Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4a7901-85d8-43ea-adb2-799910c1545f/1/rT2u4Y3jd6kGELKaQtqaeMLlUQk.roa
File: rT2u4Y3jd6kGELKaQtqaeMLlUQk.roa (raw, json)
Hash identifier: SSWWv327i1tqALe7gBrupbumKWeX58F8OR2zngtq4vA=
Subject key identifier: AD:3D:AE:E1:8D:E3:77:A9:06:10:B2:9A:42:DA:9A:78:C2:E5:51:09
Certificate issuer: /CN=9f5d5b7f792644ff7072a43acc9c865194be4adc
Certificate serial: 0D24EB56
Authority key identifier: 9F:5D:5B:7F:79:26:44:FF:70:72:A4:3A:CC:9C:86:51:94:BE:4A:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n11bf3kmRP9wcqQ6zJyGUZS-Stw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4a7901-85d8-43ea-adb2-799910c1545f/1/rT2u4Y3jd6kGELKaQtqaeMLlUQk.roa
Signing time: Sat 01 Jan 2022 01:56:37 +0000
ROA not before: Sat 01 Jan 2022 01:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34766
IP address blocks: 185.138.56.0/22 maxlen: 22
2a07:a80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 220523350 (0xd24eb56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f5d5b7f792644ff7072a43acc9c865194be4adc
Validity
Not Before: Jan 1 01:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad3daee18de377a90610b29a42da9a78c2e55109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:17:13:c6:f2:4a:dd:db:ad:cb:25:58:6e:51:
cd:f2:6f:65:31:59:f8:59:e8:26:64:72:99:76:75:
e4:e9:12:99:ab:10:b2:6b:c8:99:ae:d9:8b:10:f6:
2f:1a:d8:81:b4:15:16:bc:5b:9b:67:a4:40:b1:f5:
f6:ee:88:08:09:7f:32:8f:18:99:68:35:2a:ab:36:
5e:88:f3:4e:30:f5:5e:64:16:66:a5:d8:e4:7a:95:
f8:16:54:a0:15:ee:97:67:8a:95:d7:17:5b:38:37:
82:9d:37:e4:ae:42:0f:a7:1a:0c:05:cf:9e:3c:0b:
7f:8f:ca:a0:6a:41:bb:54:34:23:33:a0:27:95:7f:
36:7a:8f:74:3a:a0:20:bf:5e:c8:71:fd:1d:8c:21:
e1:aa:bc:06:d3:d1:5f:44:8a:85:8f:89:06:5e:a1:
04:e2:3d:6b:9b:81:f3:73:23:67:dc:7c:0a:bf:40:
f6:0d:3e:17:c1:f2:6a:f1:2b:74:68:e2:3c:13:e5:
d1:3e:8c:27:94:ac:f9:90:76:9a:a1:48:81:60:10:
32:43:f1:77:27:52:ee:6b:d0:e9:e3:e6:0e:26:f4:
45:e8:57:47:ef:b7:39:64:d1:66:99:52:e5:38:d7:
33:08:9e:47:e6:9f:8a:8a:aa:b6:09:9a:a3:b0:c8:
62:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3D:AE:E1:8D:E3:77:A9:06:10:B2:9A:42:DA:9A:78:C2:E5:51:09
X509v3 Authority Key Identifier:
keyid:9F:5D:5B:7F:79:26:44:FF:70:72:A4:3A:CC:9C:86:51:94:BE:4A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n11bf3kmRP9wcqQ6zJyGUZS-Stw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4a7901-85d8-43ea-adb2-799910c1545f/1/rT2u4Y3jd6kGELKaQtqaeMLlUQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4a7901-85d8-43ea-adb2-799910c1545f/1/n11bf3kmRP9wcqQ6zJyGUZS-Stw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.56.0/22
IPv6:
2a07:a80::/29
Signature Algorithm: sha256WithRSAEncryption
93:4f:d3:72:15:dd:91:19:6a:f1:e1:a0:a5:76:13:6b:5d:30:
79:a0:a5:c5:ff:60:b0:1d:3a:8e:f6:f0:40:eb:d7:ad:ba:31:
4b:5e:5e:07:a1:c0:71:ad:4f:6d:06:d5:a1:3d:28:9b:5d:83:
37:9b:b6:d6:59:a5:ae:80:f4:e3:c4:b2:9c:49:03:e0:a2:66:
59:c7:4b:3d:3d:86:75:54:15:a1:ec:73:11:fd:2e:31:d9:65:
e3:f4:a8:43:49:97:a3:53:58:29:fc:86:f4:e7:75:79:14:36:
eb:ee:cb:8d:19:75:23:44:f6:5a:f0:00:de:8c:2b:ee:2f:07:
32:95:88:d4:4c:34:93:82:c7:d7:7b:ae:f5:ac:ba:19:7f:0e:
ac:b6:7d:a1:2e:d9:3b:dd:3c:da:d6:22:4e:8a:d8:af:00:8b:
0e:94:f5:80:34:99:f5:b1:e4:f6:2d:85:3a:84:5f:e9:fb:11:
4a:08:ab:38:c6:4a:d7:cb:98:5d:a6:c1:1b:7a:2e:9a:a4:d9:
d4:19:ad:5c:22:d4:2e:40:ee:d6:74:0c:63:30:ed:98:b7:f3:
15:5b:6c:04:be:fa:24:fa:42:5b:91:bd:c6:a0:a1:4a:a5:4e:
e6:81:7f:8f:78:e4:6f:ec:e8:f7:04:a2:ac:88:0c:1f:e4:3e:
21:1e:84:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:46 2023 by rpki-client on console-fra.rpki-client.org