Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/ABQEqmwPcRNSa18Tog47tH5zrmM.roa
File: ABQEqmwPcRNSa18Tog47tH5zrmM.roa (raw, json)
Hash identifier: rCdw0OXm3AHJO178QgzzNh/LRWOzvZ0gDJFJMT+PBp4=
Subject key identifier: 00:14:04:AA:6C:0F:71:13:52:6B:5F:13:A2:0E:3B:B4:7E:73:AE:63
Certificate issuer: /CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Certificate serial: 1689DC8C
Authority key identifier: BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/ABQEqmwPcRNSa18Tog47tH5zrmM.roa
Signing time: Sat 01 Jan 2022 07:58:02 +0000
ROA not before: Sat 01 Jan 2022 07:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5602
IP address blocks: 185.82.224.0/22 maxlen: 22
2a05:9540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378133644 (0x1689dc8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Validity
Not Before: Jan 1 07:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=001404aa6c0f7113526b5f13a20e3bb47e73ae63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cd:8e:3c:ef:af:8d:51:61:75:f9:b6:57:c1:
61:34:e5:ab:c8:1f:e0:cb:24:88:d7:c0:dd:03:88:
56:71:64:3c:a0:0a:8f:ec:b6:3f:4e:4a:50:2a:56:
2e:45:b3:f5:a9:6b:0c:a0:0a:8c:b8:09:fb:93:12:
c5:fc:f1:23:3c:fa:5d:7c:d3:02:0f:b0:ec:9d:9e:
0f:5c:f3:d8:19:cd:24:17:4a:59:2c:50:4e:3d:7b:
40:43:d8:0c:aa:d8:3a:ab:b7:90:ae:11:23:32:8c:
e9:5d:dc:96:a7:8d:1f:89:03:d4:32:dc:06:9c:85:
3a:9e:7e:c4:41:75:2c:db:1f:da:f7:a2:54:48:c3:
3a:8a:41:a8:ad:07:84:0d:57:2c:52:42:0f:97:f0:
0a:bb:19:11:81:59:6d:61:d9:69:96:9b:c2:dc:92:
d0:f9:30:05:5b:72:8e:0e:8a:b0:70:cf:fc:4a:0f:
45:b4:75:bd:00:57:f9:5d:bd:37:6a:e1:61:39:0d:
35:7d:5c:06:64:7d:9a:3e:04:73:e1:07:4f:9d:9d:
33:fb:8d:ce:67:f4:b1:72:97:d8:04:08:54:f1:91:
7a:57:c4:99:9f:4c:43:12:5b:9a:0e:e4:3a:fc:1e:
10:87:1f:1f:c3:9a:b3:d4:66:f2:ad:5f:e9:6e:95:
b5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:14:04:AA:6C:0F:71:13:52:6B:5F:13:A2:0E:3B:B4:7E:73:AE:63
X509v3 Authority Key Identifier:
keyid:BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/ABQEqmwPcRNSa18Tog47tH5zrmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/v9Cah3Q4F8VvgIgAeldG62n_LjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.224.0/22
IPv6:
2a05:9540::/29
Signature Algorithm: sha256WithRSAEncryption
34:b4:e5:93:e3:3d:b0:00:a7:43:a7:36:69:23:12:1f:a5:3a:
da:8b:89:f8:f0:19:55:6c:5a:72:61:25:b3:a3:97:ac:c5:20:
0b:f1:07:99:11:d6:fc:5f:0a:30:34:9d:d7:4a:1e:71:5a:04:
c5:9f:db:4b:14:5b:99:86:28:44:5c:6e:3d:91:d2:e3:d6:11:
7c:10:80:a6:d4:72:18:41:65:4e:e3:72:e8:97:d5:d9:cd:6c:
d3:d1:7b:f3:8d:3b:c1:f5:c0:33:19:14:34:5b:d2:9a:a0:37:
00:26:3d:3b:8d:8b:05:bf:c0:23:59:bc:8c:b5:f9:d7:83:6b:
53:50:d7:bf:60:14:f5:6e:47:ec:ce:0f:5f:99:5f:1d:ea:52:
f3:0d:00:44:2c:c1:80:5d:63:21:34:19:b7:19:a6:86:16:e4:
b3:4a:b3:c9:dc:48:3f:14:50:d1:37:87:01:a2:71:90:90:cf:
e3:cf:a4:ac:df:b2:3b:66:33:0a:c0:69:4b:26:dd:8e:c7:e3:
e1:ab:6e:f7:52:ac:a6:6f:62:13:d5:1d:ad:a4:41:a7:71:c7:
bb:df:7a:b0:38:f5:22:d9:55:56:fa:43:c4:83:d8:84:50:6f:
dd:9a:b7:41:54:a4:37:2f:e8:c8:5e:62:2d:c9:25:a1:b5:a2:
08:7e:8a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:59 2023 by rpki-client on console-ams.rpki-client.org