Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/Xo_RVeicNfMy2DFpjy159uYGCB8.roa
File: Xo_RVeicNfMy2DFpjy159uYGCB8.roa (raw, json)
Hash identifier: 0DWdX3Zpg3dhqcZ8XyrRtXRe4VU6PHmqDg/ySeZVnsY=
Subject key identifier: 5E:8F:D1:55:E8:9C:35:F3:32:D8:31:69:8F:2D:79:F6:E6:06:08:1F
Certificate issuer: /CN=5bd8d72b1cbfc67c379ad9a92c66fac6c8d3233a
Certificate serial: 108ADF99
Authority key identifier: 5B:D8:D7:2B:1C:BF:C6:7C:37:9A:D9:A9:2C:66:FA:C6:C8:D3:23:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9jXKxy_xnw3mtmpLGb6xsjTIzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/Xo_RVeicNfMy2DFpjy159uYGCB8.roa
Signing time: Sat 01 Jan 2022 06:55:26 +0000
ROA not before: Sat 01 Jan 2022 06:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206281
IP address blocks: 185.177.144.0/22 maxlen: 22
2a0a:4f80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277536665 (0x108adf99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd8d72b1cbfc67c379ad9a92c66fac6c8d3233a
Validity
Not Before: Jan 1 06:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e8fd155e89c35f332d831698f2d79f6e606081f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:06:a9:19:81:4e:5f:bf:07:22:f5:a1:01:8b:
1c:ba:43:5f:23:c0:b1:18:ce:6c:fb:da:d5:b8:ed:
5d:a8:73:7c:99:3a:a0:98:16:2f:25:32:2c:93:9a:
35:16:f0:0c:3d:75:3c:16:b8:b2:53:0d:aa:67:54:
ed:0e:11:f6:fe:ae:0a:76:ba:f4:6a:f3:a2:93:3e:
07:ed:3a:8c:ab:8d:0c:aa:49:cb:f6:a7:ca:6f:72:
b1:78:1c:11:25:3e:78:6f:d7:3e:72:92:10:77:f3:
e4:fa:6c:81:a5:b5:11:52:2d:6f:b7:74:59:c9:5a:
f2:ec:ec:78:fc:66:72:d4:21:c9:89:ba:2f:3e:32:
71:de:49:91:50:10:e7:ea:35:c6:e3:52:67:7f:90:
fb:f9:2f:19:0d:21:a0:9e:f4:c2:ef:ef:58:45:02:
6c:be:c6:d8:68:c0:f4:27:7b:ec:f1:5d:85:c2:0e:
c2:84:bb:38:d9:9c:0a:3e:a0:52:8b:8e:87:a2:f1:
1d:37:69:61:ae:fc:d9:d1:32:78:49:db:95:e4:a4:
ba:cf:6d:e8:f8:d6:2e:a8:b2:54:c2:89:94:b0:96:
6e:02:7f:fe:93:00:b6:d3:83:02:7d:af:d4:2a:6e:
da:ea:cb:bf:27:41:e9:d2:01:97:87:cf:27:13:be:
9d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8F:D1:55:E8:9C:35:F3:32:D8:31:69:8F:2D:79:F6:E6:06:08:1F
X509v3 Authority Key Identifier:
keyid:5B:D8:D7:2B:1C:BF:C6:7C:37:9A:D9:A9:2C:66:FA:C6:C8:D3:23:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9jXKxy_xnw3mtmpLGb6xsjTIzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/Xo_RVeicNfMy2DFpjy159uYGCB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/W9jXKxy_xnw3mtmpLGb6xsjTIzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.144.0/22
IPv6:
2a0a:4f80::/32
Signature Algorithm: sha256WithRSAEncryption
9c:f0:9c:da:a5:d4:79:68:9f:51:f3:8e:f8:ea:4d:54:16:3b:
30:d8:8a:f8:69:3a:6d:77:99:ab:97:3b:75:7e:c4:85:04:70:
c2:fb:ff:21:8c:b5:4b:ec:cc:66:6c:05:4a:c9:b0:cb:cd:d7:
f0:1d:d8:93:ac:bf:28:30:48:5c:71:59:6e:ce:b0:f7:8d:e0:
c8:fc:28:5e:7e:81:f6:56:63:f1:e1:b6:af:fe:96:8f:83:33:
4e:f6:73:ed:01:e0:58:b1:d4:5c:83:a6:6a:81:5d:dd:bd:12:
58:85:41:00:6b:50:72:cf:1d:03:51:cd:2d:49:42:61:0a:9c:
1c:f3:34:b7:a5:32:40:e9:09:ac:33:0c:79:f2:9f:5f:01:ab:
e7:d4:38:29:bb:39:43:0c:3f:a5:02:01:f2:10:5f:75:64:c0:
c8:1c:79:79:42:b1:39:90:26:2b:be:59:fe:25:91:1a:ac:91:
87:48:d1:31:a8:f9:97:26:5f:d8:82:78:9f:16:de:e3:e2:bc:
1b:31:ab:2c:2a:13:1d:b5:a3:49:35:56:23:ba:99:75:20:04:
30:c7:53:ed:f2:08:b7:3d:67:98:d2:a0:a9:2f:5f:25:71:8e:
57:9b:27:bc:70:15:1a:44:53:54:90:cb:a8:cb:7f:96:90:76:
7a:ed:1a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:26 2024 by rpki-client on console-ams.rpki-client.org