Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/3ef042-eab6-4462-b03b-7f89b168d9d7/1/_X3Et6W-uz0rn2qAJvc2LQJYPAc.roa
File: _X3Et6W-uz0rn2qAJvc2LQJYPAc.roa (raw, json)
Hash identifier: pSzsJd7DSi8BoOeQ6dPymEU2Ik1sA75fvrXZ5lrDUss=
Subject key identifier: FD:7D:C4:B7:A5:BE:BB:3D:2B:9F:6A:80:26:F7:36:2D:02:58:3C:07
Certificate issuer: /CN=2ae4a8cf94403c7f9dad27f3c9ffe731e86b7787
Certificate serial: 0F4198FE
Authority key identifier: 2A:E4:A8:CF:94:40:3C:7F:9D:AD:27:F3:C9:FF:E7:31:E8:6B:77:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KuSoz5RAPH-drSfzyf_nMehrd4c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/3ef042-eab6-4462-b03b-7f89b168d9d7/1/_X3Et6W-uz0rn2qAJvc2LQJYPAc.roa
Signing time: Sat 01 Jan 2022 11:01:47 +0000
ROA not before: Sat 01 Jan 2022 11:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48348
IP address blocks: 185.86.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 255957246 (0xf4198fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ae4a8cf94403c7f9dad27f3c9ffe731e86b7787
Validity
Not Before: Jan 1 11:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd7dc4b7a5bebb3d2b9f6a8026f7362d02583c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:08:6e:14:cd:f6:41:58:14:6b:e6:8a:71:90:
f5:6a:0a:69:d9:04:d7:c4:29:d5:6a:52:47:04:09:
3f:4c:23:99:54:5f:af:1f:1f:a9:48:08:92:56:95:
bb:8a:44:8f:50:11:82:72:48:df:12:21:13:70:1c:
f1:dc:eb:75:93:1b:e7:a2:72:9b:28:10:b0:bd:ea:
a7:9b:fd:86:bf:86:dc:51:f4:cd:85:a2:e5:9e:bd:
0a:88:e0:09:28:e2:ed:0d:b0:15:11:4b:eb:26:ac:
a1:2e:8b:25:c7:b2:95:8a:85:f4:80:d2:c4:4a:e5:
ae:0c:0a:b0:10:a5:af:ae:43:83:5d:13:67:f7:87:
ea:26:20:d6:65:14:fc:d8:39:e0:53:08:f0:7a:7f:
c8:b7:11:f9:5a:ff:56:17:38:bf:30:07:53:1b:ac:
ee:43:7f:76:74:fc:b5:3d:67:3e:53:2f:2a:48:34:
4d:57:4b:fa:4d:b5:3b:ec:0b:16:c1:e1:55:26:b9:
2d:2c:19:c3:a4:53:68:e8:c3:44:d3:b1:b7:1b:8f:
62:e8:1f:e1:94:5e:b5:b0:cc:02:2f:e8:e0:39:f9:
aa:36:31:1f:87:96:04:e5:df:11:48:70:79:91:86:
7a:2d:56:69:e1:83:3a:06:11:3e:95:87:9c:cc:3d:
e4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7D:C4:B7:A5:BE:BB:3D:2B:9F:6A:80:26:F7:36:2D:02:58:3C:07
X509v3 Authority Key Identifier:
keyid:2A:E4:A8:CF:94:40:3C:7F:9D:AD:27:F3:C9:FF:E7:31:E8:6B:77:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KuSoz5RAPH-drSfzyf_nMehrd4c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/3ef042-eab6-4462-b03b-7f89b168d9d7/1/_X3Et6W-uz0rn2qAJvc2LQJYPAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/3ef042-eab6-4462-b03b-7f89b168d9d7/1/KuSoz5RAPH-drSfzyf_nMehrd4c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.248.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:2f:76:00:2e:0d:ba:f5:3f:8e:d4:a1:a0:57:be:a4:0f:77:
b0:c5:48:b1:c4:ed:01:5e:17:84:15:b1:f0:10:ce:66:43:ab:
c8:3d:5e:ae:d0:40:0f:e1:cb:17:54:06:78:50:4b:fb:2c:f5:
b5:07:df:07:3d:cd:ec:7e:88:d2:e2:9a:24:61:e5:81:65:58:
9c:1b:48:b7:26:49:c0:7d:aa:94:ee:31:85:fe:4d:8f:d3:63:
39:39:bd:34:af:1b:e6:ec:4f:8a:28:8c:b5:c4:27:c6:9c:3b:
12:fd:7a:8c:f1:17:6a:7c:3a:59:0d:c9:cf:1d:1c:fe:f9:10:
56:65:26:ce:56:42:f0:6f:85:62:e6:1e:c6:11:5d:33:97:3a:
e1:b6:55:ac:74:49:cd:9d:a1:1d:63:11:1a:6e:23:35:2c:8b:
df:54:4d:15:91:0d:69:6e:43:92:0f:84:c0:12:07:cb:77:f5:
e1:6e:8b:4f:e2:ca:3d:f1:54:1d:43:0c:fb:53:3c:38:5a:ea:
7f:ee:4d:da:15:d3:89:44:10:3e:34:28:a9:55:a1:6f:1f:2b:
73:c0:a9:bf:d7:f6:a8:80:1a:ac:f1:c1:5f:bb:8f:f8:30:55:
d2:61:bf:5c:45:2f:2d:b5:d0:e6:db:ff:47:1f:e8:da:55:4f:
0e:c1:65:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:35 2024 by rpki-client on console-fra.rpki-client.org