Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5b373e-d314-4459-b858-cf1d1f007a36/1/aaVgLv-_F0d6KxytUFAw8WFeoUc.roa
File: aaVgLv-_F0d6KxytUFAw8WFeoUc.roa (raw, json)
Hash identifier: 1Yu0RpClmkSpxBSC6LxYsUxvJnaAEABoiAFsQ9hp1bI=
Subject key identifier: 69:A5:60:2E:FF:BF:17:47:7A:2B:1C:AD:50:50:30:F1:61:5E:A1:47
Certificate issuer: /CN=9b129de9eba6b47516f0a155734205abbb98b7c2
Certificate serial: 0A7BCF91
Authority key identifier: 9B:12:9D:E9:EB:A6:B4:75:16:F0:A1:55:73:42:05:AB:BB:98:B7:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mxKd6eumtHUW8KFVc0IFq7uYt8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5b373e-d314-4459-b858-cf1d1f007a36/1/aaVgLv-_F0d6KxytUFAw8WFeoUc.roa
Signing time: Sat 01 Jan 2022 15:03:45 +0000
ROA not before: Sat 01 Jan 2022 15:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197650
IP address blocks: 185.208.104.0/24 maxlen: 24
185.208.106.0/24 maxlen: 24
185.208.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175886225 (0xa7bcf91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b129de9eba6b47516f0a155734205abbb98b7c2
Validity
Not Before: Jan 1 15:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69a5602effbf17477a2b1cad505030f1615ea147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cc:ae:ec:6d:b3:71:59:f0:4a:9a:02:9b:35:
7d:98:ea:f3:72:45:76:0f:c9:4f:f5:e4:f4:34:6a:
31:89:94:ee:4d:97:eb:13:81:55:9e:29:ea:c6:46:
b1:61:ba:0d:3d:3d:ec:db:ca:d9:7b:d8:94:15:3d:
d2:fa:61:3c:0e:05:3e:63:70:dd:a9:da:3a:7b:f3:
c2:d6:72:c8:5d:3a:41:99:f4:1f:61:dc:c3:ea:a6:
c7:0c:f9:13:10:d8:c8:01:1e:b0:49:45:94:c3:4a:
e2:e0:e6:22:c2:0f:14:0a:37:b3:73:bf:af:60:47:
ff:0c:a7:0b:f7:06:d4:4f:05:d2:2d:ae:e1:25:39:
2f:b4:58:94:9a:3e:cb:f9:62:20:b3:80:bf:d1:45:
d3:68:7a:95:f1:8a:ea:de:3c:ec:8a:f2:9f:90:1a:
b3:0d:1f:f0:a8:bd:a7:ec:66:65:08:68:d2:4f:ed:
96:49:bf:dd:8e:f4:9f:79:fd:e7:33:39:6d:77:b8:
a0:bd:9c:7e:69:80:86:3f:a4:23:cb:2f:d8:c5:fe:
4b:4f:88:d5:05:c5:fd:3e:26:1e:6e:21:ff:9d:e2:
05:54:99:89:b8:75:48:99:dd:e2:18:a0:5a:81:92:
7c:ec:38:cd:60:f3:b8:e1:72:9c:eb:2c:50:c3:d4:
89:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A5:60:2E:FF:BF:17:47:7A:2B:1C:AD:50:50:30:F1:61:5E:A1:47
X509v3 Authority Key Identifier:
keyid:9B:12:9D:E9:EB:A6:B4:75:16:F0:A1:55:73:42:05:AB:BB:98:B7:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mxKd6eumtHUW8KFVc0IFq7uYt8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5b373e-d314-4459-b858-cf1d1f007a36/1/aaVgLv-_F0d6KxytUFAw8WFeoUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5b373e-d314-4459-b858-cf1d1f007a36/1/mxKd6eumtHUW8KFVc0IFq7uYt8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.104.0/24
185.208.106.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:07:cb:9d:2c:d3:3b:c9:3e:d6:cf:fb:49:b3:df:b4:94:19:
4e:bf:10:ae:89:20:de:a2:72:07:b3:b1:e2:84:fa:eb:4e:69:
c4:f1:4c:43:0a:56:69:ac:31:92:98:1b:5b:e5:84:4e:0e:21:
96:f3:b4:8e:80:d5:ce:d0:7b:91:7a:9c:fa:0a:7a:f8:dc:af:
a2:64:80:0b:90:78:6b:29:54:ff:c5:7d:dc:d7:cc:cf:ce:35:
7c:28:6a:5e:bd:6c:e1:1c:f6:a3:a0:9f:67:c0:ba:7d:8b:b2:
a0:eb:3c:53:12:cc:95:90:73:60:b4:1b:99:fe:ee:b1:c7:86:
38:04:d1:6e:f3:09:f8:ae:bd:ec:b9:40:95:dc:47:45:49:00:
d6:90:0d:1b:18:fb:9c:34:c4:c7:d4:82:da:ba:f5:98:2a:8d:
80:63:0c:c4:08:30:0a:58:e4:9b:c9:b5:3e:c3:5f:b3:5c:20:
2f:6a:4a:84:4a:86:6d:08:74:d2:82:e9:e8:34:ce:1c:83:49:
40:af:48:fe:f1:0a:a4:b9:9f:c0:a5:37:db:24:e8:46:98:76:
b8:a1:10:99:ac:22:1e:b7:d0:31:18:4d:3b:58:6d:4c:d2:10:
77:53:79:d5:76:4d:99:df:38:3f:99:bc:0f:da:45:56:dd:d6:
29:ce:8a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:17 2024 by rpki-client on console-ams.rpki-client.org