Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/XGN058uU7BQWr_Hdr_YvobnWZeA.roa
File: XGN058uU7BQWr_Hdr_YvobnWZeA.roa (raw, json)
Hash identifier: lEmjkKqJoEWu/89262Y+rTx6883PuF1011sXelzcsvc=
Subject key identifier: 5C:63:74:E7:CB:94:EC:14:16:AF:F1:DD:AF:F6:2F:A1:B9:D6:65:E0
Certificate issuer: /CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Certificate serial: 168A0651
Authority key identifier: BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/XGN058uU7BQWr_Hdr_YvobnWZeA.roa
Signing time: Sat 01 Jan 2022 07:58:02 +0000
ROA not before: Sat 01 Jan 2022 07:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30722
IP address blocks: 185.82.224.0/22 maxlen: 22
2a05:9540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378144337 (0x168a0651)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Validity
Not Before: Jan 1 07:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c6374e7cb94ec1416aff1ddaff62fa1b9d665e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b8:46:18:1a:e6:d8:14:47:36:88:7a:1f:4e:
16:4b:8a:44:12:96:bf:98:aa:9a:a7:93:47:8f:d5:
55:31:41:20:51:b1:08:72:16:38:04:4f:61:a8:2f:
d7:78:da:73:f5:12:90:f0:04:35:79:91:41:52:fa:
e7:7e:77:3c:22:3d:02:e0:27:e5:e6:e9:8d:11:42:
f3:97:ab:42:d3:f4:06:a6:cc:4b:bf:17:d3:af:92:
ba:55:4f:09:87:a6:10:54:51:7a:fb:d6:ee:03:d3:
b8:34:56:89:40:d3:1f:ea:43:06:95:06:08:13:04:
12:0c:a1:b0:be:2b:62:90:2d:8c:9c:d2:74:da:fd:
60:7f:2a:76:05:89:e0:3a:7f:20:db:81:86:25:4d:
8d:41:2a:9e:43:ed:75:fd:68:b9:be:e3:c0:ec:3a:
99:f1:e1:a7:6c:04:12:21:13:19:e6:36:78:be:1e:
3b:75:00:32:c2:24:17:2a:6f:8c:10:67:1c:6f:80:
63:8f:ed:9c:15:87:3f:64:d6:a0:6f:0b:7d:20:9e:
80:f1:5c:11:04:68:f2:b7:5d:9b:30:a1:e0:10:c6:
95:e1:53:a3:b8:a9:6d:04:73:75:d4:92:75:44:5d:
42:95:e0:1f:5d:2e:20:dd:23:b8:b0:ee:8e:d6:64:
84:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:63:74:E7:CB:94:EC:14:16:AF:F1:DD:AF:F6:2F:A1:B9:D6:65:E0
X509v3 Authority Key Identifier:
keyid:BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/XGN058uU7BQWr_Hdr_YvobnWZeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/v9Cah3Q4F8VvgIgAeldG62n_LjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.224.0/22
IPv6:
2a05:9540::/29
Signature Algorithm: sha256WithRSAEncryption
75:60:5f:ea:75:f5:c1:e5:e9:c9:e1:8c:7f:1c:f3:1e:07:c5:
c1:10:7d:fc:0a:b4:46:89:20:79:6c:c9:e6:d0:a9:5d:f9:7e:
64:69:a9:93:c9:41:56:84:6b:49:99:77:d7:da:56:b6:42:19:
ee:5d:c3:c9:37:26:3b:35:18:ad:a3:fa:9e:74:aa:ae:ab:79:
92:7f:d0:18:10:41:fe:b1:4f:70:e1:0f:81:74:2d:91:20:b7:
13:27:ee:bf:4d:2b:f9:f1:c6:b8:c9:d2:40:55:9c:a4:46:e9:
54:16:e8:54:91:d6:e9:f7:b1:c8:9c:5b:4e:ce:64:66:1e:5f:
95:d7:6a:f5:8e:20:49:12:ff:af:8f:be:e8:fe:bf:37:0d:74:
c8:5f:e5:e5:10:22:2e:e8:2d:35:21:cf:54:e4:eb:c0:db:cf:
f7:8d:a0:36:c7:47:5a:8e:53:e1:d2:3d:13:dc:98:db:62:63:
5f:74:2a:85:57:03:4e:b0:e5:e7:3e:50:5f:1f:a0:7a:0e:ff:
13:fc:bb:3a:6e:bb:e4:bb:8f:cd:7a:90:4c:61:10:1e:08:a3:
0f:5d:2c:ef:7c:8b:7c:7d:b3:0a:2c:58:d7:d5:b8:44:0a:18:
1b:b4:3a:30:88:f5:dc:f4:e8:35:61:5e:60:ed:9b:58:24:74:
52:60:1c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:55 2024 by rpki-client on console-fra.rpki-client.org