Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/StsTktO6wjMkpa0G1DZ35eWLXVM.roa
File: StsTktO6wjMkpa0G1DZ35eWLXVM.roa (raw, json)
Hash identifier: aY3lLo1aUqVmQ3nmaKILRIkLWcgoTe1bcgdwFfptyuE=
Subject key identifier: 4A:DB:13:92:D3:BA:C2:33:24:A5:AD:06:D4:36:77:E5:E5:8B:5D:53
Certificate issuer: /CN=af002d6bb85a986bc88dbcd933209454e5b5e082
Certificate serial: 0222FD83
Authority key identifier: AF:00:2D:6B:B8:5A:98:6B:C8:8D:BC:D9:33:20:94:54:E5:B5:E0:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwAta7hamGvIjbzZMyCUVOW14II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/StsTktO6wjMkpa0G1DZ35eWLXVM.roa
Signing time: Sat 01 Jan 2022 13:58:50 +0000
ROA not before: Sat 01 Jan 2022 13:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204383
IP address blocks: 185.250.172.0/22 maxlen: 22
2a0c:fc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35847555 (0x222fd83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af002d6bb85a986bc88dbcd933209454e5b5e082
Validity
Not Before: Jan 1 13:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4adb1392d3bac23324a5ad06d43677e5e58b5d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:55:a5:17:8f:da:24:bd:a9:1a:39:e7:cd:1a:
b3:f0:be:7b:45:b9:de:88:a1:d4:3b:b3:ed:ac:dd:
6a:e5:8e:2b:12:06:42:92:78:a7:f9:a0:0b:56:c8:
b4:6b:2e:80:5c:bd:ab:83:80:32:b3:84:40:9c:63:
7f:64:83:62:00:d7:11:c7:e3:6d:ff:e8:ed:e1:48:
1a:56:69:33:07:66:f1:c7:ac:28:da:d8:ff:f6:fb:
be:98:5d:14:35:f2:b3:9d:dd:d9:74:ce:34:4e:98:
bc:36:89:62:24:40:76:10:8f:78:d0:b0:0a:0c:eb:
c0:b1:ff:ff:d7:6c:a1:e4:1e:24:e4:64:ce:79:b0:
5d:67:54:fb:af:3d:8d:d1:a4:08:df:0c:d9:d9:3f:
13:62:01:d0:6b:a1:b5:48:84:be:23:a1:b5:c5:08:
8b:01:0f:4f:61:d3:ee:5d:90:aa:35:78:01:8e:36:
1a:0d:3e:45:82:46:3e:09:25:72:1f:7b:63:0f:ea:
0f:16:8b:d4:ac:85:3a:63:94:d5:09:e1:a6:29:ea:
c8:30:a1:e7:67:a9:3a:24:27:46:b4:be:89:79:08:
ad:08:c8:e8:95:5f:77:ea:f0:ff:cb:f8:6b:79:f6:
55:73:28:6a:b2:fe:ef:97:a5:cd:06:1f:d7:da:29:
6a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DB:13:92:D3:BA:C2:33:24:A5:AD:06:D4:36:77:E5:E5:8B:5D:53
X509v3 Authority Key Identifier:
keyid:AF:00:2D:6B:B8:5A:98:6B:C8:8D:BC:D9:33:20:94:54:E5:B5:E0:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwAta7hamGvIjbzZMyCUVOW14II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/StsTktO6wjMkpa0G1DZ35eWLXVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/a2eda2-e885-4640-9c84-d6ef8e914307/1/rwAta7hamGvIjbzZMyCUVOW14II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.172.0/22
IPv6:
2a0c:fc0::/29
Signature Algorithm: sha256WithRSAEncryption
39:40:90:9e:22:d0:df:7c:d0:b6:8c:6d:a4:78:6b:c4:69:4e:
0d:1b:c1:a1:30:c9:1c:01:a5:00:f8:c4:ec:42:77:e5:b7:64:
92:52:9f:d4:14:19:8c:35:b0:1e:30:ab:76:9b:a0:c2:db:b8:
42:02:24:22:f9:a0:c8:22:5c:a9:82:4f:49:0b:a9:ab:a7:f8:
df:99:a7:5c:7d:8f:92:e9:e9:7d:21:0c:52:26:7f:a5:72:0b:
01:29:1f:b9:39:3b:bb:11:a3:38:f1:1b:65:07:71:84:ff:d7:
5c:d9:97:6e:da:47:cf:22:ba:b6:de:09:98:57:33:72:d4:ab:
7a:1e:d5:be:db:39:a3:8b:83:a7:89:7e:0c:59:e1:7b:83:54:
f7:81:5b:b8:9a:36:58:e1:2f:0e:2f:83:34:a1:15:c9:cc:45:
d2:3a:98:20:40:86:e2:d9:f4:9d:9a:7b:40:64:b6:61:df:21:
47:21:76:8d:0b:b4:b2:e7:52:59:96:f7:1f:1a:ca:3f:85:e2:
74:ac:28:f6:1b:9a:b5:c7:0d:79:cb:06:84:a8:ee:7b:79:fd:
3f:0d:20:d5:68:d6:a2:0c:d1:24:fa:e3:50:c9:e6:bb:b4:c5:
7c:5d:f0:17:68:f3:c3:a4:39:51:57:5e:dd:d7:f8:ea:76:66:
b3:dc:be:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org