Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/b2397c-b36d-46a3-a240-1d9a19f1295b/1/hdl9ZOY1snX7qtXcnFapdOE7SHA.roa
File: hdl9ZOY1snX7qtXcnFapdOE7SHA.roa (raw, json)
Hash identifier: gJqFnl0jTZG3eLuAYiGHxc4h7SNqMsiHLad8Gx8oNfs=
Subject key identifier: 85:D9:7D:64:E6:35:B2:75:FB:AA:D5:DC:9C:56:A9:74:E1:3B:48:70
Certificate issuer: /CN=83f5bd23bec5d0639833a9141985cc5753886e16
Certificate serial: 093F7AA8
Authority key identifier: 83:F5:BD:23:BE:C5:D0:63:98:33:A9:14:19:85:CC:57:53:88:6E:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g_W9I77F0GOYM6kUGYXMV1OIbhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/b2397c-b36d-46a3-a240-1d9a19f1295b/1/hdl9ZOY1snX7qtXcnFapdOE7SHA.roa
Signing time: Sat 01 Jan 2022 02:52:08 +0000
ROA not before: Sat 01 Jan 2022 02:52:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12344
IP address blocks: 185.119.96.0/22 maxlen: 22
2a04:f310::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155155112 (0x93f7aa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83f5bd23bec5d0639833a9141985cc5753886e16
Validity
Not Before: Jan 1 02:52:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85d97d64e635b275fbaad5dc9c56a974e13b4870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7c:e0:67:df:33:ab:c8:49:ff:df:83:db:02:
ac:df:cc:e8:35:d9:ab:f0:6c:4d:e8:7e:a8:51:e8:
75:b7:bc:a0:79:4f:60:3b:82:82:bc:73:6c:f7:59:
13:82:64:dd:e1:90:89:d4:9e:3e:8a:e9:af:10:a0:
31:5a:de:87:48:ff:f8:5b:34:f6:cb:ae:f7:a4:64:
e3:1f:3e:36:c4:57:1f:dd:e5:86:92:7f:ea:03:45:
d2:98:01:b8:06:48:28:31:fb:ed:12:e9:78:e1:1c:
67:b2:36:93:95:57:57:94:07:de:00:10:21:2c:db:
aa:24:ec:d0:85:09:44:83:69:d5:40:18:75:b6:e7:
ce:14:c4:62:06:0b:a6:ad:65:6e:72:19:02:11:6e:
a7:d0:73:12:d2:e0:28:23:bc:2e:09:7c:ea:24:1a:
6d:17:5d:6f:2e:bf:40:86:41:dd:f0:58:e5:87:12:
77:52:09:39:c1:a1:2f:34:90:ed:92:3f:bf:3c:c1:
57:f6:5f:ae:76:8c:a3:ad:08:20:1e:4f:c9:79:29:
08:d4:dc:57:eb:d8:66:2f:5f:c9:9c:6c:c2:32:2d:
20:be:6a:54:84:d6:20:70:ee:ab:ca:1c:4e:cd:f7:
7f:01:e5:b9:49:3d:ba:34:09:61:bc:8e:74:1b:ca:
ed:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D9:7D:64:E6:35:B2:75:FB:AA:D5:DC:9C:56:A9:74:E1:3B:48:70
X509v3 Authority Key Identifier:
keyid:83:F5:BD:23:BE:C5:D0:63:98:33:A9:14:19:85:CC:57:53:88:6E:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g_W9I77F0GOYM6kUGYXMV1OIbhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b2397c-b36d-46a3-a240-1d9a19f1295b/1/hdl9ZOY1snX7qtXcnFapdOE7SHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/b2397c-b36d-46a3-a240-1d9a19f1295b/1/g_W9I77F0GOYM6kUGYXMV1OIbhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.96.0/22
IPv6:
2a04:f310::/31
Signature Algorithm: sha256WithRSAEncryption
62:3e:b2:c2:a6:a8:c9:9a:0a:23:f4:4a:f8:2d:94:4a:d5:a1:
7f:af:46:2f:89:6f:b0:40:38:d2:70:e2:0b:ea:ee:69:db:f3:
45:fc:4a:ff:1d:bc:e2:c2:50:52:89:ef:63:ca:da:d0:f9:3c:
bf:ea:67:d3:c1:0c:36:88:da:8e:ab:ab:a5:04:f4:c8:da:d9:
75:3f:81:d2:df:64:27:12:63:17:94:e6:6b:c1:92:e6:ea:56:
e9:3d:54:dd:00:39:56:7a:64:0f:5c:a6:51:69:45:22:14:60:
ca:f5:c1:78:f8:c6:e2:a3:b2:0f:51:51:7e:25:6c:f3:f6:b9:
07:f8:ee:2b:3e:cd:2a:e7:f1:fb:5f:8a:b0:b7:20:e0:99:a4:
43:1e:53:43:b3:d9:63:8c:ff:5a:ca:33:71:d3:3f:63:2b:88:
84:1e:70:9b:01:b0:af:f8:42:b6:f5:cb:d1:20:43:12:dc:92:
6a:53:55:3b:fd:6e:43:e4:18:70:57:51:eb:5a:f9:ca:a0:c1:
44:1e:4e:c8:41:9d:99:aa:25:da:cd:23:08:f7:72:57:de:d1:
9e:68:89:06:10:e7:1a:56:66:7a:15:4f:80:d3:66:23:4e:f4:
9f:c2:0a:30:59:12:b0:2e:7b:49:e8:52:04:69:06:17:73:ca:
ab:03:a8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:32 2024 by rpki-client on console-fra.rpki-client.org