Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/B6rW41FNsrMA0J848h2LJhxplMc.roa
File: B6rW41FNsrMA0J848h2LJhxplMc.roa (raw, json)
Hash identifier: IcgrK68fSNXiF2ocEd4zZ0JuMDZdHRCh+LcO9kbTh0I=
Subject key identifier: 07:AA:D6:E3:51:4D:B2:B3:00:D0:9F:38:F2:1D:8B:26:1C:69:94:C7
Certificate issuer: /CN=5b25909f3b94e55f5ef336a27d274a7dfd0d96b2
Certificate serial: 04EABFEF
Authority key identifier: 5B:25:90:9F:3B:94:E5:5F:5E:F3:36:A2:7D:27:4A:7D:FD:0D:96:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WyWQnzuU5V9e8zaifSdKff0NlrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/B6rW41FNsrMA0J848h2LJhxplMc.roa
Signing time: Sat 01 Jan 2022 09:57:49 +0000
ROA not before: Sat 01 Jan 2022 09:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41400
IP address blocks: 185.98.200.0/22 maxlen: 22
2a04:c00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82493423 (0x4eabfef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b25909f3b94e55f5ef336a27d274a7dfd0d96b2
Validity
Not Before: Jan 1 09:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07aad6e3514db2b300d09f38f21d8b261c6994c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2c:7a:bb:ad:a6:1c:93:19:77:2c:f0:1e:cd:
f4:42:09:c8:4e:97:d7:10:72:d9:43:77:98:af:e7:
3a:18:cf:18:7d:8a:b1:01:98:a0:df:2c:25:30:c7:
1c:64:99:23:78:63:6e:2a:0b:10:31:fc:1e:7a:ed:
12:e7:5e:92:c8:8b:48:f8:57:81:a9:43:28:4b:a3:
0d:85:9c:45:20:fd:b4:1f:c4:5d:d8:a7:4b:f5:ba:
74:14:65:13:69:a8:e2:7a:e8:08:02:52:2d:23:14:
b9:17:6b:51:0b:af:a8:42:97:b7:28:75:60:a4:92:
77:a1:b5:8e:28:66:b8:a8:02:e7:7e:30:e2:10:f6:
cc:5f:fe:69:c1:e3:79:bc:91:96:80:ab:0b:40:1e:
6a:10:e2:c3:3d:a0:50:5c:56:55:eb:e7:41:b3:d8:
5d:11:9d:f6:77:28:2b:19:25:b3:70:7b:fd:3a:22:
0e:b0:39:53:63:2c:8c:09:21:8e:a3:7a:aa:0c:84:
4c:dc:a6:50:39:36:c2:9b:38:a8:1a:c7:db:86:13:
19:1c:2e:f4:1e:9e:ba:7b:19:dc:f4:94:2c:ea:c5:
b5:54:4a:e1:4c:12:91:01:eb:3e:11:3c:fa:95:81:
5b:7f:ca:52:05:47:26:b0:10:81:c5:e4:49:84:57:
ee:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AA:D6:E3:51:4D:B2:B3:00:D0:9F:38:F2:1D:8B:26:1C:69:94:C7
X509v3 Authority Key Identifier:
keyid:5B:25:90:9F:3B:94:E5:5F:5E:F3:36:A2:7D:27:4A:7D:FD:0D:96:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WyWQnzuU5V9e8zaifSdKff0NlrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/B6rW41FNsrMA0J848h2LJhxplMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e1b20f-4d6d-40e0-af8a-3f17cbcba5ca/1/WyWQnzuU5V9e8zaifSdKff0NlrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.200.0/22
IPv6:
2a04:c00::/29
Signature Algorithm: sha256WithRSAEncryption
50:a8:6d:16:36:99:e3:39:da:72:8c:2d:15:23:0d:ec:44:24:
51:4e:1d:8c:33:71:28:c3:f0:19:78:de:5f:19:8d:59:6b:29:
42:39:59:e0:2b:fb:c4:6d:38:c1:43:af:04:8f:60:ee:bd:22:
72:7f:1d:b9:2f:41:c2:2f:58:ac:c7:89:5e:1c:26:33:84:48:
3e:7f:a8:3e:ad:0b:8d:4a:32:33:0e:e7:e8:15:77:6f:93:eb:
08:a8:4e:88:b4:94:10:eb:72:34:35:3e:81:ba:5f:c5:e4:3c:
0b:fe:ff:dc:61:c4:0b:15:72:3a:4f:01:98:b9:68:16:cd:86:
67:8f:77:e1:8f:c5:6f:e6:81:1b:f6:16:9a:c4:05:e4:e4:ff:
7b:97:25:54:ef:1c:fe:4b:74:ee:25:4b:d0:df:0b:59:83:f3:
c8:82:b1:07:35:5e:73:d3:04:81:a0:e3:77:32:bd:b3:c0:b5:
01:51:21:ad:6f:57:70:66:33:85:8f:77:6f:bc:2f:cb:e7:0e:
c8:e4:58:c1:bb:bd:2b:bd:cc:09:51:c4:c0:18:d8:e8:e5:9c:
c1:94:43:75:84:7c:3c:20:0e:e6:4b:78:90:fe:b4:2c:60:e7:
66:18:77:bc:0f:af:c2:b1:70:49:4b:eb:10:c1:05:71:da:eb:
1c:00:06:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:17 2023 by rpki-client on console-fra.rpki-client.org