Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/130d77-c4db-485a-bcbf-329cb516d937/1/7InZgatxeVtoko6Zov1BYHuwXtI.roa
File: 7InZgatxeVtoko6Zov1BYHuwXtI.roa (raw, json)
Hash identifier: viWQYzKQ0E0s9VdIz9cxzz575H1uyO7jZGh16sIEW0I=
Subject key identifier: EC:89:D9:81:AB:71:79:5B:68:92:8E:99:A2:FD:41:60:7B:B0:5E:D2
Certificate issuer: /CN=8ee717c2aa961aac4503f1b48464df0233ce3fa9
Certificate serial: 0761A91F
Authority key identifier: 8E:E7:17:C2:AA:96:1A:AC:45:03:F1:B4:84:64:DF:02:33:CE:3F:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jucXwqqWGqxFA_G0hGTfAjPOP6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/130d77-c4db-485a-bcbf-329cb516d937/1/7InZgatxeVtoko6Zov1BYHuwXtI.roa
Signing time: Sat 01 Jan 2022 08:01:58 +0000
ROA not before: Sat 01 Jan 2022 08:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198024
IP address blocks: 185.116.32.0/22 maxlen: 22
2a06:7b40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123840799 (0x761a91f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ee717c2aa961aac4503f1b48464df0233ce3fa9
Validity
Not Before: Jan 1 08:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec89d981ab71795b68928e99a2fd41607bb05ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:cb:ef:e4:09:38:70:c4:a2:2f:2a:c2:95:c7:
66:0d:e0:af:3a:20:27:30:97:aa:6d:37:d3:53:2f:
dd:93:45:29:f8:8b:04:33:91:1f:62:5e:ec:a9:0f:
17:c5:44:84:a4:01:56:b1:b0:40:a4:8f:1f:26:e4:
54:ba:65:6a:f0:81:28:c1:92:2e:8f:e3:43:08:42:
da:57:03:2d:c0:48:cb:93:cd:d6:46:fb:d3:a3:19:
b0:92:b2:63:65:93:c1:a9:e8:4f:06:e6:e7:f2:30:
ab:5c:f0:0a:1e:1e:b3:2d:06:da:41:03:a2:07:6f:
79:51:51:48:49:98:1a:f0:f7:23:02:5c:20:79:5f:
b5:97:61:b1:d9:17:8c:cb:3f:ef:1b:43:f2:d6:be:
dc:18:56:f2:dd:36:e3:57:22:bd:9d:26:f5:40:af:
91:26:5c:71:95:18:e3:f9:75:5f:64:dc:11:11:17:
99:5b:ab:d9:81:60:1a:3c:de:2d:d0:84:10:28:4a:
8a:d8:d0:d1:7d:b3:e2:6e:43:8c:ac:83:3c:74:13:
23:a1:2d:37:69:fc:34:30:8c:d2:2f:1d:df:6f:17:
5b:9f:b8:d0:44:d5:58:de:b1:89:75:0b:ae:23:73:
ad:db:d5:e1:de:a3:3f:a2:f3:85:ee:2b:b0:35:15:
b7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:89:D9:81:AB:71:79:5B:68:92:8E:99:A2:FD:41:60:7B:B0:5E:D2
X509v3 Authority Key Identifier:
keyid:8E:E7:17:C2:AA:96:1A:AC:45:03:F1:B4:84:64:DF:02:33:CE:3F:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jucXwqqWGqxFA_G0hGTfAjPOP6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/130d77-c4db-485a-bcbf-329cb516d937/1/7InZgatxeVtoko6Zov1BYHuwXtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/130d77-c4db-485a-bcbf-329cb516d937/1/jucXwqqWGqxFA_G0hGTfAjPOP6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.32.0/22
IPv6:
2a06:7b40::/29
Signature Algorithm: sha256WithRSAEncryption
45:95:45:ec:db:fc:6a:62:1a:07:35:3f:1f:48:fe:a8:bf:ea:
e3:ce:5c:3b:a0:51:3b:43:9a:04:ba:da:46:1c:1f:18:d8:e0:
54:26:84:bc:06:c5:1d:a6:7c:81:20:1d:b4:0b:57:45:d8:62:
b7:61:89:0f:40:9c:94:e6:fe:39:a6:9c:ab:32:2a:9e:5a:0a:
a0:2d:91:9a:70:35:dd:0c:04:fe:97:2b:71:0c:2c:81:a7:97:
7f:de:0a:1a:ba:11:69:f9:21:c0:67:8e:ff:14:99:55:ef:8e:
df:e2:77:0b:a0:29:3b:1b:f2:a6:db:2a:4e:40:73:f2:1a:34:
cf:a3:94:21:a6:32:ff:a8:49:a0:f2:ce:12:39:92:94:db:4b:
dc:93:24:69:36:18:b3:ae:f6:ea:25:00:0a:69:cc:5c:1d:29:
45:77:60:f9:c7:be:0e:00:af:07:6a:bb:a5:91:10:57:30:2a:
bb:19:9b:82:40:0c:55:7e:61:61:35:2f:b2:7c:c7:cc:67:d4:
28:03:85:a2:52:92:0c:73:8a:0f:50:aa:17:ee:c6:dc:4d:08:
2f:36:25:de:69:04:39:30:3a:3a:14:27:27:96:8d:1e:8a:1a:
8f:cf:ec:92:75:d4:a4:7b:76:12:5f:61:c0:50:07:20:a5:28:
32:82:63:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:32 2024 by rpki-client on console-fra.rpki-client.org