b1:08:35:ca:12:bb:b7:88:1d:9a:ab:7f:43:3f:5f:
ad:15:0a:2e:9c:89:9c:59:79:58:1a:de:d1:5e:04:
12:03:a9:48:58:ad:3d:2e:dc:59:93:31:00:02:fe:
f6:ed:57:35:74:9c:92:1b:93:bd:0e:2a:e5:b9:d6:
a9:5d:22:15:50:15:ef:e3:02:d7:0c:09:2e:71:4f:
e6:28:9a:c0:8a:78:d5:58:b0:8e:48:82:c4:72:0f:
70:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:17:DE:A7:BC:A9:89:2A:71:A7:AD:B4:98:12:3A:85:23:E2:4D:B7
X509v3 Authority Key Identifier:
keyid:16:2D:78:24:9B:72:1B:4D:2C:E8:CF:6D:FC:FB:C4:42:22:13:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fi14JJtyG00s6M9t_PvEQiITrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/bcbd03-d231-4d33-b3c5-98fa827186a9/1/3xfep7ypiSpxp620mBI6hSPiTbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/bcbd03-d231-4d33-b3c5-98fa827186a9/1/Fi14JJtyG00s6M9t_PvEQiITrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.216.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:b9:20:15:59:74:82:54:bd:c2:ca:c7:44:b4:27:59:e8:d1:
52:29:42:70:fc:f4:f7:2c:dd:ec:5b:43:71:e5:e2:53:43:25:
b2:6c:56:b0:3a:ee:ae:d1:26:a5:fe:93:f8:e9:83:e0:ca:5e:
5a:ca:0e:a9:df:ba:87:a9:43:3d:8a:48:66:1d:27:b6:1f:2c:
67:b6:c6:9c:e9:2d:c9:56:71:34:08:ec:b3:9f:1e:59:4a:53:
6f:d1:d7:70:27:8c:0c:4c:25:3d:90:86:ff:0f:7e:39:01:81:
c2:50:63:34:b5:4c:ce:00:80:33:c5:f4:51:bd:68:28:22:f3:
b0:58:d2:0b:9b:95:8a:86:09:3a:c8:cc:89:dc:45:e2:55:d4:
33:ae:a2:45:53:73:96:09:3f:6d:7d:5e:be:a8:4b:78:64:12:
23:19:8b:2a:2a:17:75:58:ae:25:a8:df:a2:1b:20:c8:87:f1:
9b:8d:b1:6e:d4:6c:94:27:94:64:12:4b:a5:44:ee:56:6b:01:
98:96:09:ad:92:12:a2:fb:ee:fa:3a:cb:22:ed:db:e7:e0:fd:
8c:1b:20:b9:b6:8d:56:22:0e:92:dc:d4:d9:bc:00:ae:57:84:
43:f5:05:89:3e:f8:1c:ea:86:3a:6f:36:c4:ab:a2:1d:e3:77:
5f:bd:ef:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:24 2024 by rpki-client on console-fra.rpki-client.org