Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/427db2-c613-4e84-b38c-90569bc6ca54/1/cAg4bH7vXkI8HtkKURr5ShW41HU.roa
File: cAg4bH7vXkI8HtkKURr5ShW41HU.roa (raw, json)
Hash identifier: KK6ccCQFTuYPbquI/hskTH/UJ7SqqzjfqNGS9n70uUM=
Subject key identifier: 70:08:38:6C:7E:EF:5E:42:3C:1E:D9:0A:51:1A:F9:4A:15:B8:D4:75
Certificate issuer: /CN=a64fa64bb3c2de4788306312c652de749ec93517
Certificate serial: C9BC92
Authority key identifier: A6:4F:A6:4B:B3:C2:DE:47:88:30:63:12:C6:52:DE:74:9E:C9:35:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pk-mS7PC3keIMGMSxlLedJ7JNRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/427db2-c613-4e84-b38c-90569bc6ca54/1/cAg4bH7vXkI8HtkKURr5ShW41HU.roa
Signing time: Sat 01 Jan 2022 05:56:01 +0000
ROA not before: Sat 01 Jan 2022 05:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204695
IP address blocks: 185.242.100.0/22 maxlen: 22
185.242.100.0/24 maxlen: 24
185.242.103.0/24 maxlen: 24
185.242.102.0/24 maxlen: 24
185.242.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13221010 (0xc9bc92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a64fa64bb3c2de4788306312c652de749ec93517
Validity
Not Before: Jan 1 05:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7008386c7eef5e423c1ed90a511af94a15b8d475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8c:82:17:42:fe:d1:8c:ab:f3:28:63:29:8e:
67:45:ed:95:92:04:32:bd:cc:5e:60:38:75:f3:20:
6d:b8:11:d8:16:e7:fc:76:ca:ad:61:9a:d8:6e:ba:
f0:b5:22:54:27:0f:14:83:6c:ba:69:fd:dd:6e:64:
33:6b:36:0e:29:55:cc:85:a9:f7:42:18:00:e7:a4:
2d:00:26:48:4d:29:02:8a:3c:1d:4e:97:7a:1c:ed:
90:a8:62:5d:90:39:da:96:84:09:ff:49:d3:09:34:
c3:2a:bd:66:5f:5f:58:fb:83:13:a5:9a:10:26:4b:
da:62:74:ae:f3:3e:91:cf:65:ee:53:5b:57:77:7c:
36:1d:3c:bc:02:a9:b9:56:aa:7e:ec:3d:98:b0:cf:
c7:23:2f:2c:67:06:61:4c:f7:a8:cc:96:49:12:d6:
45:ec:c6:d8:57:f2:c0:52:c2:f3:60:7d:33:ad:8f:
42:d6:84:95:fb:5a:d4:b8:6a:9f:98:01:60:05:67:
8b:de:be:49:2d:90:7e:07:82:76:13:ca:b2:45:45:
8a:91:1c:21:de:bf:5e:8a:03:3b:65:af:ab:31:62:
52:3d:83:42:70:c6:05:50:d0:49:cc:fc:92:51:20:
c9:ba:f7:38:78:6d:11:0a:31:98:f5:a8:10:1f:df:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:08:38:6C:7E:EF:5E:42:3C:1E:D9:0A:51:1A:F9:4A:15:B8:D4:75
X509v3 Authority Key Identifier:
keyid:A6:4F:A6:4B:B3:C2:DE:47:88:30:63:12:C6:52:DE:74:9E:C9:35:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pk-mS7PC3keIMGMSxlLedJ7JNRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/427db2-c613-4e84-b38c-90569bc6ca54/1/cAg4bH7vXkI8HtkKURr5ShW41HU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/427db2-c613-4e84-b38c-90569bc6ca54/1/pk-mS7PC3keIMGMSxlLedJ7JNRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.100.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:2c:63:2b:1d:7e:d0:5d:63:e3:96:62:df:9b:a3:1c:65:a4:
b8:a6:30:67:1b:31:17:bf:95:e7:b5:fe:aa:00:2c:b9:06:f6:
69:9b:13:f1:c7:dd:8c:ce:11:5c:6e:0e:41:af:91:8d:f7:b9:
ee:c2:12:b2:e1:99:9a:83:75:8f:77:c0:32:b7:ea:8b:8c:00:
6e:dd:5d:9a:98:9c:88:90:2e:de:1d:c7:66:be:28:fe:1b:7e:
6c:23:8a:6c:5c:16:da:1f:5b:a7:b7:54:5e:fd:7c:9e:bb:d5:
45:cb:ab:c0:2a:e3:dc:a8:b9:d4:78:12:af:6c:cd:49:87:72:
1e:34:8b:23:1f:09:9f:14:94:6c:90:01:eb:77:36:a3:9f:7a:
5a:22:1c:16:c2:68:23:6c:d0:8d:7d:2d:39:4b:fc:33:f1:28:
56:61:5f:9c:20:75:68:e1:25:c1:5a:8e:62:96:1f:cf:0f:0b:
1a:48:fc:c5:88:6f:6e:a2:1f:fc:ea:18:81:a9:54:60:d7:a1:
61:b4:8e:42:2e:43:ab:c9:70:46:55:b0:94:9c:fa:b7:db:72:
21:96:30:23:e8:7c:97:8b:45:f8:9d:65:d2:76:98:7c:0e:20:
98:10:1a:69:f0:82:9b:06:83:6c:65:62:3e:12:89:62:32:51:
08:ab:c8:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:16 2023 by rpki-client on console.sobornost.net