Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/88b5c3-341c-4ea9-a948-6e8e9d52dd48/1/_gk7zoOMrrqsQmRmH6uZqe4knqY.roa
File: _gk7zoOMrrqsQmRmH6uZqe4knqY.roa (raw, json)
Hash identifier: 98+d6WZy2OXjpNSTR6thaiHAxvXQ+FL9ln4U1sFHENs=
Subject key identifier: FE:09:3B:CE:83:8C:AE:BA:AC:42:64:66:1F:AB:99:A9:EE:24:9E:A6
Certificate issuer: /CN=88d7592f411900c067b5e7a219a345abfdbaa40f
Certificate serial: 14A964F0
Authority key identifier: 88:D7:59:2F:41:19:00:C0:67:B5:E7:A2:19:A3:45:AB:FD:BA:A4:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iNdZL0EZAMBnteeiGaNFq_26pA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/88b5c3-341c-4ea9-a948-6e8e9d52dd48/1/_gk7zoOMrrqsQmRmH6uZqe4knqY.roa
Signing time: Sat 01 Jan 2022 15:03:09 +0000
ROA not before: Sat 01 Jan 2022 15:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47381
IP address blocks: 185.112.156.0/22 maxlen: 22
2a02:6080::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 346645744 (0x14a964f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88d7592f411900c067b5e7a219a345abfdbaa40f
Validity
Not Before: Jan 1 15:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe093bce838caebaac4264661fab99a9ee249ea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:22:e5:fe:37:6f:31:33:0e:f5:b6:de:83:de:
c8:ca:21:ed:8f:77:c3:df:3d:02:f2:e9:a5:1e:54:
87:72:7c:85:53:8a:1b:cf:63:74:09:ef:dc:ce:b6:
20:e7:63:ac:18:c2:e9:f6:f3:d4:b8:65:86:1d:f3:
eb:65:c9:c8:1a:4a:3f:4a:50:16:26:72:17:ac:5c:
07:41:0c:b7:44:b9:7f:32:d8:f3:c4:f0:f9:88:cc:
4f:05:6c:18:4c:89:75:53:9e:16:33:ec:c4:ca:a5:
5f:0d:31:7e:25:c1:22:c3:54:28:37:f2:fa:65:bc:
5e:12:d0:4e:dd:9f:89:34:76:62:2e:36:77:b4:fa:
4c:89:65:b0:9c:84:f0:43:14:dd:84:06:fc:c4:85:
16:6c:07:53:a5:73:59:97:b6:73:e5:37:67:51:03:
a3:03:14:63:61:f9:66:56:c8:d8:f5:7f:a7:38:3b:
80:36:b6:d5:cf:13:cf:8a:29:71:ae:b5:27:59:f2:
b5:52:9f:ed:26:22:e0:f2:ad:08:1e:9e:d0:53:07:
92:af:3f:c0:32:b5:10:a5:f8:2e:60:96:93:b8:11:
f3:40:f7:8e:12:5d:18:df:74:af:33:87:fc:a0:7f:
8b:62:40:35:c4:cc:61:bc:88:5a:48:92:d6:b0:cd:
ba:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:09:3B:CE:83:8C:AE:BA:AC:42:64:66:1F:AB:99:A9:EE:24:9E:A6
X509v3 Authority Key Identifier:
keyid:88:D7:59:2F:41:19:00:C0:67:B5:E7:A2:19:A3:45:AB:FD:BA:A4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iNdZL0EZAMBnteeiGaNFq_26pA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/88b5c3-341c-4ea9-a948-6e8e9d52dd48/1/_gk7zoOMrrqsQmRmH6uZqe4knqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/88b5c3-341c-4ea9-a948-6e8e9d52dd48/1/iNdZL0EZAMBnteeiGaNFq_26pA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.156.0/22
IPv6:
2a02:6080::/32
Signature Algorithm: sha256WithRSAEncryption
76:2a:d8:ea:9a:82:a4:36:63:ff:a8:b8:08:89:12:7b:73:d7:
85:23:fe:b4:62:f5:bc:89:2b:34:8e:6b:cb:e3:ca:ed:8b:22:
ff:74:99:05:43:09:45:71:23:4d:3b:ad:2e:1c:ef:58:50:6b:
8d:b4:52:e3:6d:71:44:f8:a9:69:41:62:7f:b8:a8:9f:4b:d5:
85:fd:50:0b:fc:3b:74:2e:d7:f2:e3:f8:43:71:de:ec:c9:b6:
cb:fc:ec:50:f6:ff:59:12:5b:b5:36:fe:11:9c:5a:51:d6:15:
f2:69:b7:cd:30:dd:45:80:32:ae:8c:c7:25:ca:76:37:6e:9c:
60:fc:14:2b:54:99:98:e3:27:2b:7c:f7:4b:a2:22:65:07:4e:
b7:54:55:bb:fe:a9:2c:2f:bf:5e:32:a7:13:35:14:ba:93:95:
7c:da:5f:2f:8f:d9:d3:1a:42:e9:03:72:d3:0a:86:52:49:d2:
34:08:00:bc:8b:f3:2c:90:2d:29:91:9c:57:ce:4e:a4:00:12:
6c:52:c1:12:d0:42:8e:2d:4b:e7:c2:c8:c0:49:9e:43:b4:dd:
4d:e3:dd:3d:a9:52:28:6c:ed:5e:4c:e2:b2:28:65:7c:ba:ce:
bb:c7:68:e0:7c:f3:97:10:d9:2a:2b:18:ee:bb:a4:32:82:56:
df:e5:10:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:50 2024 by rpki-client on console-ams.rpki-client.org