Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/pkIuNmKg_VWJ2b7VQ9o5icxYhTc.roa
File: pkIuNmKg_VWJ2b7VQ9o5icxYhTc.roa (raw, json)
Hash identifier: 6k+6SWZ2MFsafIKyoVYioYS/707xMd9u8ljPOt0NWfI=
Subject key identifier: A6:42:2E:36:62:A0:FD:55:89:D9:BE:D5:43:DA:39:89:CC:58:85:37
Certificate issuer: /CN=31d4ee4afff55e67444d47d49b512a8368bf9ef6
Certificate serial: 0263D6D7
Authority key identifier: 31:D4:EE:4A:FF:F5:5E:67:44:4D:47:D4:9B:51:2A:83:68:BF:9E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/pkIuNmKg_VWJ2b7VQ9o5icxYhTc.roa
Signing time: Mon 14 Feb 2022 15:09:45 +0000
ROA not before: Mon 14 Feb 2022 15:09:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211656
IP address blocks: 185.165.228.0/22 maxlen: 22
185.117.252.0/22 maxlen: 24
2a10:ad40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40097495 (0x263d6d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d4ee4afff55e67444d47d49b512a8368bf9ef6
Validity
Not Before: Feb 14 15:09:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6422e3662a0fd5589d9bed543da3989cc588537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:40:77:d7:9d:33:53:b6:2f:fa:1b:cb:19:b6:
ab:d3:55:86:1d:2e:b7:8d:29:64:8f:73:2e:c4:43:
c2:3e:b1:7f:9d:08:09:e4:08:a9:a3:c6:8a:01:3a:
ab:4b:ea:27:6e:56:db:b2:5f:a6:f1:d2:9f:60:13:
19:d1:29:94:b2:62:aa:b3:ed:37:63:6e:1e:f7:50:
01:ea:a7:7c:5e:be:65:55:8b:fc:ae:e2:98:96:2a:
07:fa:94:04:69:54:2b:a8:21:08:5e:d0:44:f0:41:
c5:ec:c6:e4:18:2d:39:2a:9e:5d:41:b8:73:29:f2:
40:e3:81:ef:83:dc:b3:ed:3d:03:75:72:18:18:36:
2b:9c:d9:3d:70:56:50:6d:ef:6a:e1:d1:f7:3a:96:
d8:77:81:be:17:f2:d1:82:2c:5d:21:c0:54:69:f4:
22:86:41:74:a6:79:b8:13:4f:f7:12:af:1c:33:b4:
fa:20:75:cd:8c:35:c7:33:f2:c0:a1:22:5a:f5:22:
f1:4f:f7:6c:34:2d:1c:ee:89:cd:36:29:d8:bf:61:
3c:dc:14:05:7a:6b:e7:c9:16:7a:5c:01:9c:52:0d:
5a:76:4d:ce:95:4c:b7:00:3c:8b:43:c2:ba:02:2b:
7e:cf:54:6f:6e:07:57:b7:fc:2b:b2:e8:8c:97:8e:
ab:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:42:2E:36:62:A0:FD:55:89:D9:BE:D5:43:DA:39:89:CC:58:85:37
X509v3 Authority Key Identifier:
keyid:31:D4:EE:4A:FF:F5:5E:67:44:4D:47:D4:9B:51:2A:83:68:BF:9E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdTuSv_1XmdETUfUm1Eqg2i_nvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/pkIuNmKg_VWJ2b7VQ9o5icxYhTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e44dea-8d51-440a-bc02-bab576e20393/1/MdTuSv_1XmdETUfUm1Eqg2i_nvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.252.0/22
185.165.228.0/22
IPv6:
2a10:ad40::/29
Signature Algorithm: sha256WithRSAEncryption
63:cb:c1:42:e7:c2:c5:df:d2:34:1c:4c:f0:97:26:80:da:45:
90:39:27:81:81:55:a7:d9:6d:1d:66:f7:be:31:d8:57:b3:e6:
39:11:74:e8:5e:00:12:32:e1:08:86:ba:97:68:63:4c:ef:46:
a1:cc:27:8c:96:e8:30:c7:cc:10:de:3c:26:96:b9:14:d4:08:
ef:16:45:a6:8c:1f:da:ac:e9:fc:cc:d8:2f:66:0c:78:65:34:
d9:fb:83:e5:d6:f3:0f:79:4e:a3:ca:30:6e:e4:a0:e5:41:53:
fc:c6:9b:43:8c:3e:09:0e:56:d0:ff:b7:6a:d7:34:c9:24:b3:
cc:8e:71:b3:27:5e:ac:71:da:e8:ae:8e:53:af:99:9c:39:57:
b5:fe:85:b6:4d:65:0f:93:8a:9e:58:05:f1:29:8c:d1:77:2a:
5e:0d:8b:26:23:1f:0f:03:2e:1f:ec:6f:a8:80:82:82:0c:28:
14:de:a1:05:da:d8:4c:b0:d7:37:f8:0a:0a:81:7c:b7:c1:38:
f3:e1:9b:78:95:96:8c:59:90:f7:ef:72:a9:22:52:c3:2e:42:
9a:77:34:b1:06:95:34:2d:32:36:b8:41:64:3e:12:30:1c:6b:
bf:b2:5b:a8:a9:83:5b:b8:68:7e:e4:9d:66:56:b4:87:6b:f7:
bc:52:15:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org