Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/AgVG_VQDnbUNSHgI9S-OVhdGLv0.roa
File: AgVG_VQDnbUNSHgI9S-OVhdGLv0.roa (raw, json)
Hash identifier: pdrRpIdjc5xqAkmTCFYcnyaGdPOLi8S9dgTcUzo5dXs=
Subject key identifier: 02:05:46:FD:54:03:9D:B5:0D:48:78:08:F5:2F:8E:56:17:46:2E:FD
Certificate issuer: /CN=3787b324b0d32fb1a3678b02c482286d4c26ba0f
Certificate serial: 0DB3A7B9
Authority key identifier: 37:87:B3:24:B0:D3:2F:B1:A3:67:8B:02:C4:82:28:6D:4C:26:BA:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4ezJLDTL7GjZ4sCxIIobUwmug8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/AgVG_VQDnbUNSHgI9S-OVhdGLv0.roa
Signing time: Sat 01 Jan 2022 08:58:15 +0000
ROA not before: Sat 01 Jan 2022 08:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.222.116.0/22 maxlen: 22
2a0c:3800::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229877689 (0xdb3a7b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3787b324b0d32fb1a3678b02c482286d4c26ba0f
Validity
Not Before: Jan 1 08:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=020546fd54039db50d487808f52f8e5617462efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:47:e0:d7:67:92:93:28:f6:8b:1c:81:67:d5:
f2:1c:f1:46:8c:2f:82:e0:23:95:6e:b9:e4:31:d7:
00:af:9b:a3:b4:41:c9:8f:63:fe:f9:3d:82:4b:53:
0d:f3:ea:26:86:a4:15:31:67:04:71:e2:57:dd:b0:
c9:fe:b4:8c:2f:c2:13:bc:3e:fa:40:5a:8b:e4:77:
53:8c:b1:01:83:b7:7f:c9:7e:ac:89:f6:00:fe:c5:
68:c0:37:79:10:b1:7a:42:d1:ad:cc:78:92:fb:93:
73:72:8a:01:6b:ee:a3:86:58:65:5c:10:df:5c:0a:
fe:0a:ae:ef:6c:83:32:47:96:78:f8:36:b6:71:15:
85:32:58:14:b9:93:b9:5c:35:96:77:bd:da:0e:c0:
9b:48:de:0c:c5:d7:ed:f9:f4:1d:52:11:5c:6d:6a:
45:c2:71:4a:c8:33:17:46:a8:92:7b:17:af:db:3a:
8b:ba:a2:18:e2:d2:1f:de:93:f2:c7:7f:32:de:dc:
e3:b9:4c:e3:9e:82:e0:ae:3a:4e:c0:e7:69:3c:79:
46:08:dd:b1:44:9d:1c:ab:a4:d6:9a:4c:1a:33:9c:
92:a5:2e:ad:63:45:11:fa:60:a9:7d:d6:12:4b:7b:
a0:fb:13:c8:b8:e6:f4:f9:4e:28:44:51:fe:f8:a6:
94:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:05:46:FD:54:03:9D:B5:0D:48:78:08:F5:2F:8E:56:17:46:2E:FD
X509v3 Authority Key Identifier:
keyid:37:87:B3:24:B0:D3:2F:B1:A3:67:8B:02:C4:82:28:6D:4C:26:BA:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4ezJLDTL7GjZ4sCxIIobUwmug8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/AgVG_VQDnbUNSHgI9S-OVhdGLv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/602244-7699-4103-bc7e-c4711482380e/1/N4ezJLDTL7GjZ4sCxIIobUwmug8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.116.0/22
IPv6:
2a0c:3800::/32
Signature Algorithm: sha256WithRSAEncryption
b3:63:3f:3a:94:06:02:9a:9d:22:28:bd:38:51:93:9d:a4:59:
d4:e0:f7:8f:81:de:ae:46:d6:94:07:59:0f:61:21:b8:0c:c9:
89:21:c8:a9:7f:72:a7:c1:0e:28:0d:bb:e1:2a:ad:8c:7e:7d:
a4:71:36:40:8c:68:47:e6:f2:57:7c:a1:6a:1d:7b:9e:26:83:
6a:19:6d:31:05:e6:17:ba:a0:77:74:de:61:0c:d7:9f:3c:3d:
96:85:74:91:19:d3:05:7f:44:d8:9a:44:4c:1f:27:86:17:8e:
c4:54:31:c8:d4:7e:16:6e:4c:be:0f:fc:66:40:6e:ca:fe:63:
e2:92:62:7f:7f:47:8b:8d:d7:ca:c5:17:93:0d:48:a3:cd:23:
07:2d:8a:5b:d8:c2:08:0c:c6:4f:c4:e6:25:17:4c:64:03:58:
34:ba:27:f5:ad:0c:de:21:4c:c7:db:e5:8e:b7:18:34:bc:f8:
cd:ac:d1:55:0c:3a:5e:1c:7b:3a:a3:cd:f8:fa:e1:79:b9:5b:
11:1f:c1:a8:46:d1:9e:bd:d3:4c:21:78:6a:b2:9c:f0:a2:11:
39:53:9a:3e:6c:6f:ef:6d:bf:c6:6e:9d:e1:a2:d8:5d:0b:d9:
05:72:e0:de:10:84:61:0a:ca:c9:37:e3:46:19:10:48:6c:c3:
4c:ac:23:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:28 2023 by rpki-client on console.sobornost.net