Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/fbc3a9-0564-4a2c-ab11-e2c9228aac53/1/iO0QLbf2R52yR8drPLLljflpoIQ.roa
File: iO0QLbf2R52yR8drPLLljflpoIQ.roa (raw, json)
Hash identifier: 8w4Dc0mt/klPrRgw/yqei6GjsRiDHltnLPDHMVBe7iI=
Subject key identifier: 88:ED:10:2D:B7:F6:47:9D:B2:47:C7:6B:3C:B2:E5:8D:F9:69:A0:84
Certificate issuer: /CN=43496584e5cf39b56874de8dc77aa3a6ff9e8a1e
Certificate serial: 0364ABD1
Authority key identifier: 43:49:65:84:E5:CF:39:B5:68:74:DE:8D:C7:7A:A3:A6:FF:9E:8A:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q0llhOXPObVodN6Nx3qjpv-eih4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/fbc3a9-0564-4a2c-ab11-e2c9228aac53/1/iO0QLbf2R52yR8drPLLljflpoIQ.roa
Signing time: Sat 01 Jan 2022 06:03:01 +0000
ROA not before: Sat 01 Jan 2022 06:03:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.106.0/24 maxlen: 24
2001:7f8:c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56929233 (0x364abd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43496584e5cf39b56874de8dc77aa3a6ff9e8a1e
Validity
Not Before: Jan 1 06:03:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88ed102db7f6479db247c76b3cb2e58df969a084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:18:3b:c8:c2:ed:23:e5:ed:b1:6d:42:4f:ae:
db:25:7d:c3:39:47:ba:9d:bf:e6:b6:f1:97:14:8e:
bd:d5:bf:04:d7:ba:8a:00:2b:5e:37:89:d7:ab:af:
6f:29:8f:21:d2:27:c5:c6:c7:db:35:40:1f:ce:ee:
6e:e6:ad:98:29:1c:26:69:4f:66:37:c7:b9:77:87:
c9:7c:54:cd:1e:1e:37:6e:e7:7e:a7:85:1b:8b:fa:
ca:1c:2b:29:ca:7c:c7:be:f4:43:33:8f:ed:ce:39:
17:dc:49:7b:39:51:29:ab:29:4a:be:3f:c9:c7:e3:
3c:29:43:93:c9:4a:7e:ba:e1:df:de:7d:da:d9:e3:
cb:08:12:af:36:7d:ce:c9:3f:93:4b:a7:6f:0d:b1:
9a:54:38:f4:5a:20:8f:b5:0f:ce:74:07:78:ac:bb:
b6:c3:21:f0:18:e9:c4:81:a3:5f:03:9e:71:98:f5:
25:70:67:4f:85:e7:8a:96:ea:b8:23:ab:aa:ef:12:
f8:b0:24:61:bb:8d:33:dd:8b:ed:7b:b3:12:a9:c0:
31:5c:96:4c:82:60:b4:7a:6b:1a:2b:89:5e:58:86:
6b:00:11:39:a1:37:70:a3:4c:0b:4c:71:5e:f1:6b:
ac:74:8b:fb:75:d1:cf:35:9d:88:68:ff:08:cc:dc:
c4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:ED:10:2D:B7:F6:47:9D:B2:47:C7:6B:3C:B2:E5:8D:F9:69:A0:84
X509v3 Authority Key Identifier:
keyid:43:49:65:84:E5:CF:39:B5:68:74:DE:8D:C7:7A:A3:A6:FF:9E:8A:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q0llhOXPObVodN6Nx3qjpv-eih4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/fbc3a9-0564-4a2c-ab11-e2c9228aac53/1/iO0QLbf2R52yR8drPLLljflpoIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/fbc3a9-0564-4a2c-ab11-e2c9228aac53/1/Q0llhOXPObVodN6Nx3qjpv-eih4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.106.0/24
IPv6:
2001:7f8:c0::/48
Signature Algorithm: sha256WithRSAEncryption
62:2d:ed:5f:41:c7:38:f6:46:e7:e1:95:6f:15:cc:87:6f:d8:
6e:48:3e:dc:0a:d0:1e:d5:c0:aa:51:87:bb:9f:29:8b:8c:3c:
be:08:41:1b:57:05:b6:0e:a5:26:cf:d7:de:41:df:96:a1:db:
20:d1:55:6f:39:b8:80:3f:f1:0c:69:75:8a:43:0a:dd:69:49:
89:5d:d4:6d:54:6e:fc:26:5a:99:9e:df:7a:7b:ca:44:d3:7b:
57:89:cb:e7:af:2e:22:bb:a6:04:0f:85:a0:6f:80:32:ad:35:
ee:4b:43:e5:9f:20:5c:0d:4d:a3:12:03:94:71:16:ab:a3:97:
8c:69:04:9c:57:26:ba:20:5d:3b:a6:06:93:3c:1d:a5:33:2b:
ba:3a:c8:15:f7:ae:e1:86:d5:e9:ba:0c:04:76:d9:07:a9:ed:
34:29:bd:4c:10:a5:03:38:87:74:3c:cc:02:97:11:d4:e5:8d:
63:71:4b:6d:73:27:d1:3b:69:d0:e2:9c:02:cc:f7:8c:8a:cf:
d3:11:70:20:fe:21:46:fa:b3:0b:f8:35:f8:a1:54:7d:f6:56:
cd:f9:a2:02:23:3d:89:71:42:cf:33:af:49:a4:60:12:83:d3:
4f:ab:35:bf:23:84:39:a4:6c:9e:36:05:2a:21:7d:91:58:e4:
b9:ff:c2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:17 2024 by rpki-client on console-ams.rpki-client.org