Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/9fOoZD2BUKqQIA_hSf5ubLLp2x0.roa
File: 9fOoZD2BUKqQIA_hSf5ubLLp2x0.roa (raw, json)
Hash identifier: 8daD9ch8TN7JBC9LZrkiGlhzIfB4pp7Dh79piCLbfcU=
Subject key identifier: F5:F3:A8:64:3D:81:50:AA:90:20:0F:E1:49:FE:6E:6C:B2:E9:DB:1D
Certificate issuer: /CN=9d2d86c028bfc38e875455cf82689a36265302c2
Certificate serial: 09E656D2
Authority key identifier: 9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nS2GwCi_w46HVFXPgmiaNiZTAsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/9fOoZD2BUKqQIA_hSf5ubLLp2x0.roa
Signing time: Sat 01 Jan 2022 04:52:38 +0000
ROA not before: Sat 01 Jan 2022 04:52:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205321
IP address blocks: 185.217.248.0/22 maxlen: 24
2a0c:af00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166090450 (0x9e656d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2d86c028bfc38e875455cf82689a36265302c2
Validity
Not Before: Jan 1 04:52:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5f3a8643d8150aa90200fe149fe6e6cb2e9db1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9c:45:72:e0:f7:d0:3c:50:2c:4a:48:90:8f:
19:e8:ff:91:b4:46:b9:23:d1:80:f6:5b:62:b8:b6:
bd:d6:bd:7c:b0:6b:e9:88:26:92:cb:fd:7d:ff:a4:
da:3a:fd:df:76:37:63:97:2f:11:7c:21:57:b5:22:
fc:67:59:26:1f:08:c6:33:b5:e2:2b:f1:bb:81:69:
db:bf:7a:d4:bc:af:91:05:f0:16:ad:c0:60:e5:4f:
5c:1a:7c:08:78:43:19:5b:80:04:b4:66:be:60:c2:
3e:55:b3:a1:93:6f:a7:78:5b:7d:d0:d1:75:16:7a:
bd:ac:23:50:1a:d5:e7:b5:04:da:f5:67:61:af:24:
a6:78:ea:8a:31:c1:2c:05:2a:fa:db:d5:1f:4f:0c:
f2:55:b4:1e:d9:2b:33:6d:88:5f:18:7a:d9:6a:82:
87:5d:fa:70:25:d4:62:7a:e9:87:7b:35:db:45:f9:
14:9d:24:5a:2b:cc:fe:78:1b:76:82:e6:01:63:43:
65:3b:0a:e1:ff:97:12:e8:57:5b:ac:87:7a:ae:a6:
18:e9:5f:89:9b:ba:be:c9:a7:51:fb:fd:2e:f6:36:
66:8f:e9:67:ac:5b:d6:9b:11:02:07:0f:95:86:72:
84:1b:97:85:84:f9:08:b7:ce:05:2f:09:70:d1:a8:
31:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F3:A8:64:3D:81:50:AA:90:20:0F:E1:49:FE:6E:6C:B2:E9:DB:1D
X509v3 Authority Key Identifier:
keyid:9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nS2GwCi_w46HVFXPgmiaNiZTAsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/9fOoZD2BUKqQIA_hSf5ubLLp2x0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/nS2GwCi_w46HVFXPgmiaNiZTAsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.248.0/22
IPv6:
2a0c:af00::/29
Signature Algorithm: sha256WithRSAEncryption
bf:9b:d4:ab:fd:f7:83:c7:4b:e4:d2:fb:7c:bb:7d:a4:26:91:
a9:51:8f:f6:3b:f6:dc:7d:08:8f:51:9f:ac:36:c9:73:51:7a:
02:89:f5:f5:8b:c4:f3:ea:86:e9:18:19:ac:da:9e:57:d8:19:
0c:b6:52:f9:1c:81:4a:f6:3c:13:6b:88:91:12:29:27:fe:d4:
c0:e4:e7:0a:a7:9d:73:fc:21:df:9e:e1:74:74:94:9c:41:4a:
62:8d:72:b2:c5:9b:97:c6:b8:e0:ef:cb:2b:d4:b3:7e:da:5f:
ed:82:a3:78:0e:36:83:5f:4a:83:8d:05:66:b6:b6:5e:a3:d3:
11:c7:68:99:e1:8f:63:75:3e:46:94:c9:24:21:5b:78:c2:29:
1b:ce:4a:39:ad:c3:ed:cc:a9:51:1b:b5:70:f6:c1:03:d0:12:
ab:98:a7:e6:12:4f:59:4f:2f:a0:8a:bc:8c:02:16:f7:c6:c7:
c5:bf:11:45:3a:bd:e2:07:1f:07:4b:11:67:8c:d4:fc:3a:11:
3f:67:bf:ff:a4:4d:22:ed:b3:1a:44:47:50:ca:73:ad:46:8d:
a8:43:c0:2a:cc:ba:91:0d:31:0b:ea:36:34:8c:99:ba:38:02:
ab:3a:69:98:d5:de:76:03:cb:47:bd:41:06:a2:d2:96:a5:5e:
8d:3d:81:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:59 2024 by rpki-client on console-fra.rpki-client.org