Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/d8e64d-9d6c-4149-a69a-79d52dc66926/1/fOY27aHq_JsFUKIIVpLr-bfhsxg.roa
File: fOY27aHq_JsFUKIIVpLr-bfhsxg.roa (raw, json)
Hash identifier: x7HGuG+E1pVm5i1+i0YUbWtyAyPVlC/Xd+r4ja8HwW8=
Subject key identifier: 7C:E6:36:ED:A1:EA:FC:9B:05:50:A2:08:56:92:EB:F9:B7:E1:B3:18
Certificate issuer: /CN=f5d412953ac06a7c52cb26796f8806b1bb859617
Certificate serial: 07A02D6F
Authority key identifier: F5:D4:12:95:3A:C0:6A:7C:52:CB:26:79:6F:88:06:B1:BB:85:96:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dQSlTrAanxSyyZ5b4gGsbuFlhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/d8e64d-9d6c-4149-a69a-79d52dc66926/1/fOY27aHq_JsFUKIIVpLr-bfhsxg.roa
Signing time: Fri 20 May 2022 11:40:29 +0000
ROA not before: Fri 20 May 2022 11:40:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203443
IP address blocks: 185.134.48.0/22 maxlen: 22
2a07:6800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127937903 (0x7a02d6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5d412953ac06a7c52cb26796f8806b1bb859617
Validity
Not Before: May 20 11:40:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ce636eda1eafc9b0550a2085692ebf9b7e1b318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a2:09:c8:3f:77:9e:fc:66:a7:3e:09:60:b1:
6e:fb:e7:f7:ac:76:c3:12:51:c4:da:25:af:9a:cb:
23:40:c1:a8:b7:e8:68:cf:af:fb:e5:c2:db:06:ac:
7b:d3:21:e9:1b:bf:62:c3:50:d1:85:12:ef:fa:57:
a0:57:8b:ae:21:b0:d5:43:7b:33:5c:58:fc:dd:01:
3a:20:f1:02:28:f1:2c:25:40:dc:1e:2a:9b:48:7f:
0f:2a:45:da:59:2b:c8:0a:ba:dc:d8:88:8b:89:ce:
07:50:c1:64:f3:7a:6f:0c:75:41:7d:32:9c:9a:5b:
08:12:44:96:6e:f7:0f:92:d9:1b:f2:2c:7e:78:2c:
3a:2c:45:a4:c1:c2:cc:a5:c9:01:92:c0:60:15:b1:
7b:8e:8a:51:9f:04:b9:c8:e4:69:f3:81:43:b7:dd:
a8:d4:dc:c9:c4:39:ce:05:1b:f7:8b:5e:d2:fa:58:
ac:c9:1e:14:82:cc:b6:8b:b0:8c:17:00:2a:f6:61:
f5:bb:76:fe:65:ef:6c:fc:22:f2:08:62:6a:aa:6b:
4d:e6:50:84:bb:35:ba:a0:27:25:d3:7a:0b:1f:e1:
74:4c:35:8c:77:aa:6f:e6:73:9e:ad:e7:88:5a:d9:
cd:32:43:e2:8e:e3:ea:80:b6:11:39:d4:9f:af:18:
5e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E6:36:ED:A1:EA:FC:9B:05:50:A2:08:56:92:EB:F9:B7:E1:B3:18
X509v3 Authority Key Identifier:
keyid:F5:D4:12:95:3A:C0:6A:7C:52:CB:26:79:6F:88:06:B1:BB:85:96:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dQSlTrAanxSyyZ5b4gGsbuFlhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d8e64d-9d6c-4149-a69a-79d52dc66926/1/fOY27aHq_JsFUKIIVpLr-bfhsxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/d8e64d-9d6c-4149-a69a-79d52dc66926/1/9dQSlTrAanxSyyZ5b4gGsbuFlhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.48.0/22
IPv6:
2a07:6800::/29
Signature Algorithm: sha256WithRSAEncryption
6a:97:ed:33:78:4c:2e:41:84:b4:ed:75:85:6c:91:22:88:5b:
88:4e:07:1a:dc:6c:d1:cb:f4:1a:27:21:f5:44:75:4c:58:f3:
1d:22:31:3c:b5:09:ad:3a:e6:18:ec:c0:d1:72:c8:97:1f:ea:
8e:47:81:80:ae:20:50:04:87:31:f4:03:3d:fe:ff:76:39:90:
9e:db:58:b6:83:89:4b:9d:93:2c:a2:01:91:fc:5c:47:99:6c:
ff:26:5e:2b:ba:79:ba:23:1d:95:29:ff:92:4b:50:c1:34:29:
ca:65:e5:28:06:3a:7b:a6:10:b3:e2:1f:0a:a5:be:cf:58:02:
fa:bc:67:be:18:50:37:c6:16:4d:50:c3:48:72:40:b5:a6:5d:
82:62:e0:98:33:6d:15:cd:d3:20:ab:88:08:d1:09:b8:c0:cf:
97:f5:c3:a7:76:b4:de:f3:18:a2:75:e9:02:77:85:e3:54:6e:
c9:96:28:49:4b:02:cd:9f:2f:eb:c7:06:98:e8:c0:cc:ee:fa:
63:fc:68:53:db:f6:18:92:d1:d1:78:a0:2a:28:48:4f:eb:b4:
96:2c:73:01:e4:c5:96:60:5e:dd:c0:8c:be:3c:ed:3a:5a:e8:
66:f9:bf:bb:ba:50:95:c4:af:06:56:4d:3f:dd:9d:85:be:ce:
a2:e6:cc:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:19 2025 by rpki-client