Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/lne7Frbs32SAi8eBSsYOtXbjMZI.roa
File: lne7Frbs32SAi8eBSsYOtXbjMZI.roa (raw, json)
Hash identifier: f8NwD7nL0qPdEnCh1tgn4RrXWIrVyw1nOkN0pKbmrv0=
Subject key identifier: 96:77:BB:16:B6:EC:DF:64:80:8B:C7:81:4A:C6:0E:B5:76:E3:31:92
Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Certificate serial: 07281BA3
Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/lne7Frbs32SAi8eBSsYOtXbjMZI.roa
Signing time: Sat 01 Jan 2022 05:01:01 +0000
ROA not before: Sat 01 Jan 2022 05:01:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42184
IP address blocks: 185.104.163.0/24 maxlen: 24
2a06:3201::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120069027 (0x7281ba3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Validity
Not Before: Jan 1 05:01:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9677bb16b6ecdf64808bc7814ac60eb576e33192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:26:2c:24:f7:4a:78:fb:06:11:e2:79:99:e7:
a1:f4:96:14:07:aa:e2:11:62:bf:76:75:63:bc:89:
22:26:58:b1:5f:7f:64:51:bc:fd:ea:c2:0c:48:18:
d3:ec:3e:c5:6e:e7:b7:db:2f:fe:da:71:6c:20:4a:
8c:10:65:72:7d:9a:02:9f:ce:3e:04:88:d1:78:c4:
c7:35:23:c0:1c:55:38:82:d2:3c:35:1b:73:26:b4:
36:88:5b:98:29:43:bd:96:b4:28:f8:1c:ff:ea:2b:
47:14:c0:19:cf:60:84:ce:df:c8:aa:c2:78:3e:c5:
bc:29:7a:37:a2:01:ea:10:e7:2d:b0:ee:64:03:3e:
dd:cc:bc:63:89:5c:3a:b1:8e:ae:53:c4:df:86:7b:
56:0b:f2:fb:b9:58:43:f5:a0:d5:87:b0:e6:e9:28:
86:c3:31:b8:bb:80:a2:9e:b7:94:73:38:8e:75:f1:
17:35:5b:09:f9:81:23:19:76:88:86:9e:b0:8d:61:
8a:63:14:94:35:2f:1d:fc:b0:f6:6b:c7:b2:a7:a5:
73:ff:bf:9f:c4:a0:f7:49:0f:ad:ae:c9:44:1e:95:
24:9b:4b:bf:37:bb:38:c1:5e:de:06:22:c9:ce:23:
67:d4:71:61:64:9d:d9:16:ca:e1:31:f9:ae:0a:01:
f6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:77:BB:16:B6:EC:DF:64:80:8B:C7:81:4A:C6:0E:B5:76:E3:31:92
X509v3 Authority Key Identifier:
keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/lne7Frbs32SAi8eBSsYOtXbjMZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.163.0/24
IPv6:
2a06:3201::/32
Signature Algorithm: sha256WithRSAEncryption
b5:51:f4:03:bc:43:28:16:c3:66:a1:41:a0:aa:9d:f5:3a:60:
9d:14:94:84:fc:02:c1:d8:50:de:9b:be:c3:06:9e:8c:ad:a8:
33:34:b1:bb:b7:9d:67:b5:ce:5e:ab:89:f1:1e:b4:5b:bd:10:
83:0a:bb:70:1b:ce:29:75:75:5d:49:8e:e3:54:65:cd:d7:b8:
15:70:09:17:14:93:24:26:f9:1f:d2:f0:11:9c:5f:8c:de:43:
5e:37:6f:dd:d6:4d:26:df:3b:72:84:82:33:54:65:7a:c5:94:
5b:23:4e:a8:ff:50:6c:70:42:8d:9c:4b:b3:19:41:01:18:5a:
22:d0:80:87:8b:15:12:9e:1e:6a:5e:0a:22:b8:ed:1c:08:10:
a7:db:60:6c:66:30:e5:70:bc:1d:09:69:f9:91:3d:8d:f6:1f:
ec:2f:d1:14:e1:00:a4:1c:ec:32:2c:7d:a1:d6:61:54:96:13:
7e:4b:6a:c2:c7:ff:5c:c3:5c:82:9c:0d:5a:e5:16:b3:0c:d3:
64:47:49:b6:58:29:5b:df:a9:38:04:a3:50:05:72:47:84:c9:
f2:54:67:ab:db:bd:36:6a:bc:d7:19:7d:d4:56:12:b9:04:ed:
85:0f:3c:b9:fb:38:37:f2:89:92:7c:42:95:cb:95:d6:7d:58:
e2:42:27:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:45 2024 by rpki-client on console-ams.rpki-client.org