Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/RfbBTv8dloPbsmZs_d3gO1DDWV4.roa
File: RfbBTv8dloPbsmZs_d3gO1DDWV4.roa (raw, json)
Hash identifier: hP9hg/6/T1K0bGSNATHeehWGNHsDPcHwm2+P63NnMMU=
Subject key identifier: 45:F6:C1:4E:FF:1D:96:83:DB:B2:66:6C:FD:DD:E0:3B:50:C3:59:5E
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19C862F1
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/RfbBTv8dloPbsmZs_d3gO1DDWV4.roa
Signing time: Sun 17 Apr 2022 22:40:34 +0000
ROA not before: Sun 17 Apr 2022 22:40:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 185.133.192.0/24 maxlen: 24
185.117.22.0/24 maxlen: 24
2a06:82c2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432562929 (0x19c862f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Apr 17 22:40:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45f6c14eff1d9683dbb2666cfddde03b50c3595e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:06:6e:86:a1:c4:26:8c:0b:07:6e:58:99:a3:
77:d3:fe:8e:46:8b:cc:a3:cc:76:be:8d:7b:1d:48:
b6:d3:57:91:87:97:61:10:5c:6c:2d:d4:18:3d:89:
f8:bc:a2:0a:17:26:c5:57:2b:cc:58:08:d1:d6:b0:
01:8b:99:e0:f4:c2:d3:d1:dc:e4:79:7c:7a:90:b5:
c0:83:c8:f2:17:62:73:d7:ae:73:22:9a:c5:09:0d:
e1:d2:8f:84:10:65:2c:63:1a:f6:29:70:31:15:1e:
ba:45:58:f1:e4:e8:af:03:65:3f:9b:1d:86:cb:1f:
a9:66:4a:78:04:cd:fc:7c:74:2b:1b:b6:dd:6a:e4:
17:98:2d:eb:59:60:46:6c:3a:39:ae:fe:fc:93:ed:
ae:9e:30:7d:7c:5d:40:98:78:be:b6:35:15:a3:94:
ac:17:b5:95:19:17:64:d7:f5:72:68:85:f9:f0:80:
4f:4e:f9:a8:77:e1:46:b7:c6:b3:2f:39:6b:bd:55:
d0:2f:28:b0:89:a9:ff:35:17:fa:90:5f:d2:09:2b:
2e:b2:cd:0b:f0:b9:f7:3e:ea:1a:1f:92:c2:74:9d:
a1:5d:39:ff:bf:ee:4b:36:0a:c4:7c:2c:85:04:97:
a3:a1:14:01:0f:ea:b8:55:88:c1:3d:8c:14:04:d2:
54:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F6:C1:4E:FF:1D:96:83:DB:B2:66:6C:FD:DD:E0:3B:50:C3:59:5E
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/RfbBTv8dloPbsmZs_d3gO1DDWV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.22.0/24
185.133.192.0/24
IPv6:
2a06:82c2::/48
Signature Algorithm: sha256WithRSAEncryption
15:15:33:06:5d:3a:27:4e:07:ef:5d:95:d8:f4:32:00:26:54:
80:ee:f9:e4:61:ef:24:61:55:fc:8e:83:8e:0a:2e:6b:b9:76:
c3:fe:67:be:15:f2:f8:41:5c:22:7f:74:3e:de:60:84:28:43:
1a:ac:0f:04:f9:2e:43:d9:0a:28:31:a6:42:7d:b8:71:09:8f:
5a:70:03:93:0b:8d:51:54:65:ca:79:33:68:13:d9:08:d7:ca:
0f:a0:fc:de:8d:1a:8b:ee:f6:47:0f:9d:86:ce:ea:a4:f4:da:
e0:59:ad:90:b9:c6:11:8b:91:02:ad:1d:ea:a5:e8:04:d8:29:
43:b2:13:9f:dd:7f:74:39:76:d3:c4:84:69:d9:b0:b8:97:11:
8a:fa:f5:60:ee:d0:63:64:59:e1:d8:42:d2:87:19:98:64:d5:
e0:e9:4e:d5:67:00:2a:92:e2:17:1e:76:95:6f:8a:03:fd:37:
a1:59:6e:bb:99:28:86:64:cf:0a:5f:d3:84:0a:b5:7e:46:e5:
9a:b8:89:39:1a:1c:53:0c:5d:df:57:5c:d5:c2:7c:70:1c:e7:
1a:b5:2d:58:bc:64:3d:c7:93:49:3e:ae:4d:9f:46:fc:53:88:
d4:42:41:99:fb:dd:3e:0c:63:68:9f:2a:78:d3:cb:3f:d8:5e:
b8:19:ed:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org