Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/222399-ecf0-4360-ad34-2bf874a671e8/1/kP7AC_VioaZalKXzPuBcV_U-UcA.roa
File: kP7AC_VioaZalKXzPuBcV_U-UcA.roa (raw, json)
Hash identifier: lAJQXA5smt1MjITt2pIaidUb/ICW2YGSrkcWGb32SfU=
Subject key identifier: 90:FE:C0:0B:F5:62:A1:A6:5A:94:A5:F3:3E:E0:5C:57:F5:3E:51:C0
Certificate issuer: /CN=409bd71ccea37ed9a798d5a069b2169cf4d4e592
Certificate serial: 0265991D
Authority key identifier: 40:9B:D7:1C:CE:A3:7E:D9:A7:98:D5:A0:69:B2:16:9C:F4:D4:E5:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJvXHM6jftmnmNWgabIWnPTU5ZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/222399-ecf0-4360-ad34-2bf874a671e8/1/kP7AC_VioaZalKXzPuBcV_U-UcA.roa
Signing time: Sat 01 Jan 2022 07:53:27 +0000
ROA not before: Sat 01 Jan 2022 07:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211993
IP address blocks: 185.233.34.0/24 maxlen: 24
2a10:de80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40212765 (0x265991d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=409bd71ccea37ed9a798d5a069b2169cf4d4e592
Validity
Not Before: Jan 1 07:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90fec00bf562a1a65a94a5f33ee05c57f53e51c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:30:d5:c7:eb:fe:7e:d2:88:0a:81:70:81:26:
21:28:5e:03:ef:5e:cb:6c:e5:db:98:98:29:a9:fd:
ff:83:37:9d:6d:81:b7:e1:a9:50:e5:5e:60:c3:3e:
41:52:95:94:e8:03:f0:1c:06:9b:21:4b:e9:ba:28:
1e:a8:d6:4c:44:0e:b6:7b:6d:4d:4a:fc:80:71:72:
d6:c0:80:84:15:c0:02:0f:1d:f0:f9:f6:a7:92:82:
be:2f:13:0f:ec:19:02:70:83:f4:b5:9f:1a:6f:03:
c4:32:4a:16:12:e3:eb:f3:f4:f6:a6:a5:1f:09:4d:
ee:46:18:6e:f0:99:0f:3d:fd:b3:67:a5:81:36:45:
11:17:e2:8c:d5:0a:0a:13:6c:07:b7:3c:19:90:bb:
2b:de:f6:28:0a:11:c3:a5:3d:ca:65:63:d8:88:7b:
b9:6d:4d:81:22:32:df:d9:8b:d9:ae:0b:7a:95:84:
2a:50:7d:15:42:f6:f7:d8:de:d0:a3:63:66:67:30:
38:e6:0c:f1:a1:33:99:6f:ad:1f:b2:c6:4c:8a:37:
e3:b6:ff:c5:f2:e6:b4:19:19:49:33:f9:60:bc:9d:
b5:df:ab:cd:70:f1:14:a8:b1:45:88:42:3e:98:aa:
89:30:0c:2e:89:da:47:22:a0:48:55:41:45:db:9f:
6e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FE:C0:0B:F5:62:A1:A6:5A:94:A5:F3:3E:E0:5C:57:F5:3E:51:C0
X509v3 Authority Key Identifier:
keyid:40:9B:D7:1C:CE:A3:7E:D9:A7:98:D5:A0:69:B2:16:9C:F4:D4:E5:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJvXHM6jftmnmNWgabIWnPTU5ZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/222399-ecf0-4360-ad34-2bf874a671e8/1/kP7AC_VioaZalKXzPuBcV_U-UcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/222399-ecf0-4360-ad34-2bf874a671e8/1/QJvXHM6jftmnmNWgabIWnPTU5ZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.34.0/24
IPv6:
2a10:de80::/32
Signature Algorithm: sha256WithRSAEncryption
c3:b3:06:e1:04:70:f1:11:af:4b:4e:c8:7a:de:c7:ab:89:ef:
0d:fc:5f:15:b3:f6:3c:9b:39:d5:bf:06:e2:11:4f:5b:74:0c:
6b:05:a2:43:41:6e:e6:cb:e1:50:31:2c:eb:3f:62:d6:a3:b3:
7e:a6:89:59:4b:d6:68:0a:f2:21:71:ef:32:a2:97:59:2e:87:
df:72:cc:e8:bb:30:d9:d9:d2:51:8e:fe:3e:6e:dd:b6:2b:4b:
08:5f:5d:e5:59:20:92:2a:14:92:18:d8:e6:c5:66:b1:d1:f6:
6d:04:bc:c0:9b:e1:f9:37:a0:f3:3a:25:17:f1:fb:8f:c5:38:
e6:52:b9:a1:3e:5b:51:9f:c4:65:1b:eb:c3:7a:64:71:07:56:
b6:52:50:76:35:c8:7a:d3:5c:3a:8d:10:c4:47:43:7f:00:d2:
66:00:ae:de:25:13:97:07:fc:49:45:ba:74:f8:41:94:ed:ab:
78:9f:7c:23:e4:34:b8:bb:1f:93:f6:1b:c3:28:dc:20:fe:91:
d4:3c:e3:35:cd:2c:b0:33:f4:4e:61:5e:8e:2a:62:52:84:fb:
12:36:19:a6:e3:eb:bd:da:2c:30:87:22:cf:7e:b9:83:da:55:
76:bd:60:0b:1f:08:5f:7c:d5:0d:f4:02:9a:a7:cc:11:79:bb:
ff:a2:20:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org