Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/9cb6b5-7a53-406f-af7a-17c38d9c3768/1/s5GXnJQY_NrJyaDJLlUwdOBhZp4.roa
File: s5GXnJQY_NrJyaDJLlUwdOBhZp4.roa (raw, json)
Hash identifier: q9p8JHw1GLAiCOEgUrxVG11ZKux5oNR2t1pYKiD0oIg=
Subject key identifier: B3:91:97:9C:94:18:FC:DA:C9:C9:A0:C9:2E:55:30:74:E0:61:66:9E
Certificate issuer: /CN=ffff0fa51e6939d01dcaa2bb3d5dcaa6d0043da2
Certificate serial: 300BA04E
Authority key identifier: FF:FF:0F:A5:1E:69:39:D0:1D:CA:A2:BB:3D:5D:CA:A6:D0:04:3D:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/__8PpR5pOdAdyqK7PV3KptAEPaI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/9cb6b5-7a53-406f-af7a-17c38d9c3768/1/s5GXnJQY_NrJyaDJLlUwdOBhZp4.roa
Signing time: Sat 01 Jan 2022 01:51:04 +0000
ROA not before: Sat 01 Jan 2022 01:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199659
IP address blocks: 185.8.92.0/22 maxlen: 22
185.26.240.0/22 maxlen: 22
2a02:d540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 806068302 (0x300ba04e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffff0fa51e6939d01dcaa2bb3d5dcaa6d0043da2
Validity
Not Before: Jan 1 01:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b391979c9418fcdac9c9a0c92e553074e061669e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d8:da:73:57:4d:ef:6a:7d:6c:c4:7b:a5:b0:
aa:6a:86:5c:11:f9:14:93:28:2c:75:63:6d:14:9e:
5d:9a:37:b5:8b:2f:fd:df:4a:27:2b:4f:28:d3:e4:
5f:42:b3:5e:38:5b:f7:b6:ae:f4:aa:40:0d:ed:a1:
ae:37:92:a0:20:02:76:4b:6b:ad:55:a0:c0:f3:92:
89:7f:8e:32:c2:a1:31:55:2a:77:e1:cc:f5:9a:d8:
83:00:d0:67:e7:06:e3:8c:fe:b4:cc:a0:83:2f:44:
f6:8f:9c:ad:36:49:c0:63:06:1a:73:0d:0d:a7:ad:
03:dd:1a:bc:55:ac:04:21:41:43:cd:44:db:52:8e:
8a:49:de:7a:16:2a:4f:71:86:c2:e9:a7:a8:0e:20:
08:3e:31:a6:45:a6:36:70:f5:56:c7:f4:c7:b7:76:
62:d6:40:62:50:7b:f6:3b:ab:72:66:b6:18:96:43:
c7:1b:06:b6:e0:2f:e4:59:78:45:66:4a:1c:17:e1:
93:41:af:5a:d1:bc:0f:6e:e6:04:02:8c:6f:19:7d:
2f:5c:1e:8d:93:8f:24:40:0a:94:ab:05:87:8a:1b:
74:3c:c4:61:d4:af:90:2b:9f:f0:de:29:2b:29:51:
4e:84:2a:05:51:7a:98:58:ab:54:00:f5:84:89:d1:
3e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:91:97:9C:94:18:FC:DA:C9:C9:A0:C9:2E:55:30:74:E0:61:66:9E
X509v3 Authority Key Identifier:
keyid:FF:FF:0F:A5:1E:69:39:D0:1D:CA:A2:BB:3D:5D:CA:A6:D0:04:3D:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/__8PpR5pOdAdyqK7PV3KptAEPaI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9cb6b5-7a53-406f-af7a-17c38d9c3768/1/s5GXnJQY_NrJyaDJLlUwdOBhZp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9cb6b5-7a53-406f-af7a-17c38d9c3768/1/__8PpR5pOdAdyqK7PV3KptAEPaI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.92.0/22
185.26.240.0/22
IPv6:
2a02:d540::/29
Signature Algorithm: sha256WithRSAEncryption
87:b4:ff:22:e3:e7:6b:4b:bf:b8:35:88:fa:4b:75:29:aa:39:
83:ed:b2:89:73:46:bc:9c:b4:e8:21:8b:8d:c6:d4:c3:74:ba:
34:0d:66:a7:26:ef:f0:12:da:e2:4c:b9:b2:f8:4e:92:12:13:
31:86:f4:24:fe:25:51:38:13:f0:ee:70:86:76:d1:c1:8a:6b:
6f:5a:9f:07:aa:87:55:19:a8:23:93:95:cd:e7:d3:84:48:3b:
0e:78:d6:a9:f9:ec:7a:69:06:da:f6:9b:07:10:33:3f:81:f8:
44:4f:b4:27:cd:bd:19:ad:08:8d:c7:bd:36:a3:c4:bb:8d:61:
91:db:a5:d9:12:77:e4:3a:f8:6b:b5:9a:0f:a1:dd:ef:f0:4a:
28:7c:b4:ef:fa:15:9e:47:1e:7f:e4:a9:ae:cd:73:09:b9:01:
65:a5:0c:6c:c9:a7:35:b2:68:fd:9c:2b:4d:aa:ee:ee:45:0c:
20:c6:c7:37:03:dc:a7:4f:99:20:3c:5c:42:2c:3a:ce:ad:59:
40:29:58:bd:cf:09:b3:4f:0a:f5:f7:94:61:da:f1:15:22:e8:
c8:c0:21:e2:68:fe:49:8d:ec:96:00:f2:7a:c3:5c:c5:05:fe:
72:3e:c3:93:01:7e:4d:ab:0a:9f:f0:3a:79:2d:b8:fe:93:44:
0e:7b:fb:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:27 2024 by rpki-client on console-fra.rpki-client.org