Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/8b16cc-4db5-4198-924e-4032e190edc3/1/f0x5u6jBz82zXEZnX8h4easQokI.roa
File: f0x5u6jBz82zXEZnX8h4easQokI.roa (raw, json)
Hash identifier: mHB4ZqYt0WI4vRNNlRCjs1hoMi4/FIxTs9cxfhmNxi8=
Subject key identifier: 7F:4C:79:BB:A8:C1:CF:CD:B3:5C:46:67:5F:C8:78:79:AB:10:A2:42
Certificate issuer: /CN=d4d179ce49e5776b92c86c26c20b0b43fd0a6cb6
Certificate serial: 115572DD
Authority key identifier: D4:D1:79:CE:49:E5:77:6B:92:C8:6C:26:C2:0B:0B:43:FD:0A:6C:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1NF5zknld2uSyGwmwgsLQ_0KbLY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/8b16cc-4db5-4198-924e-4032e190edc3/1/f0x5u6jBz82zXEZnX8h4easQokI.roa
Signing time: Sat 01 Jan 2022 05:05:49 +0000
ROA not before: Sat 01 Jan 2022 05:05:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5485
IP address blocks: 185.124.76.0/22 maxlen: 22
2a06:b0c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290812637 (0x115572dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4d179ce49e5776b92c86c26c20b0b43fd0a6cb6
Validity
Not Before: Jan 1 05:05:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f4c79bba8c1cfcdb35c46675fc87879ab10a242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5b:03:17:af:69:05:2b:55:c8:dc:e4:1d:7e:
e4:80:d1:96:ba:d7:42:af:58:77:41:49:93:06:2e:
cd:b3:b0:12:bc:f1:c0:5e:5b:df:70:90:1f:76:27:
26:ef:cc:ab:3d:67:6c:b6:71:7c:99:1a:90:9e:f8:
44:cb:36:56:3f:ed:15:86:bb:8b:2d:10:81:d9:fd:
19:14:68:4c:e4:10:fd:81:34:a5:0a:b7:1f:ca:3b:
3d:46:04:d7:19:21:e5:27:ab:2d:33:57:fb:4a:4b:
2c:84:6e:b0:05:e5:5c:92:e6:c7:cb:aa:33:1a:90:
ac:69:9a:47:e2:22:1b:a5:f3:bd:83:d8:64:07:91:
8a:e4:6f:82:91:34:aa:9f:cf:fc:c5:eb:ea:79:45:
f3:e8:c3:ee:0a:b8:fa:0c:91:3c:3b:fd:4b:bf:2a:
90:f6:b3:2e:23:87:a2:a1:61:a5:27:90:52:5c:44:
ee:d5:a8:5a:49:3d:85:bc:66:26:3d:37:16:c2:b0:
e9:b8:31:b3:d6:49:0b:41:1d:f3:c3:bc:84:6e:ea:
8b:11:5c:0d:71:f1:4f:aa:8a:72:f1:7a:38:2b:4b:
30:ac:65:cc:11:d0:d4:6f:7e:9b:bf:3c:f0:35:4a:
89:f3:50:20:22:e3:1c:b9:d2:ad:b0:11:9f:83:89:
06:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:4C:79:BB:A8:C1:CF:CD:B3:5C:46:67:5F:C8:78:79:AB:10:A2:42
X509v3 Authority Key Identifier:
keyid:D4:D1:79:CE:49:E5:77:6B:92:C8:6C:26:C2:0B:0B:43:FD:0A:6C:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1NF5zknld2uSyGwmwgsLQ_0KbLY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/8b16cc-4db5-4198-924e-4032e190edc3/1/f0x5u6jBz82zXEZnX8h4easQokI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/8b16cc-4db5-4198-924e-4032e190edc3/1/1NF5zknld2uSyGwmwgsLQ_0KbLY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.76.0/22
IPv6:
2a06:b0c0::/29
Signature Algorithm: sha256WithRSAEncryption
3c:4a:fd:78:16:35:a4:11:e1:89:5c:36:a6:2b:fa:0d:78:45:
c8:6c:bf:61:a6:83:c3:67:5b:79:36:5b:72:fd:f0:12:b4:6f:
f3:d7:ea:b5:f7:ad:e6:cb:fc:76:cd:12:df:27:cf:62:a5:70:
46:dc:13:88:6f:e3:b4:22:c0:7d:b4:0c:b4:d9:56:7e:96:e6:
68:19:93:be:d4:ce:7a:a8:91:30:b7:36:b0:de:c9:6e:ea:8c:
61:7b:14:08:03:88:fa:b4:f2:6a:40:24:0b:32:f4:96:6e:54:
99:2d:29:5a:03:03:51:03:7c:dc:1c:e6:a5:ec:2e:ed:05:47:
22:a1:da:71:cf:88:f7:2e:68:32:2d:99:d2:d4:91:18:93:41:
ec:50:f4:6e:1b:65:b3:df:54:84:aa:e2:59:12:da:c0:86:0f:
a6:f0:3e:25:1a:ac:0f:e8:50:7b:b9:7e:6b:7f:52:4c:db:b8:
82:0c:b6:47:c5:40:e1:ef:5e:ac:bc:67:7a:ef:9a:98:30:8e:
4a:ec:50:95:02:ad:0d:96:2c:fa:71:ff:9d:6c:c6:61:e0:21:
1b:79:e9:aa:fc:a0:36:75:0a:37:41:fc:c5:0c:41:c0:72:72:
c1:38:26:ca:c4:65:56:88:bb:b9:c4:9b:44:d6:5c:2c:84:de:
a8:00:51:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:52 2023 by rpki-client on console-ams.rpki-client.org