Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/fBZLh29O0TC2gygDU_R4eHdZZUc.roa
File: fBZLh29O0TC2gygDU_R4eHdZZUc.roa (raw, json)
Hash identifier: mF9xSLnNZrxFYJ5QrNNpn6nN3eKWpkI4IT66TxeyBok=
Subject key identifier: 7C:16:4B:87:6F:4E:D1:30:B6:83:28:03:53:F4:78:78:77:59:65:47
Certificate issuer: /CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Certificate serial: 168B87EF
Authority key identifier: BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/fBZLh29O0TC2gygDU_R4eHdZZUc.roa
Signing time: Sat 01 Jan 2022 07:58:03 +0000
ROA not before: Sat 01 Jan 2022 07:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201102
IP address blocks: 185.194.4.0/22 maxlen: 22
185.82.224.0/22 maxlen: 22
2a05:9540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378243055 (0x168b87ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Validity
Not Before: Jan 1 07:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c164b876f4ed130b683280353f4787877596547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:49:8a:73:06:37:1f:0b:95:65:14:8d:43:18:
2f:93:31:f2:c2:1b:46:86:dc:92:37:cb:1a:2a:63:
e6:5e:88:fc:f8:d7:93:1b:f6:ff:58:d8:6e:00:95:
bf:53:69:5e:a4:25:94:3c:29:30:72:fd:96:fd:a7:
d9:ad:9c:c8:a9:b2:fa:30:de:9f:58:1e:e2:6d:38:
9e:0e:6a:28:70:5f:a1:02:67:02:e8:43:97:72:2f:
46:34:2c:9e:8a:0b:ef:26:ca:24:ec:63:9a:51:14:
ef:80:ff:d5:65:cc:61:58:6a:d3:7e:9e:63:0b:d1:
d8:d2:36:f1:5f:e0:a4:4d:bb:32:a7:58:28:30:82:
69:b6:e8:ac:ae:30:ab:84:4e:f7:a3:bc:37:d3:d0:
b2:fd:ac:8b:f0:e0:f7:2f:ca:0c:80:a0:21:4b:ec:
dd:2f:a6:12:b2:22:8b:19:18:92:79:5a:ec:02:18:
8d:7c:7a:f2:10:9d:c8:63:ca:34:87:20:5c:b6:4e:
85:f2:6d:ba:55:29:15:6d:bd:60:c5:59:d3:91:06:
70:35:fc:fa:5e:42:77:b5:8b:d7:bd:6c:c4:3c:76:
0c:53:1f:c7:d3:39:b3:aa:24:a5:3e:59:d2:be:08:
5f:7d:d2:7e:fc:b2:43:aa:f2:ec:18:d9:dd:bc:ae:
1c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:16:4B:87:6F:4E:D1:30:B6:83:28:03:53:F4:78:78:77:59:65:47
X509v3 Authority Key Identifier:
keyid:BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/fBZLh29O0TC2gygDU_R4eHdZZUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/v9Cah3Q4F8VvgIgAeldG62n_LjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.224.0/22
185.194.4.0/22
IPv6:
2a05:9540::/29
Signature Algorithm: sha256WithRSAEncryption
ad:f8:1a:33:ff:91:74:f7:fa:7d:93:ef:9a:55:88:d4:2f:d5:
80:b5:56:82:94:e2:6d:13:b6:89:8f:ad:61:18:4f:fc:ce:b3:
19:65:d0:69:a5:7d:65:21:08:2a:ed:ba:ae:af:52:5f:48:59:
9c:6b:c4:21:0e:37:2d:ac:f7:2c:6f:6e:e5:f6:64:92:84:88:
37:6b:3e:49:5c:59:d6:bc:38:c8:e8:f6:6b:9f:b9:c9:b6:55:
e0:13:a0:31:6d:24:aa:3c:fb:ca:49:fb:81:72:5a:07:38:81:
f4:6d:6b:40:e4:4b:a0:32:c1:88:5b:54:9e:4f:b8:8c:99:ed:
c9:da:58:6c:e9:8f:3c:eb:49:a4:90:91:75:aa:0e:33:79:60:
42:df:47:c1:af:40:73:13:54:3d:76:28:b5:6a:57:b2:99:39:
7e:b4:ad:e6:c0:4d:fe:8a:b3:73:04:bf:72:d7:d9:48:02:00:
d1:8e:0a:b3:77:9c:de:aa:8f:d4:4d:b8:82:18:3e:13:d9:0a:
ac:ad:5f:b9:61:04:15:f0:b2:2a:8f:3c:64:95:60:9e:50:ac:
eb:7e:5e:8d:9e:d6:34:61:e1:a3:07:32:98:4d:fc:df:8d:49:
e2:9f:9c:fe:de:da:11:68:4b:22:a2:a9:91:6e:be:35:a8:c7:
63:15:5a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:09 2023 by rpki-client on console-fra.rpki-client.org