Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/_OVOn7-nd3XuX_iJAvKRHPLGKWA.roa
File: _OVOn7-nd3XuX_iJAvKRHPLGKWA.roa (raw, json)
Hash identifier: NhgsXNhuBH2ExiOaibeMCUPrCZfz4R8EGFxW6309NLY=
Subject key identifier: FC:E5:4E:9F:BF:A7:77:75:EE:5F:F8:89:02:F2:91:1C:F2:C6:29:60
Certificate issuer: /CN=e75bce163cb502a657f272f79fd3e487fbbd4b88
Certificate serial: 122FF062
Authority key identifier: E7:5B:CE:16:3C:B5:02:A6:57:F2:72:F7:9F:D3:E4:87:FB:BD:4B:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51vOFjy1AqZX8nL3n9Pkh_u9S4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/_OVOn7-nd3XuX_iJAvKRHPLGKWA.roa
Signing time: Sat 01 Jan 2022 12:56:20 +0000
ROA not before: Sat 01 Jan 2022 12:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206288
IP address blocks: 185.35.84.0/22 maxlen: 22
2a00:f280::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 305131618 (0x122ff062)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e75bce163cb502a657f272f79fd3e487fbbd4b88
Validity
Not Before: Jan 1 12:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fce54e9fbfa77775ee5ff88902f2911cf2c62960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a7:63:b4:ac:03:8f:34:39:73:20:8d:70:2f:
08:f2:f4:5e:26:bf:aa:d3:f1:36:3b:58:c1:9e:65:
ea:5f:51:19:32:91:72:60:da:c5:a3:32:a7:86:c3:
2b:0c:22:7b:27:69:8e:3c:cf:75:01:83:ed:74:b4:
51:78:12:16:af:1b:5f:56:ae:bd:c4:49:7a:7a:cf:
ae:2e:e2:ea:89:e7:b6:89:a7:bc:ef:20:bf:f0:f7:
a3:90:02:f0:55:70:b0:e2:82:6d:a5:fe:4a:67:0d:
84:10:2b:4f:3a:37:f8:ca:00:0d:c4:15:9d:58:d8:
be:9a:9e:a2:b6:c3:35:9a:56:b6:83:83:ee:33:b6:
52:f2:e7:90:b4:a6:32:ce:dd:84:88:c2:6a:86:31:
2b:cf:ea:7d:a6:1c:69:51:57:35:84:39:54:46:8b:
30:79:17:f5:31:3e:84:4f:96:d1:02:a6:48:1e:ad:
2d:ff:7e:21:0e:59:62:31:ae:dd:fd:5f:1f:8d:af:
a9:91:f5:97:21:c6:78:64:64:1a:8a:a4:de:49:6d:
1c:a4:a3:99:9f:18:e8:fd:50:c4:cb:37:13:a2:90:
cf:f2:77:7d:b5:58:51:5a:ca:87:ac:30:a3:e8:e8:
1e:82:28:1b:c0:e5:40:ab:62:22:52:36:fd:c6:63:
8b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E5:4E:9F:BF:A7:77:75:EE:5F:F8:89:02:F2:91:1C:F2:C6:29:60
X509v3 Authority Key Identifier:
keyid:E7:5B:CE:16:3C:B5:02:A6:57:F2:72:F7:9F:D3:E4:87:FB:BD:4B:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51vOFjy1AqZX8nL3n9Pkh_u9S4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/_OVOn7-nd3XuX_iJAvKRHPLGKWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/51vOFjy1AqZX8nL3n9Pkh_u9S4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.84.0/22
IPv6:
2a00:f280::/32
Signature Algorithm: sha256WithRSAEncryption
9f:02:26:6f:0a:c6:e6:3f:8a:d4:d6:30:e4:3d:27:67:6b:ee:
e9:2d:89:98:e4:14:98:b7:0e:f4:66:6f:e0:77:d9:ce:d6:d4:
ab:db:41:dd:7e:44:0a:1c:60:a5:61:86:73:9d:15:89:09:04:
d6:b2:24:05:e2:82:57:79:15:01:bd:2a:69:b8:8c:1a:41:20:
24:67:5b:89:9e:0d:21:ca:13:d3:57:81:9a:60:38:8a:c0:88:
df:5d:6a:a0:2a:96:13:da:58:e1:6f:a5:6b:43:f6:26:a6:d2:
52:da:9d:f9:1b:da:32:a6:a1:49:79:ae:7d:3f:14:dc:30:cf:
fb:49:1c:b5:f8:84:06:c9:9c:96:eb:99:2f:c6:c5:c2:73:7a:
b2:4b:b4:b3:78:b5:4b:dd:85:0f:eb:6c:a4:1f:a5:94:c3:a2:
1c:3a:26:cf:ee:d3:9b:5b:af:26:fa:2b:f1:d7:c6:a5:ad:e0:
a6:67:15:b3:48:73:4d:22:e2:d2:ca:94:76:96:26:b0:a7:39:
76:68:a0:8f:7a:68:25:af:5d:0e:40:36:8a:09:9e:3d:86:08:
1e:31:24:47:26:96:49:30:ed:6d:72:c8:21:64:ed:bc:30:00:
ca:b6:31:20:06:e7:25:6e:4a:11:18:ca:4f:b8:52:aa:05:7a:
08:4c:99:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:57 2023 by rpki-client on console-fra.rpki-client.org