Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/fs7iNFqcKMFogxMxJU-U6_SJ7d0.roa
File: fs7iNFqcKMFogxMxJU-U6_SJ7d0.roa (raw, json)
Hash identifier: gOFp2QAUzw2WbvZCXPVKyKgj1T8Qct1gLDhsw27WG/Y=
Subject key identifier: 7E:CE:E2:34:5A:9C:28:C1:68:83:13:31:25:4F:94:EB:F4:89:ED:DD
Certificate issuer: /CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Certificate serial: 168A4184
Authority key identifier: BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/fs7iNFqcKMFogxMxJU-U6_SJ7d0.roa
Signing time: Sat 01 Jan 2022 07:58:03 +0000
ROA not before: Sat 01 Jan 2022 07:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49524
IP address blocks: 185.82.224.0/22 maxlen: 22
2a05:9540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 378159492 (0x168a4184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Validity
Not Before: Jan 1 07:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ecee2345a9c28c168831331254f94ebf489eddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:07:c8:bd:32:8e:eb:22:d7:4f:3f:a1:37:b2:
07:0d:0a:f7:5e:db:e4:15:cf:9d:54:a0:65:93:55:
a5:3e:26:ea:3b:ae:5c:05:77:99:6d:48:33:bf:4b:
44:03:7d:ca:ad:16:4f:5e:67:03:3a:7e:8d:3f:9b:
e3:36:c8:6b:a0:98:47:bc:47:8b:c7:5c:57:5b:ea:
b4:bc:19:cd:30:5b:d3:76:43:38:c6:59:4f:e5:c3:
c5:f4:b7:fc:2b:80:c3:a1:a8:74:92:0d:e5:2e:1a:
1d:6a:f5:cd:44:5b:5c:1d:4c:f0:64:72:99:37:67:
e2:ea:17:38:85:39:64:0c:de:a4:af:10:92:14:24:
c2:19:07:d5:f6:a1:7a:b2:3a:2d:bd:88:a3:73:c4:
81:bd:8e:0b:bb:b6:bf:51:a2:65:f7:18:9d:d3:7d:
42:6e:dc:8e:cc:0f:f0:27:5f:86:18:f5:05:bc:cd:
b3:92:ee:30:54:24:e7:d7:36:f6:60:18:44:df:53:
d3:29:d1:6c:d3:ee:b5:fc:4a:f9:f7:82:ae:37:61:
15:81:bd:b3:63:a8:7d:2c:32:d4:67:22:ba:21:73:
e1:74:65:25:2e:84:df:9d:03:db:03:76:53:51:34:
69:38:4f:f5:b4:0c:fc:e9:7f:94:97:8d:35:46:68:
d7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:CE:E2:34:5A:9C:28:C1:68:83:13:31:25:4F:94:EB:F4:89:ED:DD
X509v3 Authority Key Identifier:
keyid:BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/fs7iNFqcKMFogxMxJU-U6_SJ7d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/v9Cah3Q4F8VvgIgAeldG62n_LjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.224.0/22
IPv6:
2a05:9540::/29
Signature Algorithm: sha256WithRSAEncryption
59:7e:dd:6c:43:c4:06:42:00:99:61:68:82:8e:d6:29:fd:83:
83:18:a9:fd:09:2f:28:3b:ec:7f:e3:99:29:4b:6f:53:62:46:
e7:a5:20:1e:62:53:c7:0d:31:27:4f:93:c0:9a:29:a0:29:15:
61:84:08:d4:65:54:70:61:60:a0:47:1a:b7:a7:4b:e6:e5:33:
68:df:88:71:1b:fe:c2:7c:f4:9e:b9:7f:fc:08:09:81:7e:6d:
15:ff:1e:cc:ec:3d:2e:64:60:c3:ad:3b:a4:bf:c0:6e:db:84:
d0:49:05:c7:98:6a:9f:e7:dd:de:e3:0d:7d:96:41:1a:f6:55:
2a:97:f2:08:c0:15:74:10:f9:06:51:6e:12:1a:01:b2:b4:5a:
7a:d1:06:8e:3f:50:8e:a2:7f:c0:72:a1:21:72:d4:db:48:f4:
7a:fc:e7:ed:81:1e:3f:75:c2:69:17:2f:7c:6a:1e:02:f7:11:
01:18:25:22:26:08:2d:8b:25:2c:30:7e:cd:03:bd:25:71:6e:
e1:de:18:22:b5:c1:d3:56:fc:2d:48:27:61:7e:0d:b5:fc:30:
da:46:7e:2d:9e:3e:29:3d:95:ab:9b:ea:40:cb:d6:ba:8a:55:
a6:cf:a1:56:1d:c8:68:48:00:a5:4a:93:bc:35:17:f6:41:a0:
c1:9c:bd:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:59 2023 by rpki-client on console-ams.rpki-client.org