Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/0qOuBPBchgzahsFu5SefH6Yoy14.roa
File: 0qOuBPBchgzahsFu5SefH6Yoy14.roa (raw, json)
Hash identifier: vwLzkdWuxc9VaMWGgX9DzYisVqYjNtzUu+ea27MPIus=
Subject key identifier: D2:A3:AE:04:F0:5C:86:0C:DA:86:C1:6E:E5:27:9F:1F:A6:28:CB:5E
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 44D40E5D
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/0qOuBPBchgzahsFu5SefH6Yoy14.roa
Signing time: Sat 01 Jan 2022 14:06:50 +0000
ROA not before: Sat 01 Jan 2022 14:06:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48635
IP address blocks: 185.69.232.0/22 maxlen: 22
185.84.72.0/22 maxlen: 22
185.105.204.0/22 maxlen: 22
185.105.216.0/22 maxlen: 22
2a05:a280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1154747997 (0x44d40e5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Jan 1 14:06:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2a3ae04f05c860cda86c16ee5279f1fa628cb5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bb:41:5a:f7:39:47:24:56:1d:9f:7b:29:e7:
ef:11:cb:d1:72:2b:14:df:e2:b8:5f:6a:42:55:1e:
28:b3:71:c5:65:0c:81:0c:29:a8:f5:4c:db:2a:ba:
75:2c:b5:fc:46:d6:de:0d:c5:09:b9:b2:6b:04:0b:
71:c2:9d:4c:06:b9:6c:3a:78:e6:ca:d7:d0:55:d0:
f4:91:cf:e7:d3:4b:91:e9:a9:e5:37:c5:f3:14:a7:
87:85:54:2f:9e:35:d2:ea:aa:b8:03:b7:b0:40:f3:
e1:3c:41:1a:37:9a:c4:0f:ef:74:2a:fe:2c:af:4b:
cb:32:ff:fc:18:f5:fd:42:bb:93:ba:4a:c0:8d:7c:
3c:43:f5:8f:61:3f:6b:9f:fd:89:69:e4:58:b6:0b:
e3:79:9e:dc:92:ba:6c:a2:36:e7:ed:85:bd:bd:dd:
bd:18:d0:57:5a:73:92:8c:a5:b3:40:5d:39:45:5c:
3f:d9:2e:a0:6a:0d:75:64:43:a7:7a:39:5a:21:06:
aa:58:eb:4f:02:6f:5a:ec:76:34:0d:9b:82:17:f9:
59:09:2f:aa:62:ed:8d:93:10:bc:54:ed:58:19:25:
6a:da:37:92:9e:cc:5e:39:f8:34:41:ad:8f:d1:62:
8b:13:f2:87:bd:ff:75:d6:21:1c:f9:0a:61:76:be:
ba:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A3:AE:04:F0:5C:86:0C:DA:86:C1:6E:E5:27:9F:1F:A6:28:CB:5E
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/0qOuBPBchgzahsFu5SefH6Yoy14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.232.0/22
185.84.72.0/22
185.105.204.0/22
185.105.216.0/22
IPv6:
2a05:a280::/29
Signature Algorithm: sha256WithRSAEncryption
c9:cc:12:e4:c9:ff:39:9f:61:bc:2a:01:ed:81:aa:e3:e6:df:
da:0f:7b:ea:ab:27:1b:8b:e9:62:34:32:89:16:49:1d:51:9a:
dc:9d:b3:a3:0f:56:68:93:cf:38:1f:01:e6:c8:ab:41:a0:a6:
22:06:7d:70:18:42:fb:f4:75:97:00:29:fa:78:e8:2a:90:0c:
21:1a:78:74:23:59:bb:be:8e:43:f9:7d:ef:54:7b:86:00:58:
e0:43:b3:5a:85:3d:d0:d7:dd:f1:20:4c:48:de:8c:85:83:61:
9c:82:ee:ae:be:c7:74:f5:f1:b5:a7:90:c2:34:61:02:53:6c:
6e:61:96:3b:49:c3:4a:ee:8f:38:0f:b3:09:e7:69:1a:21:2f:
d6:c2:ee:23:d4:1f:9b:ce:bb:ad:b1:03:fb:41:67:87:7f:44:
c6:f9:1f:27:f2:3a:db:04:c0:7c:3e:90:12:aa:01:40:8c:ae:
44:7f:66:21:3d:0a:4b:90:1f:0c:89:21:fb:cb:08:50:87:38:
04:7b:a3:1b:83:52:62:eb:12:9a:d0:85:12:59:bd:81:a8:0c:
96:7d:54:da:54:1a:6e:de:67:09:b8:ba:02:8c:dc:c0:fd:a4:
7d:66:db:c7:b0:8f:31:8c:35:53:48:a1:3e:d7:9d:23:62:56:
08:1f:1c:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org