Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/zq2GGOOhnJjGu7iygZ56QcsUKLE.roa
File: zq2GGOOhnJjGu7iygZ56QcsUKLE.roa (raw, json)
Hash identifier: t8H2yxbnPLh7ODHCVLVQ+ELoVrSoMvD6w0icXdjocgo=
Subject key identifier: CE:AD:86:18:E3:A1:9C:98:C6:BB:B8:B2:81:9E:7A:41:CB:14:28:B1
Certificate issuer: /CN=8fa9aeb426c28a34808776f9568935d3b9ec9e08
Certificate serial: 01BF068F
Authority key identifier: 8F:A9:AE:B4:26:C2:8A:34:80:87:76:F9:56:89:35:D3:B9:EC:9E:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j6mutCbCijSAh3b5Vok107nsngg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/zq2GGOOhnJjGu7iygZ56QcsUKLE.roa
Signing time: Sat 01 Jan 2022 15:59:13 +0000
ROA not before: Sat 01 Jan 2022 15:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211569
IP address blocks: 185.225.10.0/24 maxlen: 24
2a10:e480::/29 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29296271 (0x1bf068f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fa9aeb426c28a34808776f9568935d3b9ec9e08
Validity
Not Before: Jan 1 15:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cead8618e3a19c98c6bbb8b2819e7a41cb1428b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0a:f9:3f:6d:60:28:f0:b7:40:e2:d0:79:76:
67:b7:52:10:ed:20:a5:3e:bc:53:87:4b:ea:8d:9d:
3c:91:91:be:d0:f5:90:76:1f:cc:2e:af:ae:10:72:
1c:35:7c:12:41:75:3e:aa:7c:d3:1f:42:cf:f8:54:
b9:4b:ad:d0:86:3d:d8:89:b4:84:35:ca:3b:af:0d:
27:44:7c:52:1b:3e:fd:ba:44:6d:79:f9:e3:5d:63:
1b:f2:28:e1:2f:6d:ea:9d:e4:13:6c:90:b6:ab:9e:
22:c0:33:73:9d:0e:80:18:e4:f5:2e:fa:b7:44:72:
b4:c6:05:48:49:cb:8e:a9:31:5b:d6:85:24:e0:b6:
d3:28:99:5b:f5:b2:7f:7c:42:10:07:91:f7:80:a2:
a2:b6:84:2b:55:4b:cf:7b:25:4d:b7:27:f4:ed:dc:
db:2a:da:d4:27:88:80:ba:6f:f4:04:d4:2a:8a:39:
c9:b1:3a:2b:ff:6e:97:ee:f5:b5:7c:3d:55:6b:fe:
9e:55:53:36:d6:c6:35:bd:73:59:ae:b3:2e:98:89:
14:2e:26:8c:79:68:fb:b0:d3:f2:49:d2:6a:f7:87:
1a:b8:17:b9:84:60:8f:06:b3:3b:c3:c4:8b:5a:4b:
fe:3a:9c:85:19:4c:90:dd:dd:9f:4e:62:53:d0:34:
21:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:AD:86:18:E3:A1:9C:98:C6:BB:B8:B2:81:9E:7A:41:CB:14:28:B1
X509v3 Authority Key Identifier:
keyid:8F:A9:AE:B4:26:C2:8A:34:80:87:76:F9:56:89:35:D3:B9:EC:9E:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j6mutCbCijSAh3b5Vok107nsngg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/zq2GGOOhnJjGu7iygZ56QcsUKLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/77792b-e20e-4bf7-b126-359f79361e99/1/j6mutCbCijSAh3b5Vok107nsngg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.10.0/24
IPv6:
2a10:e480::/29
Signature Algorithm: sha256WithRSAEncryption
49:04:b9:e7:1a:2d:89:81:7a:fd:f6:ed:fd:76:6e:2d:b1:c7:
32:ed:a7:00:53:f0:e6:f5:b0:4f:c9:fb:13:cc:6a:59:8e:74:
dc:fd:d9:76:e9:cd:4b:e7:38:6d:39:8c:1c:64:0a:be:9e:65:
82:30:4b:c4:b6:9b:39:07:3a:25:1d:34:39:0c:7e:4e:f1:05:
ce:97:bd:5d:d2:f8:c7:35:c7:77:9c:93:9b:c1:24:a4:f6:1e:
a2:6f:12:97:18:29:c1:58:a7:10:81:bf:d6:9b:10:a1:e6:d8:
c4:b1:78:3e:47:70:62:2c:97:a4:ad:9f:2d:7d:0e:4a:c7:4d:
41:1a:bf:ea:1f:a9:8a:f6:7e:ae:01:fb:8b:ad:4e:e4:2c:ee:
b3:bb:82:34:f9:2e:67:ad:35:43:18:17:57:db:48:3a:c9:9e:
08:ac:b8:bc:89:d9:30:ac:e5:7b:cc:78:e3:d1:8a:e6:6f:88:
de:f5:f7:f2:da:98:0b:bc:d5:63:47:f4:06:8a:89:73:7b:9b:
1e:e6:06:56:9f:69:fe:86:90:a8:4f:f6:f6:79:91:c9:38:07:
b1:68:bb:f2:72:26:d1:d9:6b:6d:ce:2e:76:b8:61:66:f5:0c:
7e:52:f7:73:9d:13:0d:44:33:53:e0:6d:b2:a3:fb:0d:c1:c1:
d9:0e:e7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:14 2024 by rpki-client on console-fra.rpki-client.org