Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/_bLnBHQQexcsJB9TQ1VTM8wgHB4.roa
File: _bLnBHQQexcsJB9TQ1VTM8wgHB4.roa (raw, json)
Hash identifier: f7ABEm+ssxs8USKtEsLPrQ98dQWeN1o2WU0k3DyvJ/M=
Subject key identifier: FD:B2:E7:04:74:10:7B:17:2C:24:1F:53:43:55:53:33:CC:20:1C:1E
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 04201E2A
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/_bLnBHQQexcsJB9TQ1VTM8wgHB4.roa
Signing time: Wed 06 Apr 2022 08:19:19 +0000
ROA not before: Wed 06 Apr 2022 08:19:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35196
IP address blocks: 185.69.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69213738 (0x4201e2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Apr 6 08:19:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdb2e70474107b172c241f5343555333cc201c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:ad:ca:e5:de:cc:19:c4:0d:8c:ce:3a:e6:
ca:b2:63:c3:66:7d:8c:3d:bb:f1:b4:e4:fd:65:ea:
d8:d5:62:02:06:df:01:7f:d9:6a:82:8c:78:54:ae:
17:71:e9:46:95:0c:8f:c8:b3:e9:5a:42:c8:73:27:
de:ba:b3:7c:22:ef:c6:a1:ff:0b:ca:19:f1:65:ab:
cf:da:80:f4:0a:51:32:3a:ed:99:99:ce:13:5e:d4:
e7:c6:cd:ce:72:3c:33:0e:36:8a:5d:e3:be:fa:7b:
57:71:bf:59:10:d2:81:97:b4:9b:ab:4e:3f:f4:52:
9f:f7:b1:62:bf:a9:5d:43:56:0d:17:f4:cb:49:76:
5f:23:26:e1:22:d4:4b:c5:33:ba:63:4a:be:8a:4c:
9b:0b:d3:3e:bb:dc:a0:75:b1:d5:de:85:df:f3:01:
cc:24:e7:1d:5e:eb:30:37:9e:8f:43:3b:0e:0f:ae:
59:d8:2a:be:17:6b:c1:d4:39:d6:59:5e:9c:e6:78:
9d:1e:9f:63:45:1d:24:69:0c:54:70:ab:43:0c:6c:
21:c7:89:7d:76:8a:4e:f8:8c:63:11:f4:ad:d8:cd:
f3:13:1a:7d:82:d4:95:81:f8:11:e7:aa:f2:50:09:
1f:85:08:ee:0f:42:93:02:a4:8f:95:ac:39:56:63:
04:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B2:E7:04:74:10:7B:17:2C:24:1F:53:43:55:53:33:CC:20:1C:1E
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/_bLnBHQQexcsJB9TQ1VTM8wgHB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.120.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:ad:fa:1e:ee:44:62:b4:07:30:6e:47:4b:a5:00:11:cd:b0:
da:22:62:ce:a7:7b:be:bd:19:7d:7c:2e:de:e1:03:f5:5d:7b:
24:1f:17:c9:aa:03:20:20:79:39:18:f1:31:aa:c8:78:35:3b:
fa:f2:33:b9:da:98:77:9f:8a:c8:0f:1f:b4:6f:90:69:43:1b:
f9:94:6e:03:47:34:77:75:64:0a:7b:e8:ae:83:80:1d:ae:53:
a7:fa:f9:63:49:40:1e:6f:df:6c:7f:d0:93:26:81:0c:11:65:
2d:9a:4e:df:1d:7f:8a:71:60:b0:d4:3d:20:36:b7:3b:59:a9:
ba:26:19:e1:97:8d:7a:71:af:a9:1a:dd:ed:7c:59:cf:4a:0c:
3c:0f:bc:9a:f6:35:4e:f2:f3:8a:b8:ad:e0:76:f7:58:3f:b0:
32:d8:87:04:81:9e:2b:76:2f:ba:da:55:8b:7c:7b:fb:65:a4:
2c:48:22:d4:1b:b9:86:19:9d:75:5f:42:e8:7b:1a:63:38:e8:
39:8d:46:9c:2f:a0:ef:82:e2:c5:e8:c0:20:6f:dc:0a:ea:e0:
57:22:67:f0:cd:51:f2:e3:57:ea:4a:7d:16:67:3e:b5:62:8d:
e8:aa:e1:b3:0c:42:95:b8:8e:65:9a:99:da:9f:06:1d:74:a1:
69:d6:d4:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:46 2024 by rpki-client on console-fra.rpki-client.org