Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/2IJq4OoqFUApvGFV0BEfJXxYemM.roa
File: 2IJq4OoqFUApvGFV0BEfJXxYemM.roa (raw, json)
Hash identifier: MYtH9ST5Fg9ZrBykuC9O0RsGQR2Vj58JcI4cAINj6+I=
Subject key identifier: D8:82:6A:E0:EA:2A:15:40:29:BC:61:55:D0:11:1F:25:7C:58:7A:63
Certificate issuer: /CN=c13e341c1e14d35a7496ce7828e3055f863935cf
Certificate serial: 10C21A69
Authority key identifier: C1:3E:34:1C:1E:14:D3:5A:74:96:CE:78:28:E3:05:5F:86:39:35:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wT40HB4U01p0ls54KOMFX4Y5Nc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/2IJq4OoqFUApvGFV0BEfJXxYemM.roa
Signing time: Sat 01 Jan 2022 14:06:56 +0000
ROA not before: Sat 01 Jan 2022 14:06:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206561
IP address blocks: 185.173.188.0/24 maxlen: 24
185.173.189.0/24 maxlen: 24
2a0f:46c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 281156201 (0x10c21a69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c13e341c1e14d35a7496ce7828e3055f863935cf
Validity
Not Before: Jan 1 14:06:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8826ae0ea2a154029bc6155d0111f257c587a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7a:aa:18:87:b0:2b:47:7a:13:0f:07:09:4e:
d2:84:d2:75:81:40:9b:52:55:d7:d4:86:59:52:f2:
e6:8f:e0:3b:56:fd:37:90:77:c5:a2:a5:ac:9f:bc:
78:22:75:88:4c:6b:96:6b:d7:23:6d:22:8a:53:74:
0f:97:5e:3f:cf:82:6d:4a:33:70:6c:75:ab:69:1e:
9c:57:6e:85:b8:1b:29:07:be:57:5d:ef:c5:a4:00:
ec:72:f1:78:41:87:d0:6a:82:cb:60:ca:6e:f7:20:
a0:91:b2:e1:2c:1b:a7:11:b5:fc:8b:75:af:11:2a:
f2:b4:a9:4e:f2:ed:ae:be:c3:c9:80:9f:9b:2e:37:
c5:5d:3c:3b:28:6f:cd:f2:d6:dc:3a:9e:20:8b:58:
93:f6:4a:d8:6e:eb:f9:d4:97:59:f6:41:26:fd:1d:
49:18:32:36:c6:da:99:7a:ff:a0:7c:38:7c:d6:08:
cd:69:80:38:56:9e:74:f0:47:67:16:e4:7c:a9:d4:
88:e2:8a:79:43:76:ad:87:99:b2:a1:81:c9:7e:4f:
d8:98:da:10:b3:4d:49:31:8e:32:5d:56:54:ea:4b:
ab:98:6c:71:5b:f6:1b:ef:52:93:c1:17:07:ba:04:
e0:82:f2:d5:fd:e4:1b:f1:d9:14:7f:16:ab:4c:e3:
42:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:82:6A:E0:EA:2A:15:40:29:BC:61:55:D0:11:1F:25:7C:58:7A:63
X509v3 Authority Key Identifier:
keyid:C1:3E:34:1C:1E:14:D3:5A:74:96:CE:78:28:E3:05:5F:86:39:35:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wT40HB4U01p0ls54KOMFX4Y5Nc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/2IJq4OoqFUApvGFV0BEfJXxYemM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a4abf3-4af3-4180-8340-b13a1f20d15f/1/wT40HB4U01p0ls54KOMFX4Y5Nc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.188.0/23
IPv6:
2a0f:46c0::/29
Signature Algorithm: sha256WithRSAEncryption
30:a7:fc:4a:0f:c8:79:8e:7d:de:cf:fd:9c:3a:2c:75:05:ea:
36:e7:3c:2f:ab:d8:f6:94:97:0f:60:9e:82:c1:18:7b:1a:5a:
d2:ee:33:0f:42:1a:1e:d9:45:47:1d:6d:c5:fc:11:64:18:20:
5c:8a:d0:7f:25:08:a3:9d:a5:c7:9b:9a:de:97:c8:b4:f1:b0:
21:03:92:d7:f6:4c:0c:49:b0:4d:52:bd:24:9f:b0:d5:56:46:
47:80:75:d5:87:8b:ce:1d:49:9d:21:b4:83:6f:2f:b2:32:c9:
dc:9f:64:f2:7f:e7:42:8a:09:b6:df:14:6b:cd:da:3f:57:e6:
97:58:83:d4:eb:e9:2d:fe:7b:0d:54:74:85:b8:4a:32:b4:4f:
50:16:68:bc:50:98:45:6e:bc:a6:0d:4a:5b:89:e2:40:3c:26:
e4:7f:6d:34:1f:fe:05:39:b9:30:da:ae:6e:24:bf:9e:a1:ae:
a7:72:b4:4c:bf:cb:d1:0c:75:ee:7a:f9:67:80:55:ae:db:37:
84:a8:8c:11:a5:5d:5c:12:05:dc:32:17:e1:33:3f:e6:4e:43:
28:33:02:b6:d7:10:57:cb:d9:fd:f2:05:87:b7:2b:44:88:95:
0f:cd:c8:cd:c1:86:e9:75:56:da:54:9f:fa:27:7b:82:89:ba:
12:e8:2c:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:04 2024 by rpki-client on console-fra.rpki-client.org