Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/FRgZtZA683NDZLKDrYcpVJuH1Sw.roa
File: FRgZtZA683NDZLKDrYcpVJuH1Sw.roa (raw, json)
Hash identifier: Wk2CW4Cs/SqYXMHd4dP3H9ZqZfLV8rZuS1Fcj6wBTi8=
Subject key identifier: 15:18:19:B5:90:3A:F3:73:43:64:B2:83:AD:87:29:54:9B:87:D5:2C
Certificate issuer: /CN=2aa8202b4d0c5c111d374f1e98b73db4924d64b1
Certificate serial: 0C9F0D
Authority key identifier: 2A:A8:20:2B:4D:0C:5C:11:1D:37:4F:1E:98:B7:3D:B4:92:4D:64:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqggK00MXBEdN08emLc9tJJNZLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/FRgZtZA683NDZLKDrYcpVJuH1Sw.roa
Signing time: Thu 30 Jun 2022 17:22:02 +0000
ROA not before: Thu 30 Jun 2022 17:22:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202311
IP address blocks: 185.53.188.0/22 maxlen: 22
185.53.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 827149 (0xc9f0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa8202b4d0c5c111d374f1e98b73db4924d64b1
Validity
Not Before: Jun 30 17:22:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=151819b5903af3734364b283ad8729549b87d52c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c3:f4:d1:9b:9a:26:bc:f4:0c:4e:18:e2:43:
66:5b:73:17:26:14:5b:93:db:d1:c5:46:e5:76:90:
a0:96:94:c1:5a:c0:c2:27:23:b2:5b:66:9c:ce:e1:
7f:8c:c3:34:47:e3:3b:97:6b:42:6a:2c:a1:41:37:
dc:b3:a6:ea:5e:99:40:a9:73:39:62:c0:42:42:4b:
7b:d0:ab:bd:3e:51:eb:eb:0d:d7:1f:9b:75:a4:b0:
6d:bc:51:2b:f8:97:17:81:fc:35:1f:96:7b:a0:97:
a7:f0:b4:0f:ae:16:ce:75:f9:35:b8:06:07:07:20:
23:ff:89:60:b6:60:6c:3b:7d:ad:62:8f:38:6b:18:
18:48:3a:16:e3:41:5a:32:7b:7b:80:5a:2a:fc:7c:
4e:40:f7:41:3d:23:f5:b3:f0:d2:b9:89:f8:be:51:
03:97:12:49:61:bb:10:3b:49:4a:96:4c:de:1e:a4:
ca:2d:a4:d2:37:e7:e9:fd:d8:9f:04:66:a5:fa:1b:
3e:fb:28:ba:84:79:2d:2e:da:bf:a1:e4:64:9a:f5:
e2:fa:5f:0e:b6:40:4e:cb:87:8c:83:c7:8a:e7:17:
57:e2:b9:4b:aa:e8:7c:61:f5:a6:9f:1a:f5:82:45:
00:ed:f5:f9:64:b0:a8:38:91:07:f6:f2:66:54:92:
84:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:18:19:B5:90:3A:F3:73:43:64:B2:83:AD:87:29:54:9B:87:D5:2C
X509v3 Authority Key Identifier:
keyid:2A:A8:20:2B:4D:0C:5C:11:1D:37:4F:1E:98:B7:3D:B4:92:4D:64:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqggK00MXBEdN08emLc9tJJNZLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/FRgZtZA683NDZLKDrYcpVJuH1Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/27b3b3-4b22-4740-a65a-6e7bae5ff898/1/KqggK00MXBEdN08emLc9tJJNZLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.53.188.0/22
Signature Algorithm: sha256WithRSAEncryption
94:6b:97:b0:56:1f:5a:0a:b5:74:ec:f0:06:d8:98:c9:7c:9d:
5f:37:ce:8e:49:4e:b0:62:a8:60:5f:91:7f:2f:5b:0e:2f:88:
ab:0c:6b:2d:4e:89:c6:54:d6:7f:d0:0e:63:63:73:42:ff:64:
5f:66:3e:1e:90:3f:8d:f2:27:45:28:67:71:91:f0:c4:3f:5a:
b5:e9:02:e5:77:ee:ee:8b:b3:c6:fd:fa:78:2d:b2:89:e2:23:
6e:0d:e9:01:21:67:f0:52:81:8e:a8:9a:05:a8:35:ae:2a:c9:
6c:65:85:7d:b3:6b:f8:7e:8e:52:22:32:c4:42:a5:54:1c:03:
6d:fc:d2:72:84:20:2b:f3:5f:be:29:fa:fa:58:77:cb:dc:ff:
93:8e:3e:32:e0:7b:fb:9c:48:72:b9:5d:45:25:bf:54:25:a8:
43:17:14:f6:54:ea:55:98:07:cf:9f:4c:0f:18:a8:af:2b:94:
10:48:d2:75:42:33:86:aa:49:ad:75:b8:26:eb:20:ee:3d:2c:
03:68:d2:7a:39:2a:a4:ba:67:ad:c2:df:c9:8b:2c:5a:77:2b:
8c:93:27:7e:b9:9b:a4:27:2d:27:5b:ff:26:35:68:e1:a2:3a:
bf:91:43:be:25:90:56:c1:b8:58:3a:2b:0f:3c:8c:51:b4:cd:
0a:2a:89:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:26 2025 by rpki-client