Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/080bf2-7b2e-465e-ae9c-c4adbeb5adc0/1/2vqAE5dhmQJZna2RNawkHzqVWpg.roa
File: 2vqAE5dhmQJZna2RNawkHzqVWpg.roa (raw, json)
Hash identifier: tLp7T28iSW4B0GhA2wOscIqCvP1OmcgL6Go1z9O8C74=
Subject key identifier: DA:FA:80:13:97:61:99:02:59:9D:AD:91:35:AC:24:1F:3A:95:5A:98
Certificate issuer: /CN=dfac628a4c5cc6e570f4f41c4e0d6395491b4d7f
Certificate serial: 0CA28C5B
Authority key identifier: DF:AC:62:8A:4C:5C:C6:E5:70:F4:F4:1C:4E:0D:63:95:49:1B:4D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/36xiikxcxuVw9PQcTg1jlUkbTX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/080bf2-7b2e-465e-ae9c-c4adbeb5adc0/1/2vqAE5dhmQJZna2RNawkHzqVWpg.roa
Signing time: Sat 01 Jan 2022 00:59:08 +0000
ROA not before: Sat 01 Jan 2022 00:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20647
IP address blocks: 185.231.124.0/22 maxlen: 22
2a0c:5f00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211979355 (0xca28c5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfac628a4c5cc6e570f4f41c4e0d6395491b4d7f
Validity
Not Before: Jan 1 00:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dafa801397619902599dad9135ac241f3a955a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:22:69:79:ee:33:70:29:e0:56:b1:f3:70:ef:
99:c5:53:a9:fc:5f:57:62:86:44:9d:ca:ee:14:0f:
2f:77:3a:7d:a0:67:13:b8:4d:37:43:8a:66:44:e4:
be:80:8b:47:ac:23:78:c1:27:db:52:f5:a8:f8:e3:
a4:a4:89:60:05:9f:53:db:4e:d2:5e:40:d9:c2:f5:
57:72:47:b3:78:0f:02:f5:1d:0f:33:0d:15:c8:0b:
1b:1c:b2:df:69:33:52:2e:e7:57:9f:45:80:06:88:
2d:73:40:14:0a:22:76:0b:e2:71:b2:88:47:2c:a6:
fb:a0:39:60:00:7c:3b:25:dc:05:a6:f0:95:77:e7:
b1:1a:40:6a:b5:dc:ef:45:0c:40:c1:3f:f9:32:9d:
b9:40:27:70:03:ca:af:fa:1c:da:a3:30:fc:99:01:
17:22:2d:b9:5b:bf:a8:8b:2b:7b:8e:b1:bb:ea:60:
36:5c:35:6e:76:70:4f:3d:a9:7d:ec:30:b5:33:45:
d1:bb:c1:27:86:5c:c9:b3:1d:c5:f1:fe:4c:39:f7:
05:d6:10:fe:9b:8e:72:ca:58:e5:60:3e:26:a1:ab:
17:46:e2:11:45:02:8b:1b:af:a3:bb:ee:1c:70:d9:
0f:ed:d9:11:8e:f9:9f:06:ae:e6:01:38:68:5b:47:
b1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:FA:80:13:97:61:99:02:59:9D:AD:91:35:AC:24:1F:3A:95:5A:98
X509v3 Authority Key Identifier:
keyid:DF:AC:62:8A:4C:5C:C6:E5:70:F4:F4:1C:4E:0D:63:95:49:1B:4D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/36xiikxcxuVw9PQcTg1jlUkbTX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/080bf2-7b2e-465e-ae9c-c4adbeb5adc0/1/2vqAE5dhmQJZna2RNawkHzqVWpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/080bf2-7b2e-465e-ae9c-c4adbeb5adc0/1/36xiikxcxuVw9PQcTg1jlUkbTX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.124.0/22
IPv6:
2a0c:5f00::/32
Signature Algorithm: sha256WithRSAEncryption
80:75:2d:60:92:c0:86:67:9a:b3:bb:68:5a:3b:fa:36:d0:29:
90:3e:55:6d:c5:8f:89:ea:b2:bc:58:ef:32:e5:bc:dc:e4:c4:
ea:6e:69:41:2f:6c:93:ff:53:93:e5:63:f5:5c:0a:f7:1e:fd:
ab:24:73:d3:5b:0d:b0:2a:37:57:29:b5:a2:8a:72:50:c6:1e:
8d:64:0d:39:a6:0b:a6:bb:f6:7d:6a:06:5b:12:0c:c4:5d:b2:
f9:92:45:d1:76:3d:2c:dd:24:64:e7:05:6a:53:1b:5d:08:ad:
38:49:e8:15:59:b2:80:f2:75:d0:56:41:a4:71:a9:ce:cf:bf:
e9:bd:8a:0b:aa:ad:f4:0c:32:58:b8:bf:4c:85:63:1f:ac:93:
6f:0e:19:57:40:97:b5:a3:21:32:c9:fe:14:e2:f4:91:a3:c0:
a6:8d:fc:c4:76:a4:a5:18:d2:75:a1:93:f8:65:e6:61:09:71:
31:08:ea:ef:85:1a:a1:56:9d:80:5d:b0:66:b6:c1:e5:88:ae:
cd:f0:da:a7:bf:2c:3b:6a:48:8e:4d:48:10:ef:48:21:af:65:
86:be:12:2c:fb:44:96:e0:73:4b:11:7d:06:5b:b8:28:fc:b4:
8c:1d:5f:dc:ec:81:42:f3:bf:f2:9e:66:30:75:ab:06:c3:eb:
08:20:8c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-ams.rpki-client.org