Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/226be8-c7b7-47f0-b0d5-d14af2cb8fde/1/AAffQvHmcFbTZfhogo24uGgHrFk.roa
File: AAffQvHmcFbTZfhogo24uGgHrFk.roa (raw, json)
Hash identifier: GuodtWZun9B3rvV7BRzbZtfOvmMvSn1oxzkXQmXNosU=
Subject key identifier: 00:07:DF:42:F1:E6:70:56:D3:65:F8:68:82:8D:B8:B8:68:07:AC:59
Certificate issuer: /CN=49240b59bbf6906a555e1074c5ae73ec62dffc5f
Certificate serial: 01823DB806B7698499DDFAF5A3EAE5F25CEA
Authority key identifier: 49:24:0B:59:BB:F6:90:6A:55:5E:10:74:C5:AE:73:EC:62:DF:FC:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSQLWbv2kGpVXhB0xa5z7GLf_F8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/226be8-c7b7-47f0-b0d5-d14af2cb8fde/1/AAffQvHmcFbTZfhogo24uGgHrFk.roa
Signing time: Wed 27 Jul 2022 03:34:06 +0000
ROA not before: Wed 27 Jul 2022 03:34:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59708
IP address blocks: 185.4.107.0/24 maxlen: 24
185.4.106.0/24 maxlen: 24
185.4.104.0/22 maxlen: 24
185.4.104.0/24 maxlen: 24
185.4.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3d:b8:06:b7:69:84:99:dd:fa:f5:a3:ea:e5:f2:5c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49240b59bbf6906a555e1074c5ae73ec62dffc5f
Validity
Not Before: Jul 27 03:34:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0007df42f1e67056d365f868828db8b86807ac59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f4:d2:2f:f2:c3:e3:59:9c:17:a6:70:f0:5a:
0a:f9:88:af:40:f3:dd:31:b8:12:c6:8e:94:34:f9:
b2:7d:64:a2:02:35:66:5f:82:08:05:e5:2a:f8:ea:
2a:75:3e:ca:39:fd:37:b6:ef:1d:58:c5:91:29:73:
da:33:8c:60:b4:8b:fd:64:4a:64:2a:03:cf:6c:f4:
94:73:f9:88:02:3a:ec:54:46:f6:66:75:fc:89:99:
82:4d:21:04:59:16:87:fe:6d:05:68:d8:03:e0:ae:
ee:3d:29:06:ba:4a:f0:ae:1e:92:2c:99:1c:d2:a3:
c3:65:34:ea:3f:35:1f:1a:64:0a:6b:92:cf:b0:bc:
ea:7e:59:40:e2:f4:09:ab:de:a2:01:ed:59:09:61:
13:5f:3a:ea:3f:2e:ef:11:f3:29:43:db:bc:63:e5:
7b:39:58:50:fa:b1:83:8b:c5:cd:79:ba:38:e9:96:
ad:48:d4:de:da:03:9a:f4:ab:f2:9b:5f:ac:f4:19:
64:49:18:af:ab:3b:8d:a2:42:52:91:30:21:57:52:
4c:89:c3:4b:d0:41:e2:e8:a3:ea:e9:77:b6:10:48:
91:e6:45:fe:ff:83:e5:95:53:73:c1:d0:70:f6:ab:
ab:98:15:65:11:31:21:cf:78:96:7a:bd:47:ac:23:
1b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:07:DF:42:F1:E6:70:56:D3:65:F8:68:82:8D:B8:B8:68:07:AC:59
X509v3 Authority Key Identifier:
keyid:49:24:0B:59:BB:F6:90:6A:55:5E:10:74:C5:AE:73:EC:62:DF:FC:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSQLWbv2kGpVXhB0xa5z7GLf_F8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/226be8-c7b7-47f0-b0d5-d14af2cb8fde/1/AAffQvHmcFbTZfhogo24uGgHrFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/226be8-c7b7-47f0-b0d5-d14af2cb8fde/1/SSQLWbv2kGpVXhB0xa5z7GLf_F8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.104.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:21:75:34:d0:62:f9:47:6f:c5:52:b7:c1:51:e0:08:f8:13:
fc:40:15:b0:c1:0b:a8:fa:f2:b6:8f:55:f0:06:91:85:e5:7b:
95:b7:0c:5f:0f:7d:97:24:ba:87:b1:44:02:de:8e:aa:0e:99:
21:54:43:3a:91:f2:38:f5:59:3f:21:52:5a:48:39:d7:4e:2c:
de:7b:6a:63:e8:68:49:30:dd:cc:6e:ab:e5:6d:ed:66:9e:aa:
f0:0d:80:87:d6:a5:61:05:e6:f9:c7:25:3b:e3:01:e5:91:79:
34:a8:52:5a:11:e5:c4:f6:45:0e:93:01:71:5c:68:7f:b4:3e:
62:31:6b:b2:54:21:1d:2a:6f:63:bf:5b:80:02:ee:c5:24:cb:
00:be:88:65:1b:82:e7:1b:46:0f:94:09:0b:21:58:66:01:98:
7a:8a:44:54:6b:0d:67:c3:bd:60:32:71:28:ab:c6:ca:9e:19:
dd:5d:4b:5c:9a:ca:f4:a2:a1:7a:d6:a9:91:fd:bb:92:41:ac:
6e:c2:17:09:9e:cd:13:f5:09:6e:2f:dc:a5:9f:44:5e:ab:f3:
89:f7:44:fa:36:be:be:98:7a:43:c9:2b:4f:28:42:52:15:89:
26:e4:bf:57:df:31:6f:b7:4a:00:a4:22:c8:f4:15:75:79:48:
ae:6f:9b:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net