Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/f75751-6f33-49f1-896c-ab43d8b96cce/1/7HbaSwJN2iU-N9f3iE-eawUg7uo.roa
File: 7HbaSwJN2iU-N9f3iE-eawUg7uo.roa (raw, json)
Hash identifier: 4KuvW4MIgrLi3/82EmPOtYwRborDg1fFPGYhg2NsrKQ=
Subject key identifier: EC:76:DA:4B:02:4D:DA:25:3E:37:D7:F7:88:4F:9E:6B:05:20:EE:EA
Certificate issuer: /CN=04b6c6e218ee14cf65c640aadf611ac72a2ba946
Certificate serial: 65D52B
Authority key identifier: 04:B6:C6:E2:18:EE:14:CF:65:C6:40:AA:DF:61:1A:C7:2A:2B:A9:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLbG4hjuFM9lxkCq32EaxyorqUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/f75751-6f33-49f1-896c-ab43d8b96cce/1/7HbaSwJN2iU-N9f3iE-eawUg7uo.roa
Signing time: Sat 01 Jan 2022 00:51:20 +0000
ROA not before: Sat 01 Jan 2022 00:51:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60144
IP address blocks: 185.234.218.0/24 maxlen: 24
2a12:1680::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6673707 (0x65d52b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b6c6e218ee14cf65c640aadf611ac72a2ba946
Validity
Not Before: Jan 1 00:51:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec76da4b024dda253e37d7f7884f9e6b0520eeea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ad:5f:e5:9f:f7:06:6c:6d:ad:14:8f:dd:e5:
52:43:0e:6d:8a:0f:8a:12:0e:0f:1e:b0:8d:b5:d3:
ec:3f:a4:a1:e3:cb:a4:50:1f:cf:6d:bc:fd:b1:6b:
a8:e1:46:30:e7:d1:98:b4:77:c8:ab:8a:5f:64:8d:
67:30:40:c8:94:fc:35:5a:b7:71:8f:78:5d:89:19:
3d:f6:56:92:b4:0b:92:43:51:57:83:0b:6c:c9:3f:
95:88:a0:a7:0d:bf:ce:fa:07:f5:4a:81:80:72:91:
3e:30:2b:81:47:04:21:22:c3:dd:fc:2c:4c:3e:47:
1b:d6:9c:f7:c9:00:9f:81:02:fc:b7:e6:7a:45:c7:
16:e5:b3:68:cb:33:d4:0a:c1:8c:84:43:bd:13:5f:
67:27:50:04:1a:a9:a1:0b:a5:53:ab:b7:1b:69:78:
35:3f:d0:62:ec:ad:3d:30:b0:f0:15:ac:b5:e3:84:
4d:4d:2c:ed:86:a3:81:c7:4a:d0:47:eb:70:a4:73:
44:fa:42:d3:8d:db:f7:60:56:f1:c8:40:b6:0b:5d:
5b:4b:ab:8c:ba:01:31:9a:ef:d3:30:af:42:2d:87:
ac:93:c0:94:18:72:d3:e5:b5:ca:21:fd:5c:a1:c4:
93:af:91:44:b8:3f:fc:d8:bf:ec:bf:f6:32:ee:aa:
58:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:76:DA:4B:02:4D:DA:25:3E:37:D7:F7:88:4F:9E:6B:05:20:EE:EA
X509v3 Authority Key Identifier:
keyid:04:B6:C6:E2:18:EE:14:CF:65:C6:40:AA:DF:61:1A:C7:2A:2B:A9:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLbG4hjuFM9lxkCq32EaxyorqUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/f75751-6f33-49f1-896c-ab43d8b96cce/1/7HbaSwJN2iU-N9f3iE-eawUg7uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/f75751-6f33-49f1-896c-ab43d8b96cce/1/BLbG4hjuFM9lxkCq32EaxyorqUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.218.0/24
IPv6:
2a12:1680::/29
Signature Algorithm: sha256WithRSAEncryption
32:87:a4:ce:40:bc:a8:29:fd:b3:51:61:45:1c:fc:4b:e5:f2:
4c:cb:52:74:68:b6:7e:65:48:12:66:7e:a2:60:fa:5e:d4:bc:
88:16:d7:17:72:75:ab:09:fc:e3:91:85:a4:25:f0:3d:8b:9a:
a1:40:7a:6c:a3:51:1d:d9:33:de:c0:3e:9b:23:8f:1e:a7:ec:
a5:bc:a4:f0:83:99:66:11:4c:ad:f6:ec:30:e5:9b:d3:0d:97:
79:0b:bd:f0:b2:79:93:5a:f2:67:9c:a4:b2:30:d2:94:09:cd:
cc:7f:cb:d8:45:d3:54:9a:09:57:60:9e:f3:4a:3b:a4:e2:f6:
2a:96:97:76:9b:01:d7:65:1e:de:38:60:b9:8a:46:91:6e:58:
12:69:f7:8b:96:5b:6f:79:f5:75:ee:82:b3:fc:08:ab:32:8d:
dc:59:e7:96:03:8e:93:2e:b9:1c:9b:b5:dc:ed:6a:f3:27:49:
ad:a9:0e:fc:ec:0c:bf:c7:5b:bb:09:da:b5:da:28:4c:38:d1:
f6:b8:2f:36:81:66:ee:fd:5e:20:e3:d6:87:85:7e:35:73:50:
c0:36:e9:ee:53:7b:1a:f8:ee:c7:79:e1:65:6c:ca:5c:1e:79:
ff:d3:bf:f8:f5:be:8b:6d:27:64:de:6d:50:37:f0:a3:50:3e:
32:08:08:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:28 2023 by rpki-client on console-fra.rpki-client.org