Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/_pbho1BcEh76ri32EwXaVy9RetU.roa
File: _pbho1BcEh76ri32EwXaVy9RetU.roa (raw, json)
Hash identifier: IT/GH+z40KxhxqtxIFBOjVJ2LHyN63n40nskyLiPucQ=
Subject key identifier: FE:96:E1:A3:50:5C:12:1E:FA:AE:2D:F6:13:05:DA:57:2F:51:7A:D5
Certificate issuer: /CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Certificate serial: 27012B2F
Authority key identifier: A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/_pbho1BcEh76ri32EwXaVy9RetU.roa
Signing time: Sat 01 Jan 2022 15:00:41 +0000
ROA not before: Sat 01 Jan 2022 15:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59712
IP address blocks: 185.1.0.0/24 maxlen: 24
2001:7f8:70::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 654388015 (0x27012b2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a36d0ae5e2fbffcce08770ebc20c216b9fbf9485
Validity
Not Before: Jan 1 15:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe96e1a3505c121efaae2df61305da572f517ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ee:8e:22:e1:2e:bf:0a:b6:f2:e9:14:9e:3c:
42:19:90:41:6d:ef:f4:97:67:12:8e:cb:cc:fa:eb:
01:97:56:90:b1:2b:e9:f3:7e:67:4d:6d:40:20:80:
d3:0e:74:44:96:08:99:8e:e8:c7:0a:ea:6a:23:c8:
18:61:55:5a:c7:da:0b:6f:16:a0:f5:aa:af:b1:26:
6f:58:6a:38:89:e4:bb:71:44:77:19:7b:88:70:22:
df:dc:7f:96:0b:87:99:9f:3b:cd:0f:91:30:c7:17:
d1:7f:0e:a1:aa:67:c9:43:b6:dc:a1:0c:9e:7b:0d:
ca:a4:14:88:34:04:b1:fe:a8:80:94:ed:ce:6a:8f:
df:d2:61:7e:bf:0e:0e:7e:1c:1d:98:97:0d:0e:93:
6a:80:67:ed:16:29:a3:66:21:49:c9:99:3d:73:47:
b8:5b:d2:a0:1e:89:ac:a2:ec:d3:15:4e:99:ed:a7:
80:b5:4e:4a:65:ac:0d:31:e5:26:ef:9d:62:b9:07:
2f:0a:61:e4:46:74:ac:6b:60:c7:da:61:a6:01:c5:
9e:e3:2b:1c:22:76:55:7b:bf:7a:b3:ff:f3:0d:6b:
7e:14:7f:bb:bd:21:cb:fe:42:9c:00:fe:32:db:c2:
a0:6a:0b:e4:db:8b:9c:d0:54:c6:92:6f:23:a5:9a:
5b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:96:E1:A3:50:5C:12:1E:FA:AE:2D:F6:13:05:DA:57:2F:51:7A:D5
X509v3 Authority Key Identifier:
keyid:A3:6D:0A:E5:E2:FB:FF:CC:E0:87:70:EB:C2:0C:21:6B:9F:BF:94:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o20K5eL7_8zgh3Drwgwha5-_lIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/_pbho1BcEh76ri32EwXaVy9RetU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8cac0c-3426-4f07-af20-cbb95183b27a/1/o20K5eL7_8zgh3Drwgwha5-_lIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.0.0/24
IPv6:
2001:7f8:70::/48
Signature Algorithm: sha256WithRSAEncryption
9e:e4:ac:cf:b1:7c:3f:8e:35:75:3f:55:88:98:23:41:ec:08:
20:d4:03:5c:81:a7:94:0e:f3:2b:8c:60:49:f1:20:19:e4:95:
16:31:2b:a9:f9:a1:74:6b:70:9d:92:fe:9e:46:13:23:e9:a9:
84:2c:50:54:eb:a8:cc:de:84:14:9e:a0:41:31:1f:a8:aa:cb:
71:ba:15:72:a7:65:13:35:bc:61:e3:d7:ec:af:e5:47:83:4c:
32:c1:36:12:33:1d:69:64:ba:72:89:26:f5:47:e9:44:c4:23:
84:20:ed:fe:7c:15:f3:4e:82:cf:40:56:be:8c:b5:67:a3:06:
7a:d5:3c:2d:1f:37:60:7c:5a:2c:db:6d:a7:a3:a0:81:9a:bc:
ba:04:62:46:a7:c7:80:41:3d:7d:96:76:75:23:84:73:d5:5c:
2b:16:d2:fc:86:06:be:82:a9:83:9d:da:39:b2:52:ef:6f:90:
5c:27:64:cf:0a:64:94:f2:e1:16:92:1d:17:66:2e:fa:56:e0:
f3:8b:62:46:59:09:16:8c:86:b0:fc:4a:5b:4f:b0:c1:ba:dc:
12:89:ae:78:24:10:39:92:c8:56:ec:8f:49:69:ef:0c:5a:31:
a1:8f:72:e2:53:d2:a8:f9:83:98:a5:fb:50:57:a8:48:7c:2a:
a1:d2:5c:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org