Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/1-TSojKXtMURL1ZNIGR5B5n9OMWI.roa
File: 1-TSojKXtMURL1ZNIGR5B5n9OMWI.roa (raw, json)
Hash identifier: 2Xu0tqFKAk5kq5kjkVXaaqRrUqW7nadu3GCnBHH2/ZI=
Subject key identifier: F9:34:A8:8C:A5:ED:31:44:4B:D5:93:48:19:1E:41:E6:7F:4E:31:62
Certificate issuer: /CN=794f551e97a132542e3b056e905de8f3dba24c9c
Certificate serial: 121870B7
Authority key identifier: 79:4F:55:1E:97:A1:32:54:2E:3B:05:6E:90:5D:E8:F3:DB:A2:4C:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eU9VHpehMlQuOwVukF3o89uiTJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/1-TSojKXtMURL1ZNIGR5B5n9OMWI.roa
Signing time: Sat 01 Jan 2022 15:04:08 +0000
ROA not before: Sat 01 Jan 2022 15:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3269
IP address blocks: 185.152.140.0/22 maxlen: 22
2a07:8280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 303591607 (0x121870b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=794f551e97a132542e3b056e905de8f3dba24c9c
Validity
Not Before: Jan 1 15:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f934a88ca5ed31444bd59348191e41e67f4e3162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:00:61:58:0c:f9:b1:dc:a3:43:13:c9:df:b3:
e5:6f:48:56:a6:16:a4:79:1c:2d:ec:93:24:47:71:
15:9e:3a:9b:7c:4d:e1:21:7e:44:3b:22:35:ad:d3:
00:32:cb:fb:1f:14:dc:3c:72:c1:89:15:82:a5:a9:
c6:f9:83:b6:5e:f1:0e:06:71:b5:4d:13:2a:95:dc:
41:24:be:d9:49:78:0e:bc:3b:92:95:06:fc:b3:a7:
88:43:96:e4:37:5a:8f:5d:3c:c6:53:9c:c5:a7:4b:
34:fc:76:14:39:6c:df:58:3c:0c:43:6d:72:03:d6:
c8:26:c4:ab:90:45:e9:fa:cf:db:17:02:7f:72:de:
ae:ab:16:79:fe:97:bc:7c:d0:76:4e:f8:54:98:2d:
a7:1c:54:ab:6d:7f:e2:8d:7a:38:dd:96:ff:57:f4:
f5:99:00:6e:0f:00:e3:d5:23:76:f7:6e:13:cc:07:
a7:7e:6f:3c:ab:6d:e1:c1:25:c7:2f:fc:bc:2c:8b:
0e:9d:26:b9:fb:e9:4f:8f:12:94:4e:ac:fe:1b:2f:
e3:84:36:92:a2:6b:50:a2:88:42:be:bd:50:eb:03:
aa:ad:d8:bc:ca:c8:6e:58:c4:ed:9c:bf:c4:84:15:
ce:ab:3e:ef:9d:c2:43:56:e5:7c:d9:ed:a7:e3:03:
ce:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:34:A8:8C:A5:ED:31:44:4B:D5:93:48:19:1E:41:E6:7F:4E:31:62
X509v3 Authority Key Identifier:
keyid:79:4F:55:1E:97:A1:32:54:2E:3B:05:6E:90:5D:E8:F3:DB:A2:4C:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eU9VHpehMlQuOwVukF3o89uiTJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/1-TSojKXtMURL1ZNIGR5B5n9OMWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1925e7-1694-43ed-8fbc-43685887436c/1/eU9VHpehMlQuOwVukF3o89uiTJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.140.0/22
IPv6:
2a07:8280::/29
Signature Algorithm: sha256WithRSAEncryption
0b:97:2d:f0:4d:17:b1:94:80:bf:17:c1:d8:88:91:86:1d:b4:
1e:90:07:31:d0:0a:0f:8e:7b:da:e0:49:05:bd:23:76:2e:0a:
9f:af:c8:a1:be:d4:00:7f:44:d3:33:e0:c9:76:00:fa:02:58:
4f:8c:4f:b4:11:32:88:33:66:b0:13:65:50:e4:5c:a3:19:56:
c7:2e:e1:64:83:d8:30:0b:97:f3:d5:5c:7f:b2:f5:a1:e4:bd:
68:80:9c:12:33:90:b5:8d:6b:a6:8a:d7:17:3b:f4:0a:da:08:
dc:25:cd:2f:fd:b2:8d:8e:b2:bc:0e:9d:aa:08:94:65:7d:57:
31:97:bb:1b:fd:6f:5b:8d:1a:31:5c:94:07:76:69:8b:74:38:
0f:71:a8:2d:e1:5a:35:19:fc:ab:fb:2e:e9:11:0f:47:29:87:
4d:7a:9e:19:9e:0f:64:ec:84:ef:5e:1c:76:7e:5c:98:29:2b:
df:5d:c4:67:0e:25:a3:6f:5e:7c:b3:c9:8b:04:f8:27:cc:f2:
25:af:a3:cc:08:0c:88:36:75:48:8f:ab:9e:ca:69:82:32:ee:
24:c5:e5:97:0f:39:d9:c3:c7:04:89:44:82:ca:f2:9d:2c:26:
df:ae:a3:18:c8:15:28:2f:17:ed:05:dc:d4:f4:bf:d8:8a:f7:
ff:ca:b3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:23 2024 by rpki-client on console-fra.rpki-client.org