Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e0184d-64d0-4a15-a277-7ce809353b18/1/_kqOI6xKmNRRVIRnt7dCiqLIpH4.roa
File: _kqOI6xKmNRRVIRnt7dCiqLIpH4.roa (raw, json)
Hash identifier: EclhnT5chCvymc5lda1oa+wFXMJt0eU4AWnEcc4T03c=
Subject key identifier: FE:4A:8E:23:AC:4A:98:D4:51:54:84:67:B7:B7:42:8A:A2:C8:A4:7E
Certificate issuer: /CN=80ef67a3dc3d71845e9b1555cff5ad31bb423a94
Certificate serial: 102A78BA
Authority key identifier: 80:EF:67:A3:DC:3D:71:84:5E:9B:15:55:CF:F5:AD:31:BB:42:3A:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gO9no9w9cYRemxVVz_WtMbtCOpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e0184d-64d0-4a15-a277-7ce809353b18/1/_kqOI6xKmNRRVIRnt7dCiqLIpH4.roa
Signing time: Sat 01 Jan 2022 10:05:21 +0000
ROA not before: Sat 01 Jan 2022 10:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206711
IP address blocks: 185.176.36.0/22 maxlen: 22
2a07:ee00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271218874 (0x102a78ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ef67a3dc3d71845e9b1555cff5ad31bb423a94
Validity
Not Before: Jan 1 10:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe4a8e23ac4a98d451548467b7b7428aa2c8a47e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:32:99:a1:53:9f:72:97:95:9f:3d:54:ea:74:
5c:0e:03:39:58:1c:db:10:82:08:30:34:ff:ce:3f:
13:2a:d5:82:ed:de:aa:56:a7:d4:8d:c9:99:91:f2:
fc:a5:59:49:0a:03:f2:2d:d3:a9:93:8a:89:4c:9b:
97:e0:e3:28:b5:dc:42:bb:dd:a7:bb:7f:36:8f:62:
1c:3a:5b:cb:4c:c6:03:f5:c8:80:ed:c0:3d:04:57:
94:43:01:d7:7d:4f:44:ee:d1:c6:0d:e2:f4:19:e6:
25:d0:4c:73:15:5d:47:a3:ca:05:81:ad:79:69:d7:
8a:38:4e:7f:64:3a:e4:8f:4e:08:3c:c6:29:58:6b:
0b:59:5f:60:90:bd:b0:51:ea:95:5a:88:40:f6:ea:
10:72:cf:54:44:3d:ad:5c:12:af:e1:b1:78:ab:a4:
f8:bd:3d:47:fa:56:3f:49:f7:28:a1:21:5d:98:53:
67:22:99:3d:ba:bc:32:25:3e:ab:7c:51:fc:9b:c7:
93:2e:fe:b2:0c:2c:b9:a2:40:f5:cc:75:dc:14:ae:
19:6e:b2:2d:27:3b:e5:15:81:8c:7c:97:fb:45:ce:
b8:09:3d:07:4c:f0:a1:a1:1c:34:fc:47:c6:eb:86:
6d:77:73:0b:a7:94:e7:a6:bc:a1:25:f4:f9:42:be:
99:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4A:8E:23:AC:4A:98:D4:51:54:84:67:B7:B7:42:8A:A2:C8:A4:7E
X509v3 Authority Key Identifier:
keyid:80:EF:67:A3:DC:3D:71:84:5E:9B:15:55:CF:F5:AD:31:BB:42:3A:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gO9no9w9cYRemxVVz_WtMbtCOpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e0184d-64d0-4a15-a277-7ce809353b18/1/_kqOI6xKmNRRVIRnt7dCiqLIpH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e0184d-64d0-4a15-a277-7ce809353b18/1/gO9no9w9cYRemxVVz_WtMbtCOpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.36.0/22
IPv6:
2a07:ee00::/32
Signature Algorithm: sha256WithRSAEncryption
04:47:13:b2:e8:45:e7:85:d5:f3:b4:45:31:d3:72:c0:7a:15:
c1:62:0a:f7:53:55:0a:14:71:1d:16:f9:48:dd:6a:8e:98:ac:
71:9c:79:fd:5e:ca:5b:ce:d8:4b:c2:26:1b:2e:82:8b:a2:7a:
1c:f0:59:7f:99:2e:7f:eb:d2:e9:00:50:08:17:c3:ac:82:0b:
33:44:8e:97:96:66:4e:14:ec:02:5a:76:76:f2:ab:00:64:f8:
f9:50:ae:9b:24:f1:ee:a9:bc:2e:48:11:de:98:15:77:7f:33:
b7:36:7f:89:1e:a7:8f:a8:3a:d9:c5:4a:63:c2:b4:10:41:da:
76:86:35:65:b1:87:19:e4:d4:3c:0d:74:a7:b3:c4:76:4d:7c:
cc:59:10:7c:60:34:f7:ad:aa:b4:c7:9a:71:6a:55:d3:78:32:
e8:42:28:c4:0d:f9:11:7f:e0:8b:59:b5:5c:8d:3e:32:09:ed:
bd:2c:6f:95:47:46:46:99:88:06:3b:65:bc:72:6a:a5:38:68:
6d:51:e5:27:ed:5f:e9:d0:2a:55:c5:ae:06:95:9f:e0:72:64:
b8:fa:7b:27:1a:35:dc:c7:22:65:ee:ad:d2:84:28:e0:45:df:
4c:6c:ad:82:94:df:bf:e2:af:bd:6d:d0:0c:59:24:b3:58:c0:
14:10:a5:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:23 2023 by rpki-client on console.sobornost.net