Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/8-1-2D2Va3nUxuFSy0ywEUloVb0.roa
File: 8-1-2D2Va3nUxuFSy0ywEUloVb0.roa (raw, json)
Hash identifier: /O9ayci4Ma98tb/xmbmIYOt8htlI1Odfz29vnHaXJ0k=
Subject key identifier: F3:ED:7E:D8:3D:95:6B:79:D4:C6:E1:52:CB:4C:B0:11:49:68:55:BD
Certificate issuer: /CN=9a2f0701d7a63cf3d193695c395d1a1f78335ccf
Certificate serial: 037EC429
Authority key identifier: 9A:2F:07:01:D7:A6:3C:F3:D1:93:69:5C:39:5D:1A:1F:78:33:5C:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mi8HAdemPPPRk2lcOV0aH3gzXM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/8-1-2D2Va3nUxuFSy0ywEUloVb0.roa
Signing time: Sat 01 Jan 2022 15:58:31 +0000
ROA not before: Sat 01 Jan 2022 15:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60893
IP address blocks: 185.58.148.0/22 maxlen: 24
185.24.48.0/22 maxlen: 24
2a00:7420::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58639401 (0x37ec429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a2f0701d7a63cf3d193695c395d1a1f78335ccf
Validity
Not Before: Jan 1 15:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f3ed7ed83d956b79d4c6e152cb4cb011496855bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:78:d1:95:f0:9b:f2:8a:f7:2c:18:69:a6:1d:
94:53:9d:cf:9a:19:ba:49:d4:d7:23:f9:f5:f7:0a:
d8:3c:68:6c:d6:49:a3:1c:59:41:4f:76:d1:eb:74:
0f:23:a4:06:90:03:6b:1b:e4:69:55:3d:94:fd:7a:
67:d0:78:61:fe:14:6f:b7:d5:b6:75:ed:e2:f2:34:
a5:d4:fd:86:96:fc:79:aa:e5:e8:e8:ee:e0:4f:5b:
a8:af:96:87:cf:b9:47:8d:57:d8:ec:75:35:5e:c7:
eb:71:37:27:fb:32:06:f3:3c:0f:65:e9:35:a7:09:
df:c0:98:e5:d2:2d:85:a3:b1:02:76:c2:ef:07:ce:
47:c6:17:96:02:be:f9:6a:ce:a9:1c:91:b0:6c:53:
53:ff:80:f5:d3:a2:3f:ff:13:9a:2b:96:cf:b9:7b:
0f:a0:bc:8e:da:c0:9e:48:5d:04:8d:cb:a1:75:6b:
cd:70:3e:76:7c:ee:95:9d:77:50:69:3d:47:fd:b1:
2a:eb:8b:d4:e4:a9:43:64:ef:91:a3:bf:13:8a:83:
7a:4a:7e:52:a3:ab:93:52:44:0a:30:72:01:13:4e:
a2:6b:8e:34:89:70:3f:2a:b3:c8:b2:57:e1:31:3c:
a8:79:e9:3e:09:ac:81:0e:49:e7:1f:98:18:0e:43:
34:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:ED:7E:D8:3D:95:6B:79:D4:C6:E1:52:CB:4C:B0:11:49:68:55:BD
X509v3 Authority Key Identifier:
keyid:9A:2F:07:01:D7:A6:3C:F3:D1:93:69:5C:39:5D:1A:1F:78:33:5C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mi8HAdemPPPRk2lcOV0aH3gzXM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/8-1-2D2Va3nUxuFSy0ywEUloVb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5efad6-c9a4-4838-bd67-73717c56b6f3/1/mi8HAdemPPPRk2lcOV0aH3gzXM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.48.0/22
185.58.148.0/22
IPv6:
2a00:7420::/32
Signature Algorithm: sha256WithRSAEncryption
06:b7:9d:8c:e7:11:66:c6:b6:07:32:7c:1b:c9:d8:02:11:01:
d3:59:45:c1:ff:0b:53:10:54:25:74:2b:eb:cb:6c:98:19:d0:
f7:3c:16:a6:9e:e3:2e:c9:db:cd:46:db:d7:9b:3a:da:04:a9:
58:29:55:c2:5b:7b:8b:91:a5:75:68:a8:48:a4:1c:b7:bc:fe:
15:ba:a6:75:12:c2:99:db:0a:ae:52:ed:46:9a:f1:85:c8:7b:
9c:e2:76:93:1e:3a:a0:80:dd:e1:cd:de:8d:d9:54:a9:ee:5f:
c7:a5:e8:c1:44:2c:41:72:27:53:da:a0:1a:b3:ae:96:b9:15:
49:4e:79:22:16:d4:ec:8f:aa:2a:1d:4e:42:84:91:27:f0:d2:
5f:c3:52:5c:4e:2c:a8:cb:f2:ad:7e:be:6d:69:c0:1d:4a:ec:
ca:d0:ea:ed:5e:8c:1c:3d:d5:7d:10:30:64:b4:aa:d8:bb:48:
51:7f:6b:86:ae:3b:a0:1f:a4:58:7f:d6:1e:12:96:43:db:74:
8a:e2:2f:3e:00:aa:7b:2f:0c:50:da:8d:68:c2:e9:c2:c2:d7:
1c:7c:3f:f6:f0:c1:28:38:b9:1a:c1:11:f7:11:97:da:6c:20:
88:64:19:d9:6f:a2:4a:07:57:5f:4a:be:5d:f4:05:30:ea:0b:
d3:db:24:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:33 2024 by rpki-client on console-fra.rpki-client.org