Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/63fbf8-5cff-4991-8f27-a41a4834ecaa/1/cfeLcHkm-mIVV7rJBxcwpXlYuqA.roa
File: cfeLcHkm-mIVV7rJBxcwpXlYuqA.roa (raw, json)
Hash identifier: I1NQML+dpkxzN6eCZwAvyI0u9oKiqZ/wlpQ8pDgqqVU=
Subject key identifier: 71:F7:8B:70:79:26:FA:62:15:57:BA:C9:07:17:30:A5:79:58:BA:A0
Certificate issuer: /CN=543c54067385a765b1d5617c43331956fb208e89
Certificate serial: 0F15D80B
Authority key identifier: 54:3C:54:06:73:85:A7:65:B1:D5:61:7C:43:33:19:56:FB:20:8E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxUBnOFp2Wx1WF8QzMZVvsgjok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/63fbf8-5cff-4991-8f27-a41a4834ecaa/1/cfeLcHkm-mIVV7rJBxcwpXlYuqA.roa
Signing time: Sat 01 Jan 2022 04:58:27 +0000
ROA not before: Sat 01 Jan 2022 04:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198595
IP address blocks: 185.202.127.0/24 maxlen: 24
2001:67c:104::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 253089803 (0xf15d80b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c54067385a765b1d5617c43331956fb208e89
Validity
Not Before: Jan 1 04:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71f78b707926fa621557bac9071730a57958baa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:61:fc:d9:44:1c:57:d7:a0:f1:db:0e:dc:56:
de:9c:12:39:c9:35:64:3a:a8:af:e0:a3:65:ac:a8:
7d:75:17:6d:48:de:42:d2:2e:01:9a:f5:d4:c2:63:
32:57:b8:2b:f9:eb:17:e3:ec:1b:91:75:da:90:58:
46:dd:ce:e5:1e:ff:af:01:f5:bb:22:16:72:79:4d:
2c:c7:70:a5:38:c7:8d:91:83:dd:f4:e7:3e:66:87:
53:e4:c8:42:02:71:e1:66:3e:ed:b1:7f:07:28:3b:
44:9d:6c:cd:19:b1:84:32:76:7c:75:b5:66:fa:77:
2e:91:b1:3d:5f:41:18:2e:ee:f2:2a:c1:0d:0e:84:
99:f7:65:fd:c8:b8:47:3f:f2:d8:62:72:d3:1f:d7:
fb:e8:41:7c:fa:73:db:05:42:d2:d7:c2:1e:1d:34:
95:72:f4:bf:fd:87:e2:dd:00:f6:5d:1e:87:21:db:
f2:df:62:17:d5:f8:e1:92:a6:88:8f:28:b9:61:c9:
1b:28:53:ed:64:d7:35:87:89:aa:51:b0:d3:ee:52:
f2:4e:6e:76:1d:45:27:56:98:82:c9:2f:8b:c1:be:
b6:67:62:f6:22:1f:4f:f6:c2:61:ac:c2:45:67:c3:
94:7d:62:00:34:cc:dd:5a:cf:0d:f6:50:34:76:4c:
51:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F7:8B:70:79:26:FA:62:15:57:BA:C9:07:17:30:A5:79:58:BA:A0
X509v3 Authority Key Identifier:
keyid:54:3C:54:06:73:85:A7:65:B1:D5:61:7C:43:33:19:56:FB:20:8E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxUBnOFp2Wx1WF8QzMZVvsgjok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/63fbf8-5cff-4991-8f27-a41a4834ecaa/1/cfeLcHkm-mIVV7rJBxcwpXlYuqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/63fbf8-5cff-4991-8f27-a41a4834ecaa/1/VDxUBnOFp2Wx1WF8QzMZVvsgjok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.127.0/24
IPv6:
2001:67c:104::/48
Signature Algorithm: sha256WithRSAEncryption
73:87:fe:b9:f9:e9:fe:9b:a1:54:30:f9:31:59:4c:4c:64:a0:
89:58:b8:c2:1b:a8:73:a9:a6:57:00:cd:0b:e5:16:1a:ff:92:
13:8f:19:ce:6b:d6:c2:f9:21:e5:da:60:65:33:c9:cc:1b:db:
e6:58:3a:43:6c:8f:94:63:e4:31:13:ad:61:23:35:4f:40:47:
87:14:4b:e6:36:ae:3a:42:7b:82:05:2c:2a:3f:83:7e:0f:a8:
73:a3:34:ca:74:b4:35:16:fe:7e:c3:15:fe:01:db:3c:f2:01:
19:14:c2:ab:5f:f5:ea:d3:b5:8c:3a:58:e8:d4:45:0d:fa:b5:
60:72:ce:44:e7:e0:9b:7d:d4:94:c9:66:84:f3:b1:f9:3a:ec:
b5:ad:77:c1:3b:b7:d9:78:c9:a1:b4:65:11:d3:e7:4d:ef:76:
f5:b1:7f:d0:13:01:a3:e5:20:a7:29:c4:8f:fc:68:c7:3c:51:
48:ed:ff:a8:76:7e:63:d7:87:30:57:dd:93:29:82:06:9a:b5:
a1:a7:80:d7:15:a0:31:8b:d6:07:c5:fb:e6:7d:69:2f:72:bd:
8c:72:05:65:db:44:fe:1a:36:c0:4a:c5:57:18:28:36:a9:50:
31:50:61:18:34:23:83:89:44:36:af:e2:5c:47:77:28:1d:04:
97:eb:98:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org