Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/iA6oetdO5OeUpbb2FhmlqyEXuvw.roa
File: iA6oetdO5OeUpbb2FhmlqyEXuvw.roa (raw, json)
Hash identifier: SfX+xlkjT4YYDHagP1SgTJzbz6XiIaM53F7hrPwVtS0=
Subject key identifier: 88:0E:A8:7A:D7:4E:E4:E7:94:A5:B6:F6:16:19:A5:AB:21:17:BA:FC
Certificate issuer: /CN=09f93d62beb75bb4232dcd052d270276d36f8573
Certificate serial: 04CCAB18
Authority key identifier: 09:F9:3D:62:BE:B7:5B:B4:23:2D:CD:05:2D:27:02:76:D3:6F:85:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfk9Yr63W7QjLc0FLScCdtNvhXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/iA6oetdO5OeUpbb2FhmlqyEXuvw.roa
Signing time: Sat 01 Jan 2022 10:03:35 +0000
ROA not before: Sat 01 Jan 2022 10:03:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20860
IP address blocks: 185.141.192.0/24 maxlen: 24
185.141.195.0/24 maxlen: 24
2a04:ac0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80522008 (0x4ccab18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f93d62beb75bb4232dcd052d270276d36f8573
Validity
Not Before: Jan 1 10:03:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=880ea87ad74ee4e794a5b6f61619a5ab2117bafc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:50:a3:98:38:34:c8:34:d6:64:73:ce:0c:26:
ce:85:1f:a3:f6:9a:be:ee:5c:e4:20:c9:69:26:4d:
a0:a8:fe:c9:e0:d0:33:e4:a5:5b:14:ba:3a:d7:e1:
32:64:be:a0:a7:37:e3:b1:51:b4:3e:43:1a:6d:53:
84:88:27:56:b1:bd:69:5e:f8:5d:c2:47:48:ae:5f:
45:99:77:9c:1b:06:e8:3e:54:66:1e:06:60:dd:44:
80:76:4d:fd:b4:4d:b5:cf:2c:e3:c1:b4:dd:8d:32:
7e:bc:1f:0b:b8:4d:ec:a5:46:83:59:ee:f9:fd:ff:
3d:58:7c:66:f8:2b:a5:31:c0:25:05:6f:cb:9c:a6:
d5:4d:a1:d7:a2:30:1f:07:e0:c2:36:e7:85:3f:07:
86:ab:26:4d:e1:1e:48:44:ea:57:1e:56:80:bf:56:
c2:9d:70:c7:e9:75:fa:87:e1:be:11:e8:a4:d3:b7:
f6:d2:df:ee:7c:2b:ef:3c:e7:d6:d3:ae:35:7e:e8:
32:3c:e2:c7:fd:8a:3e:88:38:19:e9:d0:bd:5d:33:
7c:61:a9:14:f9:1f:49:50:25:7b:6b:77:d2:3d:c9:
7f:bf:e7:42:88:c4:70:aa:db:0e:40:9c:35:9a:8d:
15:4b:75:7c:5a:ab:be:f3:57:1e:5d:a5:82:ab:68:
a9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0E:A8:7A:D7:4E:E4:E7:94:A5:B6:F6:16:19:A5:AB:21:17:BA:FC
X509v3 Authority Key Identifier:
keyid:09:F9:3D:62:BE:B7:5B:B4:23:2D:CD:05:2D:27:02:76:D3:6F:85:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfk9Yr63W7QjLc0FLScCdtNvhXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/iA6oetdO5OeUpbb2FhmlqyEXuvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/Cfk9Yr63W7QjLc0FLScCdtNvhXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.192.0/24
185.141.195.0/24
IPv6:
2a04:ac0:1::/48
Signature Algorithm: sha256WithRSAEncryption
20:b3:81:36:1a:34:8e:a7:8f:de:8a:06:d6:4f:90:ac:56:f8:
66:58:d3:c4:b1:57:f6:f5:db:c6:db:d5:b7:f8:2d:7c:6e:0b:
05:a0:e8:2d:d9:19:9e:87:3b:1a:23:1f:a3:ac:94:9f:f3:7b:
ae:55:87:b1:65:f6:c1:65:de:1c:36:5b:a6:da:41:39:62:86:
c7:f5:7f:05:65:4c:4c:de:66:e8:6b:2e:c2:87:99:c1:de:53:
5b:66:b5:fe:00:41:06:a0:d9:a1:12:a0:18:c3:b2:72:bb:eb:
4a:6f:6f:65:ad:73:34:9c:a8:74:7b:d5:90:32:9f:eb:9f:0c:
57:e3:4d:3c:55:f8:ad:f2:63:97:fe:a5:7b:02:e2:25:75:0e:
2c:1d:3d:57:a9:dc:12:4e:d9:8f:d6:66:50:9c:6c:30:80:30:
14:0f:12:8f:60:22:7c:1c:e4:72:99:7f:eb:a5:00:43:4e:a5:
3f:3a:2c:b0:11:ef:01:7f:da:ba:6a:6f:09:4f:31:bf:32:1a:
cb:6a:0f:34:76:6f:d3:0c:af:99:cb:af:9a:e1:a9:51:d8:69:
a7:55:fa:e0:a9:b5:62:54:20:21:57:54:dd:86:1d:c4:3f:55:
74:2c:47:ee:f8:86:e9:5c:32:f0:95:53:e5:04:21:fd:a4:8c:
ef:13:d3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:01 2024 by rpki-client on console-fra.rpki-client.org