Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/xttSZqt31z780PY0eFB-Yo7rdh4.roa
File: xttSZqt31z780PY0eFB-Yo7rdh4.roa (raw, json)
Hash identifier: 99cVVIbTLBJFps8bpw1WjcfzmGZKVBv4BktSZygUuRA=
Subject key identifier: C6:DB:52:66:AB:77:D7:3E:FC:D0:F6:34:78:50:7E:62:8E:EB:76:1E
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FEB8B3B
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/xttSZqt31z780PY0eFB-Yo7rdh4.roa
Signing time: Sat 01 Jan 2022 14:59:47 +0000
ROA not before: Sat 01 Jan 2022 14:59:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207631
IP address blocks: 185.133.209.0/24 maxlen: 24
185.197.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267094843 (0xfeb8b3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6db5266ab77d73efcd0f63478507e628eeb761e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:99:e6:49:2d:fb:df:b1:b0:e4:88:a9:1e:76:
95:1b:b1:b9:21:a3:48:40:15:7b:1c:be:49:2a:63:
bc:f6:0b:91:e6:58:62:98:98:d7:a8:64:f2:f6:a9:
a2:38:4f:61:40:0d:38:5f:4c:7f:71:39:67:e1:fa:
aa:dd:7d:81:d6:19:19:64:8d:42:d0:b8:90:d3:99:
13:aa:98:83:fa:94:72:b7:3d:bc:02:c7:5c:6e:bf:
2d:44:eb:00:ac:37:bf:73:54:af:b4:4d:00:57:6e:
05:d2:2b:92:9f:bc:7b:22:7f:e7:bc:20:b7:a2:f7:
3d:d3:f3:38:88:0e:22:aa:cb:94:0b:0b:3e:26:8c:
04:61:84:ee:40:47:37:d4:bf:eb:14:a0:2b:ab:26:
0e:da:95:9f:9f:e1:af:78:ad:4d:af:44:dc:58:a4:
d4:f6:82:0b:43:44:6f:5a:87:4c:c5:01:46:55:22:
f8:2d:cf:f0:e1:a7:e9:af:18:20:2b:51:f1:ab:66:
0b:d6:4d:8a:b7:4e:fb:10:ff:e9:14:94:05:dc:23:
f6:c2:d7:11:c9:01:5d:0d:52:c8:95:82:8f:ff:c1:
10:65:5e:79:88:e7:5a:1e:37:55:94:1f:e8:4c:23:
85:08:21:63:63:0b:cd:16:fc:f0:bb:28:00:3d:e3:
a8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:DB:52:66:AB:77:D7:3E:FC:D0:F6:34:78:50:7E:62:8E:EB:76:1E
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/xttSZqt31z780PY0eFB-Yo7rdh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.209.0/24
185.197.134.0/24
Signature Algorithm: sha256WithRSAEncryption
39:83:5d:af:78:9a:11:48:5c:8e:3c:d7:57:a5:5f:41:ff:cf:
6d:f8:6f:b4:84:1f:23:28:c0:1c:c3:e6:60:ca:3e:86:df:88:
b9:8d:d8:2b:b7:10:91:83:7a:ff:e5:f7:a8:a7:3c:b7:87:95:
42:7a:49:d1:2f:e5:77:87:76:9d:76:3a:e1:c8:6d:64:2f:23:
cc:9c:47:17:8e:28:d9:c5:4f:7d:c8:95:60:e8:d7:d9:fe:53:
35:29:6e:e9:30:ad:4e:3d:d8:73:f9:00:d7:f8:92:b4:ce:19:
4f:93:b9:43:ea:c9:4d:ef:a3:65:0c:b5:33:be:e6:ef:3d:d7:
8f:e8:00:c5:b6:4c:e6:58:af:43:ec:d6:b0:c9:8c:7a:dc:35:
b0:ed:67:90:23:eb:a2:80:33:ed:23:1b:df:3b:29:e4:c2:30:
9f:ad:d5:f0:ff:c9:00:15:fd:52:c3:30:5d:27:f4:9e:79:ac:
39:ae:cf:d7:2f:4b:ea:62:1f:aa:c8:c6:5c:63:f3:c3:07:69:
b2:4d:15:89:a5:51:3c:b3:60:2f:22:2b:c6:d5:f4:0c:87:58:
9b:66:e9:8d:dc:5d:ec:05:0f:f6:97:21:c9:97:b6:b1:66:d1:
e7:42:13:93:8d:62:be:c9:c3:82:64:01:4c:3d:6e:5f:b8:25:
0a:89:ad:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:38 2024 by rpki-client on console-fra.rpki-client.org