Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/4ggH7i132qwaCp-4T6P7Z23cqr8.roa
File: 4ggH7i132qwaCp-4T6P7Z23cqr8.roa (raw, json)
Hash identifier: KR+FHkB8ewQcOSNPdHVYmbAGbRORyUWw/qEI/VKGftg=
Subject key identifier: E2:08:07:EE:2D:77:DA:AC:1A:0A:9F:B8:4F:A3:FB:67:6D:DC:AA:BF
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A7076A2
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/4ggH7i132qwaCp-4T6P7Z23cqr8.roa
Signing time: Sat 01 Jan 2022 16:07:02 +0000
ROA not before: Sat 01 Jan 2022 16:07:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20750
IP address blocks: 151.237.72.0/21 maxlen: 21
85.187.240.0/23 maxlen: 23
85.187.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175142562 (0xa7076a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e20807ee2d77daac1a0a9fb84fa3fb676ddcaabf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:76:32:ac:42:e0:86:08:09:51:f6:9f:1d:
c5:2d:6b:8c:9e:8d:3f:d2:35:7a:a6:7a:fd:32:d3:
7f:6b:a0:a6:3a:f8:76:66:b4:fe:1e:08:14:1c:06:
64:66:1d:09:e3:b4:db:70:06:6f:78:f6:17:5e:d4:
59:27:13:64:d6:30:28:1f:cb:fd:4f:82:d5:44:54:
c6:62:d2:32:41:f5:77:94:a4:96:f5:01:f0:dd:b3:
50:7c:e4:69:23:9c:4d:65:e2:08:78:c7:3d:82:5d:
77:ad:da:27:b7:c8:a3:19:6a:6b:61:4f:09:60:1c:
d7:b0:7a:33:17:83:2f:7f:94:7b:a2:65:be:7d:15:
00:94:fe:84:73:cc:7c:f6:71:34:93:61:a4:48:89:
a0:0f:89:f8:db:fb:45:74:1e:b8:b1:c3:6a:e5:2b:
dd:19:9a:fc:ae:e9:df:71:0b:52:88:3c:51:9a:d0:
9d:d7:67:a8:ad:2c:33:82:ae:e5:ab:bd:08:4c:ac:
ae:7c:93:9c:d4:f3:a0:f3:7b:e7:64:5b:e5:8a:04:
8a:8f:77:76:fc:3d:1d:b2:ad:26:77:d5:52:bb:15:
31:75:ca:39:0c:0b:29:94:cf:b7:14:9d:4c:90:97:
9c:ef:65:be:5a:82:dc:60:68:13:3e:1d:4e:de:70:
6d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:08:07:EE:2D:77:DA:AC:1A:0A:9F:B8:4F:A3:FB:67:6D:DC:AA:BF
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/4ggH7i132qwaCp-4T6P7Z23cqr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.236.0-85.187.241.255
151.237.72.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:d2:e1:8f:cd:08:af:b6:91:b2:32:43:5c:af:aa:64:22:21:
9f:d0:6c:82:39:9c:2c:59:e8:ef:da:bc:5d:ee:99:d0:ea:52:
e0:98:cd:d2:45:33:19:a4:d4:c0:8b:b8:34:82:79:79:4a:e0:
ee:25:94:4d:ac:ee:d1:dc:77:2a:81:60:ab:54:65:b3:50:ad:
8a:ca:64:ef:13:32:a0:da:aa:ae:e2:ff:70:72:06:7f:84:92:
0f:55:b7:24:43:0b:7f:81:99:9c:c9:de:c7:d1:40:79:9d:d9:
6c:41:0b:ae:7e:8e:2f:90:84:cb:90:b5:38:2d:85:33:90:5b:
fd:1f:c3:51:fd:b6:b0:58:d0:f0:e4:7f:70:5e:46:f2:b7:36:
63:4d:68:1e:c6:e6:9d:0e:85:91:b1:ff:2b:79:e1:40:dc:d7:
9b:55:aa:48:c0:01:e8:eb:f2:1f:59:7a:60:4b:79:3d:8f:87:
11:ec:76:42:3b:46:af:fa:a3:d8:fc:2d:59:ea:76:31:2f:15:
6a:69:dc:85:e6:e6:2a:3f:8b:c1:f3:fb:a2:e8:db:24:a5:8c:
68:93:fa:5b:1e:99:7f:2c:09:56:44:b7:14:34:40:d0:45:c6:
7e:10:e4:27:fe:4d:f9:d8:19:51:fb:19:4e:62:60:e6:79:e4:
5c:a4:20:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org