Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/fOjCD02mQ1pP-eJcl-pY5P6Ymzg.roa
File: fOjCD02mQ1pP-eJcl-pY5P6Ymzg.roa (raw, json)
Hash identifier: W7iPXVpUUQAUbqdwjtBfqa/2v122WGvHScHh9uAcre8=
Subject key identifier: 7C:E8:C2:0F:4D:A6:43:5A:4F:F9:E2:5C:97:EA:58:E4:FE:98:9B:38
Certificate issuer: /CN=6fa86d1c1676a59a46acf37336192e985cff0e5b
Certificate serial: 0181D7B36CEACD1833AF672F97A25704FA21
Authority key identifier: 6F:A8:6D:1C:16:76:A5:9A:46:AC:F3:73:36:19:2E:98:5C:FF:0E:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6htHBZ2pZpGrPNzNhkumFz_Dls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/fOjCD02mQ1pP-eJcl-pY5P6Ymzg.roa
Signing time: Thu 07 Jul 2022 08:07:49 +0000
ROA not before: Thu 07 Jul 2022 08:07:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212973
IP address blocks: 185.1.175.0/24 maxlen: 24
2001:7f8:f8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:b3:6c:ea:cd:18:33:af:67:2f:97:a2:57:04:fa:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa86d1c1676a59a46acf37336192e985cff0e5b
Validity
Not Before: Jul 7 08:07:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ce8c20f4da6435a4ff9e25c97ea58e4fe989b38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4f:67:e5:86:df:2c:79:1d:66:ce:84:e2:f7:
95:c9:3c:38:2e:1e:c8:98:0f:cb:67:f9:bc:2b:b4:
0d:aa:26:cf:6b:c6:4c:00:82:1b:40:39:de:38:e4:
d4:36:c5:cb:26:99:d9:ab:e4:5a:6a:50:ba:89:b7:
30:9a:30:e6:15:62:94:b8:c7:ab:b0:96:2c:84:18:
92:c4:92:d7:89:75:fe:a8:3f:90:71:1e:9f:bb:4e:
33:ac:bc:33:d0:8e:9e:3c:4d:ee:50:82:c5:5e:ec:
9c:47:7c:0b:47:a1:6b:b8:6c:3c:90:63:d3:ff:ab:
ca:f1:14:4f:1e:4b:2e:f1:fb:dd:f8:85:a0:9b:5a:
ea:7c:5b:1a:c5:67:a7:40:3e:91:44:cb:7f:70:af:
f8:f5:2d:10:e3:e3:3d:6c:d0:e1:e3:de:c7:30:1c:
9e:1f:aa:13:85:76:e1:e2:dd:c7:01:4f:86:a9:d4:
5b:99:ce:61:44:23:e9:0b:7a:97:13:2c:b2:87:a8:
38:4c:b8:3b:58:36:8f:f7:e1:d1:db:dd:db:13:4e:
67:5c:1b:15:69:df:2e:ea:ca:18:e7:df:39:75:26:
c5:2e:8a:9a:89:42:2b:cd:44:32:ed:80:2d:eb:ba:
52:7f:46:ac:33:01:7f:91:9d:76:c3:e1:44:b8:d8:
86:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E8:C2:0F:4D:A6:43:5A:4F:F9:E2:5C:97:EA:58:E4:FE:98:9B:38
X509v3 Authority Key Identifier:
keyid:6F:A8:6D:1C:16:76:A5:9A:46:AC:F3:73:36:19:2E:98:5C:FF:0E:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6htHBZ2pZpGrPNzNhkumFz_Dls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/fOjCD02mQ1pP-eJcl-pY5P6Ymzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/afe373-e5bc-4010-8ad6-6aab2b1b922c/1/b6htHBZ2pZpGrPNzNhkumFz_Dls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.175.0/24
IPv6:
2001:7f8:f8::/48
Signature Algorithm: sha256WithRSAEncryption
49:e1:67:21:ae:54:7e:e2:fe:72:a8:da:e1:8f:53:02:6a:bb:
60:93:56:e6:6b:01:68:c4:59:03:51:82:42:83:61:86:4c:35:
b1:5d:ce:cb:5c:d6:6d:c6:4e:b7:b1:0e:3c:4b:72:0b:75:5a:
8b:cd:66:8a:9b:33:d2:5b:56:54:4b:a8:ca:02:9d:d3:87:64:
bf:5b:18:3f:74:d7:2a:59:20:7a:85:90:4e:8b:84:16:02:ef:
21:c3:e0:f4:b8:a2:ac:b1:dd:d2:c6:02:16:db:6e:17:b4:76:
c6:78:8d:68:b2:1e:7a:5a:f2:83:69:5e:ff:c7:5d:9a:94:62:
0f:3b:49:07:9a:02:f2:d4:51:95:69:73:73:e3:2e:13:c3:58:
92:f8:20:3a:ca:54:18:cb:73:45:f0:89:f7:b4:2b:ff:be:a5:
8a:d3:98:1e:19:06:fe:05:f0:93:0e:20:31:ee:01:0b:3f:d8:
19:6b:51:7c:51:33:9e:ab:1a:41:a1:29:93:11:9a:75:0b:b3:
f9:39:e0:64:c1:db:77:52:ff:e6:6e:b5:39:11:fa:01:a0:bd:
56:60:d8:50:53:81:22:9c:cf:7e:11:a0:5d:41:da:6a:f7:53:
2d:b0:11:75:2a:5b:2e:40:f0:a5:06:85:96:6d:00:5f:fd:fc:
ba:a9:cf:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:04 2024 by rpki-client on console-fra.rpki-client.org