Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/f498a2-d86d-4c75-bfd3-e8c559c71d66/1/aaJfY4aVwXcikUSIroSwoXK9YRU.roa
File: aaJfY4aVwXcikUSIroSwoXK9YRU.roa (raw, json)
Hash identifier: quN8558pfyBm5uOkf56L8fk4UXz2ZtEhWBVUXXBlDRQ=
Subject key identifier: 69:A2:5F:63:86:95:C1:77:22:91:44:88:AE:84:B0:A1:72:BD:61:15
Certificate issuer: /CN=26bd5ffbce6bf8707fa3e5967e0d38b455d9d4e1
Certificate serial: 018239C3B5BA77EE2C1DC9891D66585ADA73
Authority key identifier: 26:BD:5F:FB:CE:6B:F8:70:7F:A3:E5:96:7E:0D:38:B4:55:D9:D4:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jr1f-85r-HB_o-WWfg04tFXZ1OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/f498a2-d86d-4c75-bfd3-e8c559c71d66/1/aaJfY4aVwXcikUSIroSwoXK9YRU.roa
Signing time: Tue 26 Jul 2022 09:08:23 +0000
ROA not before: Tue 26 Jul 2022 09:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.169.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:39:c3:b5:ba:77:ee:2c:1d:c9:89:1d:66:58:5a:da:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26bd5ffbce6bf8707fa3e5967e0d38b455d9d4e1
Validity
Not Before: Jul 26 09:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69a25f638695c17722914488ae84b0a172bd6115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1b:0b:4f:9e:ab:78:64:94:9e:c0:73:f5:cf:
4c:59:90:56:48:8e:16:d2:00:27:b8:24:f8:75:0a:
09:d8:06:06:03:56:35:e6:da:39:d9:44:66:c1:36:
7c:3a:60:2c:ea:d9:57:29:8d:86:d4:d5:05:a2:71:
8d:22:5f:3c:e6:5f:a1:58:0a:66:bb:0a:bf:67:94:
76:0c:1b:59:64:bc:1f:92:8c:99:bf:b7:48:56:8c:
8b:47:90:a3:54:07:d9:2b:60:bf:65:85:c4:54:02:
45:ed:78:3b:b2:9d:7d:92:cb:f6:78:c9:b8:25:6a:
8b:47:31:e6:cb:b5:61:e1:0a:3e:b5:de:7d:11:60:
5c:4a:3b:df:32:57:39:ec:7f:e3:7f:ba:b4:fe:0a:
18:c3:09:09:e3:cd:78:22:94:fd:78:9c:7d:ea:58:
84:ed:cd:74:47:ed:23:c5:12:09:a4:2f:bf:de:10:
eb:b9:e2:59:65:00:b6:da:59:2a:a5:1d:b0:3c:d4:
36:22:1a:21:51:63:83:72:64:a1:f3:b1:b9:8b:99:
c5:89:ea:07:db:77:84:5f:db:1f:ba:57:09:fd:96:
9d:77:1c:8c:19:5a:22:dd:af:96:6e:6f:14:93:80:
42:57:0b:f5:39:6b:60:43:bf:1d:ac:11:30:a3:d8:
09:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A2:5F:63:86:95:C1:77:22:91:44:88:AE:84:B0:A1:72:BD:61:15
X509v3 Authority Key Identifier:
keyid:26:BD:5F:FB:CE:6B:F8:70:7F:A3:E5:96:7E:0D:38:B4:55:D9:D4:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jr1f-85r-HB_o-WWfg04tFXZ1OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f498a2-d86d-4c75-bfd3-e8c559c71d66/1/aaJfY4aVwXcikUSIroSwoXK9YRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/f498a2-d86d-4c75-bfd3-e8c559c71d66/1/Jr1f-85r-HB_o-WWfg04tFXZ1OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.176.0/22
Signature Algorithm: sha256WithRSAEncryption
35:0f:88:34:a4:a7:29:b4:7d:6d:12:a3:02:df:e8:04:1d:d4:
3b:b5:67:43:30:57:22:1f:d6:73:2b:8a:77:a6:4a:47:16:dc:
3e:a5:ac:72:3e:d0:16:04:16:27:93:e5:db:b3:d1:35:79:37:
34:b8:a7:1a:4d:91:75:99:1f:b5:9b:8f:28:d7:58:a9:b2:2a:
7b:4a:b8:cf:71:f8:5f:70:75:c8:de:b9:ff:3c:9d:a5:f2:91:
d8:f4:ff:95:1f:1e:ce:84:19:2b:b3:4a:a5:8b:e6:24:5e:cb:
32:84:14:02:2d:4c:eb:d6:ea:ff:db:13:6c:b1:ad:c0:00:ca:
4a:a5:57:d2:c8:a2:15:8a:31:fe:04:b4:d9:e2:d9:7e:47:d3:
53:23:89:8b:66:40:a9:9c:c6:4f:a7:4c:94:8c:b4:1b:b3:b3:
95:17:f9:87:d6:3b:18:3a:d9:02:b8:ba:8b:c9:e2:d5:a5:6f:
05:69:ec:2b:55:06:f2:18:d5:61:1f:e0:e3:52:85:e4:17:2d:
03:8b:bb:4b:52:35:eb:8c:7d:c3:aa:00:6d:c5:81:5a:3b:16:
b7:a3:8d:73:3d:0c:34:68:af:f9:42:cd:34:a7:a4:6b:82:07:
7a:32:c2:07:80:73:3d:0a:6b:35:a4:5f:11:e1:9b:6a:d2:2d:
9d:33:51:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:29 2024 by rpki-client on console-fra.rpki-client.org