Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/602bfe-7a40-4f5a-9ec9-37a5d9ca6558/1/85A6YvMOd8K3yO71Xr0VEZ7CBYk.roa
File: 85A6YvMOd8K3yO71Xr0VEZ7CBYk.roa (raw, json)
Hash identifier: x4VvCHLSGVNKrVR/hYaUNF1a5Kf8JBgMdFd1MogquUo=
Subject key identifier: F3:90:3A:62:F3:0E:77:C2:B7:C8:EE:F5:5E:BD:15:11:9E:C2:05:89
Certificate issuer: /CN=753cff430f7f1751e697bb30f87fef397cc17fa6
Certificate serial: 16782B32
Authority key identifier: 75:3C:FF:43:0F:7F:17:51:E6:97:BB:30:F8:7F:EF:39:7C:C1:7F:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTz_Qw9_F1Hml7sw-H_vOXzBf6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/602bfe-7a40-4f5a-9ec9-37a5d9ca6558/1/85A6YvMOd8K3yO71Xr0VEZ7CBYk.roa
Signing time: Sat 01 Jan 2022 07:59:29 +0000
ROA not before: Sat 01 Jan 2022 07:59:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8816
IP address blocks: 185.84.228.0/22 maxlen: 22
212.121.64.0/19 maxlen: 19
212.45.128.0/19 maxlen: 19
217.174.112.0/20 maxlen: 20
2a02:4d0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 376974130 (0x16782b32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=753cff430f7f1751e697bb30f87fef397cc17fa6
Validity
Not Before: Jan 1 07:59:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3903a62f30e77c2b7c8eef55ebd15119ec20589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:16:3c:e6:68:f6:68:71:de:55:91:5e:4d:18:
4d:3a:01:48:cb:5b:1e:a9:bd:7d:6d:80:6f:1d:ba:
04:ee:4b:da:95:ea:c5:5b:0b:b3:1e:93:d9:5a:0a:
88:67:fc:a9:8c:62:25:03:19:ec:08:38:f3:e7:f2:
e4:2e:26:62:64:dc:f9:c8:46:65:56:e7:fa:ec:1f:
aa:a9:40:7a:34:9c:bb:db:0b:cc:9f:6a:5d:83:0f:
3f:f7:6d:e2:99:e9:ac:59:a2:cf:68:cb:db:8f:73:
17:ce:c4:a5:06:55:92:fe:fe:4f:09:f4:c3:0e:59:
62:4b:1b:3e:6a:57:31:48:e5:16:4d:6d:77:06:a7:
e9:2e:91:35:fc:b3:eb:fa:44:36:2e:4b:24:d8:6b:
9a:10:78:a7:38:ba:87:1e:f7:06:7c:11:79:1f:6a:
6d:fc:04:b5:77:49:42:e9:96:22:9c:d7:df:7e:e2:
cb:ef:46:6d:a6:aa:73:7a:78:3e:cb:f9:b4:78:86:
8f:bc:e2:3b:8b:70:56:1b:3e:b4:e1:42:8b:ae:40:
81:a0:94:a9:c1:ce:b5:74:72:e1:00:ec:de:25:a1:
51:4a:93:ec:50:d9:6b:8d:20:58:a8:49:6d:f0:c7:
d9:eb:2e:03:e5:11:85:12:99:fb:21:0e:8e:31:04:
ef:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:90:3A:62:F3:0E:77:C2:B7:C8:EE:F5:5E:BD:15:11:9E:C2:05:89
X509v3 Authority Key Identifier:
keyid:75:3C:FF:43:0F:7F:17:51:E6:97:BB:30:F8:7F:EF:39:7C:C1:7F:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTz_Qw9_F1Hml7sw-H_vOXzBf6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/602bfe-7a40-4f5a-9ec9-37a5d9ca6558/1/85A6YvMOd8K3yO71Xr0VEZ7CBYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/602bfe-7a40-4f5a-9ec9-37a5d9ca6558/1/dTz_Qw9_F1Hml7sw-H_vOXzBf6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.228.0/22
212.45.128.0/19
212.121.64.0/19
217.174.112.0/20
IPv6:
2a02:4d0::/32
Signature Algorithm: sha256WithRSAEncryption
a7:ca:42:5e:e8:5e:be:fc:ca:c0:7e:f4:84:1f:a6:b3:d2:d1:
e5:3f:63:37:31:61:ad:62:3d:00:d4:bb:1e:e8:ef:b6:9b:96:
45:10:1f:2e:87:d2:a2:23:cf:4e:f6:b4:75:8d:de:c0:ab:86:
e6:7e:bf:8a:01:6e:08:bd:86:95:28:4e:75:4b:20:64:40:c1:
75:d6:82:88:92:b4:1c:cf:62:cd:47:0d:2a:b1:40:bd:62:76:
fc:9c:db:a7:9f:c7:3e:17:bc:06:7b:90:65:49:83:94:17:cc:
b2:ff:92:b0:63:1d:c3:f1:c7:93:c4:5e:58:72:ed:19:07:73:
eb:09:c7:b9:ad:43:ba:9a:64:ac:5b:e5:c6:d3:6c:35:d8:95:
ea:f4:c8:99:e4:bf:b7:14:ae:ec:76:e2:c9:1a:f4:46:03:98:
77:32:4b:0d:69:f3:2c:9d:14:b9:dd:3b:ec:bb:a9:bd:68:76:
b2:0f:bb:29:f6:63:96:2e:ea:cd:e9:5e:06:94:39:72:22:21:
02:46:d2:12:b8:fa:ef:c2:74:6d:2a:19:8a:66:71:15:38:0f:
a0:4c:a2:c0:5f:3f:0d:d8:94:f0:d8:e8:2d:1b:8f:6a:42:e2:
42:27:7c:d9:e2:50:62:8d:be:33:86:55:bf:7a:1e:e8:92:2f:
ec:44:32:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:46 2024 by rpki-client on console-ams.rpki-client.org